Windows XP: wie bekomme ich diesen mist weg?

Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

SYSTEM 6 IE auf neuesten Stand bringen !

Fixen ggf : alle "bösen" ,
und auch die > (file missing)

MalwareBytes laden & Vollscan im abges. Modus .
Ggf Syst.-Wiederherst. AUS dabei .... 

Hallo,
danke, ich versuche es mal.

osram

MBAM - LOG dann hier zeigen !

Systemupdate nicht vergessen !!

Hallo,
ich danke allen für die Hilfe.
Es hat funktioniert.
Der Mist mit den selbstinstalierenden Programm ist weg.
Also nie Micro Anti Remover 2008 runterladen.
YUR10.exe ist eine hartnäckige spyware die einen immer zu einer Webseite leiten will.
-----------------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:32:08, on 01.10.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
D:\SICHERHEIT\AVG Anti-Spyware 7.5\guard.exe
D:\SICHER~1\AVG-AN~1.5\avgamsvr.exe
D:\SICHER~1\AVG-AN~1.5\avgupsvc.exe
D:\SICHER~1\AVG-AN~1.5\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Microsoft IntelliPoint\ipoint.exe
D:\SICHER~1\AVG-AN~1.5\avgcc.exe
C:\WINDOWS\MIXER\Mixer.exe
D:\SICHERHEIT\AVG Anti-Spyware 7.5\avgas.exe
D:\SICHERHEIT\Spybot - Search & Destroy 1.6\TeaTimer.exe
D:\SICHERHEIT\Zone - Alarm 70.483.000\zlclient.exe
D:\SICHERHEIT\Win - Sweep\winjam.exe
D:\SICHERHEIT\Win - Sweep\WSMonitor.exe
D:\SICHERHEIT\Win - Sweep\WSPopup.exe
D:\SICHERHEIT\Win - Sweep\WSProxy.Exe
C:\WINDOWS\system32\svchost.exe
D:\SICHERHEIT\a-squared Free\a2free.exe
D:\SICHERHEIT\A-SQUARED FREE\a2service.exe
C:\Programme\Outlook Express\msimn.exe
C:\Programme\FIREFOX\firefox.exe
C:\WINDOWS\DARK SYSNATION\DarkSysnation.exe
J:\DOWNLOADS\Neuer Ordner\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.de
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mymail.ch/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.ie7pro.com/firstrun/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = I.E.
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = file://D:\SICHERHEIT\Win - Sweep\no-ads.pac
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:4001
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Programme\I. E. - PRO 7\iepro.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\MEDIENPROGRAMME\REAL PLAYER 11\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\SICHER~1\SPYBOT~1.6\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\HILFSPROGRAMME\JAVA 1.6.0.06\bin\ssv.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - D:\HILFSPROGRAMME\Free Download Manager\iefdm2.dll
O2 - BHO: CGreenPrintPDF Object - {DF96BA30-57F6-4700-8065-910EC3BE9E3B} - D:\HILFSPROGRAMME\GreenPrint World\GPIEPlugin.dll
O3 - Toolbar: &WINSWEEP Toolbar - {E915E62E-41DA-40D0-8106-3438B4D24394} - D:\SICHERHEIT\Win - Sweep\SurfBar.dll
O4 - HKLM\..\Run: [M A U S] "C:\Programme\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [AVG - ANTI VIR 7.5] D:\SICHER~1\AVG-AN~1.5\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [MIXER] C:\WINDOWS\MIXER\Mixer.exe /t
O4 - HKLM\..\Run: [DARK - SYS] "C:\WINDOWS\DARK SYSNATION\DarkSysnation.exe"
O4 - HKLM\..\Run: [AVG - ANTI SPYWARE] "D:\SICHERHEIT\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SPYBOT START] "D:\SICHERHEIT\Spybot - Search & Destroy 1.6\TeaTimer.exe"
O4 - HKLM\..\Run: [ZONE - ALARM] "D:\SICHERHEIT\Zone - Alarm 70.483.000\zlclient.exe"
O4 - HKCU\..\Run: [WINSWEEP Reklameblockierung] D:\SICHERHEIT\Win - Sweep\winjam.exe
O4 - HKCU\..\Run: [WINSWEEP Popupblocker] D:\SICHERHEIT\Win - Sweep\WSPopup.Exe /STEP1 /SOUND
O4 - HKCU\..\Run: [WINSWEEP] D:\SICHERHEIT\Win - Sweep\WINSWEEP.Exe /AUTO
