Hallo
ich habe letztens mehrere E-Mails vom eigenen E-Mailkonto erhalten aber habe nicht weiter drüber nachgedacht. Nun kann ich mit meiner Domain E-Mailaddi zu einigen Diensten wie zb. GMX keine Mails mehr senden weil die IP meines Hosters auf deren Blacklist erscheint.
Ob sich irgendjemand in mein ystem gehackt hat keine Ahnung.
Habe mit Gdata Total Care alles durchlaufen lassen ohne Fehler zu finden.
Nach eurem Forumsratschlag habe ich zuerst HijackThis durchlaufen lassen und folgende Log erhalten:
Und hier die hjtscanlist:Code:Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:19:39, on 09.08.2009 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v8.00 (8.00.6001.18813) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Samsung\Samsung Magic Doctor\MagicDoctorKbdHk.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\Samsung\EBM\EasyBatteryMgr3.exe C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\rundll32.exe C:\Program Files\G DATA\TotalCare\AVKTray\AVKTray.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\IncrediMail\bin\ImApp.exe C:\Program Files\G DATA\TotalCare\GUI\AVKIS.EXE C:\Windows\system32\DllHost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http:\\www.samsungcomputer.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http:\\www.samsungcomputer.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - - (no file) R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll O1 - Hosts: ::1 localhost O2 - BHO: G DATA WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA\TotalCare\Webfilter\AVKWebIE.dll O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: G DATA WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA\TotalCare\Webfilter\AVKWebIE.dll O3 - Toolbar: PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [GDFirewallTray] C:\Program Files\G DATA\TotalCare\Firewall\GDFirewallTray.exe O4 - HKLM\..\Run: [G DATA AntiVirus Trayapplication] C:\Program Files\G DATA\TotalCare\AVKTray\AVKTray.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Google Update] "C:\Users\Emilija\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST') O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe O13 - Gopher Prefix: O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\Windows\system32\astsrv.exe O23 - Service: G DATA AntiVirus Proxy (AVKProxy) - G DATA Software AG - C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe O23 - Service: G DATA Scheduler (AVKService) - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVK\AVKService.exe O23 - Service: AntiVirus Wächter (AVKWCtl) - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVK\AVKWCtl.exe O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: G DATA Backup Service - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVKBackup\AVKBackupService.exe O23 - Service: G DATA Tuner Service - G DATA Software AG - C:\Program Files\G DATA\TotalCare\AVKTuner\AVKTunerService.exe O23 - Service: G DATA Personal Firewall (GDFwSvc) - G DATA Software AG - C:\Program Files\G DATA\TotalCare\Firewall\GDFwSvc.exe O23 - Service: Google Update Service (gupdate1ca025b9cc64b0) (gupdate1ca025b9cc64b0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exe O23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\Windows\System32\TUProgSt.exe -- End of file - 8087 bytes
Vielleicht könnt ihr helfen.Code:$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ º º hjtscanlist v2.0 º º $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ Microsoft Windows [Version 6.0.6001] C: C:\spam.log C:\nospam.log C:\Config.Msi C:\Program Files C:\System Volume Information C:\hiberfil.sys C:\pagefile.sys C:\found.000 C:\ProgramData C:\Windows C:\pdisdk.log C:\pivot.log C:\Swsetup C:\#GDATA.Trash.Store# C:\$Recycle.Bin C:\Setup.log C:\Users C:\Programme C:\Dokumente und Einstellungen C:\IO.SYS C:\MSDOS.SYS C:\RHDSetup.log C:\Intel C:\BOOTSECT.BAK C:\Boot C:\PerfLogs C:\bootmgr C:\Documents and Settings C:\config.sys C:\autoexec.bat ---------------------------------------- C:\Windows C:\Windows\WindowsUpdate.log C:\Windows\bootstat.dat C:\Windows\bthservsdp.dat C:\Windows\PFRO.log C:\Windows\setupact.log C:\Windows\setup.log C:\Windows\msxml4-KB954430-enu.LOG C:\Windows\ie8_main.log C:\Windows\ntbtlog.txt C:\Windows\setuperr.log C:\Windows\PDFCreator_Toolbar_Uninstaller_9757.exe