Startseite -> about:blank Trojaner

So hoffe, dass ihr auch mir helfen könnt!

Hier mein Log File:


Logfile of HijackThis v1.97.7
Scan saved at 18:51:44, on 11.05.2004
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\System32\cisvc.exe
e:\programme\norton utilities 2002\NPROTECT.EXE
D:\WINDOWS\System32\nvsvc32.exe
e:\programme\Speed Disk\nopdb.exe
D:\WINDOWS\System32\svchost.exe
E:\Programme\PC-cillin 2000\Tmntsrv.exe
D:\WINDOWS\Explorer.EXE
D:\Programme\Gemeinsame Dateien\Real\Update_OB\evntsvc.exe
E:\Programme\PC-cillin 2000\Pop3trap.exe
E:\Programme\PC-cillin 2000\WebTrapNT.exe
D:\Programme\Java\j2re1.4.2_01\bin\jusched.exe
D:\WINDOWS\msreg.exe
E:\PROGRA~1\T-DSLS~1\SpeedMgr.exe
D:\Programme\Browser MOUSE\mouse32a.exe
E:\Programme\QuickTime\qttask.exe
D:\Programme\Multimedia Card Reader\shwicon2k.exe
D:\WINDOWS\winupd.exe
D:\Programme\Messenger\msmsgs.exe
E:\Programme\AIM\aim.exe
D:\WINDOWS\system32\sm.exe
D:\Programme\Muiltmedia keyboard utility 1.3\KbdAp32A.exe
e:\Programme\T-DSL SpeedManager\tsmsvc.exe
E:\Programme\Common\Bin\WinCinemaMgr.exe
E:\Programme\Norton Utilities 2002\SYSDOC32.EXE
E:\Programme\PC Alert III\alert.exe
E:\Programme\PC-cillin 2000\PNTIOMON.exe
E:\Programme\Sony Ericsson\Mobile\audevicemgr.exe
E:\Programme\PC-cillin 2000\pccntupd.exe
e:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\CONNMN~1.EXE
e:\Programme\Intuwave Ltd\Shared\mRouterRunTime\mRouterRuntime.exe
E:\PROGRA~1\SONYER~1\Mobile\MOBILE~1\EPMWOR~1.EXE
E:\PROGRA~1\ICQ200~1\ICQ.exe
e:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\CapMan.exe
e:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\ElogErr.exe
D:\Programme\Internet Explorer\IEXPLORE.EXE
e:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\BROADC~1.EXE
e:\PROGRA~1\SONYER~1\Mobile\CONNEC~1\SCRFS.exe
F:\Downloads\Entfernen des Trojaner\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://D:\WINDOWS\System32\nnlbi.dll/sp.html (obfuscated)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://D:\WINDOWS\System32\nnlbi.dll/sp.html (obfuscated)
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://D:\WINDOWS\System32\nnlbi.dll/sp.html (obfuscated)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://D:\WINDOWS\System32\nnlbi.dll/sp.html (obfuscated)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://D:\WINDOWS\System32\nnlbi.dll/sp.html (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://D:\WINDOWS\System32\nnlbi.dll/sp.html (obfuscated)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - e:\Programme\Acrobat Reader\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {3F0C3387-F928-4534-BA15-13AC527D4F5A} - D:\WINDOWS\System32\nnlbi.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NeroCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] D:\Programme\Gemeinsame Dateien\Real\Update_OB\evntsvc.exe -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Pop3trap.exe] "E:\Programme\PC-cillin 2000\Pop3trap.exe"
O4 - HKLM\..\Run: [WebTrapNT.exe] "E:\Programme\PC-cillin 2000\WebTrapNT.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Programme\Java\j2re1.4.2_01\bin\jusched.exe
O4 - HKLM\..\Run: [msreg.exe] D:\WINDOWS\msreg.exe
O4 - HKLM\..\Run: [Mirabilis ICQ] E:\PROGRA~1\ICQ200~1\ICQNet.exe
O4 - HKLM\..\Run: [FLMK08KB] D:\Programme\Muiltmedia keyboard utility 1.3\MMKEYBD.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [T-DSL SpeedMgr] "E:\PROGRA~1\T-DSLS~1\SpeedMgr.exe"
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] D:\Programme\Browser MOUSE\mouse32a.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Sunkist2k] D:\Programme\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [Upgrade Service] D:\WINDOWS\winupd.exe
O4 - HKCU\..\Run: [MSMSGS] "D:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [AIM] E:\Programme\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [putil] D:\WINDOWS\~13B7.exe
O4 - HKCU\..\Run: [system.exe] D:\WINDOWS\system32\sm.exe
O4 - HKCU\..\Run: [System Update] D:\WINDOWS\System\explorer.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = D:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = E:\Programme\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Programme\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Norton System Doctor.lnk = E:\Programme\Norton Utilities 2002\SYSDOC32.EXE
O4 - Global Startup: PC Alert III.lnk = E:\Programme\PC Alert III\alert.exe
O4 - Global Startup: Real-time Monitor.lnk = ?
O4 - Global Startup: Telefonverbindungsmonitor.lnk = E:\Programme\Sony Ericsson\Mobile\audevicemgr.exe
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://D:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra 'Tools' menuitem: Sun Java Konsole (HKLM)
O9 - Extra button: ICQ Pro (HKLM)
O9 - Extra 'Tools' menuitem: ICQ (HKLM)
O9 - Extra button: AIM (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{C2E28309-A7F6-4BCD-B377-516E7159A326}: NameServer = 217.237.151.161 194.25.2.129


Über ne Antwort wäre ich dankbar!

Gruß benny