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] D:\SICHER~1\AVG-AN~1.5\avgw.exe /RUNONCE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] D:\SICHER~1\AVG-AN~1.5\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] D:\SICHER~1\AVG-AN~1.5\avgw.exe /RUNONCE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Alles mit FDM herunterladen - file://D:\HILFSPROGRAMME\Free Download Manager\dlall.htm
O8 - Extra context menu item: Auswahl mit FDM herunterladen - file://D:\HILFSPROGRAMME\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Datei mit FDM herunterladen - file://D:\HILFSPROGRAMME\Free Download Manager\dllink.htm
O8 - Extra context menu item: Send To &Bluetooth - C:\GA - X38\BLUETOOTH\btsendto_ie_ctx.htm
O8 - Extra context menu item: Videos mit FDM herunterladen - file://D:\HILFSPROGRAMME\Free Download Manager\dlfvideo.htm
O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Programme\I. E. - PRO 7\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Programme\I. E. - PRO 7\iepro.dll
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Programme\I. E. - PRO 7\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Programme\I. E. - PRO 7\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\HILFSPROGRAMME\JAVA 1.6.0.06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\HILFSPROGRAMME\JAVA 1.6.0.06\bin\ssv.dll
O9 - Extra button: GreenPrint - {554099FE-3856-4d93-86B5-0024AEF63BC7} - D:\HILFSPROGRAMME\GreenPrint World\GPIEPlugin.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\HILFSP~1\MS-OFF~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\GA - X38\BLUETOOTH\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\GA - X38\BLUETOOTH\btsendto_ie.htm
O9 - Extra button: (no name) - {DF96BA30-57F6-4700-8065-910EC3BE9E3B} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SICHER~1\SPYBOT~1.6\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SICHER~1\SPYBOT~1.6\SDHelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{38B661F1-77B9-4CA5-B382-18AF7B84A945}: NameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{CA55AB82-0C1A-4823-BFFC-9A6064FAFDB5}: NameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{38B661F1-77B9-4CA5-B382-18AF7B84A945}: NameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{38B661F1-77B9-4CA5-B382-18AF7B84A945}: NameServer = 192.168.0.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{38B661F1-77B9-4CA5-B382-18AF7B84A945}: NameServer = 192.168.0.1
O20 - Winlogon Notify: urqoOIyA - urqoOIyA.dll (file missing)
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - D:\SICHERHEIT\A-SQUARED FREE\a2service.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programme\Gemeinsame Dateien\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - D:\SICHERHEIT\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - D:\SICHER~1\AVG-AN~1.5\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - D:\SICHER~1\AVG-AN~1.5\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - D:\SICHER~1\AVG-AN~1.5\avgemc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\GA - X38\BLUETOOTH\bin\btwdins.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Programme\Windows Media Player\ISO RECORDER\ImapiHelper.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - D:\MEDIENPROGRAMME\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PDEngine - Raxco Software, Inc. - D:\HILFSPROGRAMME\PERFEKT DISK 7\PDEngine.exe
O23 - Service: PDScheduler (PDSched) - Raxco Software, Inc. - D:\HILFSPROGRAMME\PERFEKT DISK 7\PDSched.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 9132 bytes
 

MalwareBytes laden & Vollscan im abges. Modus .
Ggf Syst.-Wiederherst. AUS dabei .... 
MBAM - LOG dann hier zeigen !