C:\Windows\win.ini C:\Windows\explorer.exe C:\Windows\Report.htm C:\Windows\HotFixList.ini C:\Windows\Csup.txt C:\Windows\DIFxAPI.dll C:\Windows\HideWin.exe C:\Windows\CBS.log.bootstrap.perf C:\Windows\CBS.log.bootstrap.dpx C:\Windows\CBS.log.bootstrap C:\Windows\CBS.log.perf C:\Windows\CBS.log.dpx C:\Windows\SetDisplayResolution.exe C:\Windows\SetDisplayResolutionDT.xml C:\Windows\SetDisplayResolutionNP.xml C:\Windows\AMCapIco.ico C:\Windows\RtHDVCpl.exe C:\Windows\RtlUpd.exe C:\Windows\RtlExUpd.dll C:\Windows\BtwIEProxy.exe C:\Windows\WindowsShell.Manifest C:\Windows\regedit.exe C:\Windows\bfsvc.exe C:\Windows\fveupdate.exe C:\Windows\HelpPane.exe C:\Windows\notepad.exe C:\Windows\HotfixChecker.exe C:\Windows\USetup.iss C:\Windows\SMCM.exe C:\Windows\SMCM.dll C:\Windows\WMSysPr9.prx C:\Windows\twunk_16.exe C:\Windows\twunk_32.exe C:\Windows\twain_32.dll C:\Windows\twain.dll C:\Windows\winhlp32.exe C:\Windows\hh.exe C:\Windows\mib.bin C:\Windows\agrsmdel.exe C:\Windows\HomePremium.xml C:\Windows\system.ini C:\Windows\_default.pif C:\Windows\winhelp.exe C:\Windows\msdfmap.ini C:\Windows\ebm.reg C:\Windows\Product.ico C:\Windows\msvbvm60.dll C:\Windows\uninstall.ico C:\Windows\msvcp70.dll C:\Windows\msvcr70.dll ---------------------------------------- C:\Windows\System C:\Windows\System\mciseq.drv C:\Windows\System\mciwave.drv C:\Windows\System\avifile.dll C:\Windows\System\avicap.dll C:\Windows\System\mciavi.drv C:\Windows\System\msvideo.dll C:\Windows\System\OLESVR.DLL C:\Windows\System\WFWNET.DRV C:\Windows\System\COMMDLG.DLL C:\Windows\System\TIMER.DRV C:\Windows\System\MMSYSTEM.DLL C:\Windows\System\mmtask.tsk C:\Windows\System\mouse.drv C:\Windows\System\vga.drv C:\Windows\System\sound.drv C:\Windows\System\keyboard.drv C:\Windows\System\SHELL.DLL C:\Windows\System\system.drv C:\Windows\System\ver.dll C:\Windows\System\olecli.dll C:\Windows\System\lzexpand.dll C:\Windows\System\stdole.tlb ---------------------------------------- C:\Windows\System32 C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 C:\Windows\system32\perfh009.dat C:\Windows\system32\perfc009.dat C:\Windows\system32\perfh007.dat C:\Windows\system32\perfc007.dat C:\Windows\system32\PerfStringBackup.INI C:\Windows\system32\catroot2 C:\Windows\system32\Tasks C:\Windows\system32\migration C:\Windows\system32\catroot C:\Windows\system32\wininet.dll C:\Windows\system32\urlmon.dll C:\Windows\system32\occache.dll C:\Windows\system32\mshtml.dll C:\Windows\system32\msfeeds.dll C:\Windows\system32\msfeedsbs.dll C:\Windows\system32\jsproxy.dll C:\Windows\system32\inetcpl.cpl C:\Windows\system32\ieui.dll C:\Windows\system32\iesysprep.dll C:\Windows\system32\iertutil.dll C:\Windows\system32\iesetup.dll C:\Windows\system32\iernonce.dll C:\Windows\system32\iepeers.dll C:\Windows\system32\ieframe.dll C:\Windows\system32\iedkcs32.dll C:\Windows\system32\ieUnatt.exe C:\Windows\system32\ie4uinit.exe C:\Windows\system32\msfeedssync.exe C:\Windows\system32\mshtml.tlb C:\Windows\system32\ieuinit.inf C:\Windows\system32\NDF C:\Windows\system32\FNTCACHE.DAT C:\Windows\system32\mrt.exe C:\Windows\system32\t2embed.dll C:\Windows\system32\fontsub.dll C:\Windows\system32\dciman32.dll C:\Windows\system32\atmfd.dll C:\Windows\system32\drivers C:\Windows\system32\de-DE C:\Windows\system32\en-US C:\Windows\system32\mapisvc.inf C:\Windows\system32\psisdecd.dll C:\Windows\system32\psisrndr.ax C:\Windows\system32\EncDec.dll C:\Windows\system32\MSNP.ax C:\Windows\system32\mpg2splt.ax C:\Windows\system32\rpcrt4.dll C:\Windows\system32\localspl.dll C:\Windows\system32\win32k.sys C:\Windows\system32\WDI C:\Windows\system32\wbem C:\Windows\system32\manifeststore C:\Windows\system32\jupdate-1.6.0_13-b03.log C:\Windows\system32\apilogen.dll C:\Windows\system32\amxread.dll C:\Windows\system32\DTSSL.log C:\Windows\system32\javaw.exe C:\Windows\system32\javaws.exe C:\Windows\system32\java.exe C:\Windows\system32\deploytk.dll C:\Windows\system32\html.iec C:\Windows\system32\WinFXDocObj.exe C:\Windows\system32\webcheck.dll C:\Windows\system32\licmgr10.dll C:\Windows\system32\url.dll C:\Windows\system32\msrating.dll C:\Windows\system32\corpol.dll C:\Windows\system32\PDMSetup.exe C:\Windows\system32\RegisterIEPKEYs.exe C:\Windows\system32\SetIEInstalledDate.exe C:\Windows\system32\SetDepNx.exe C:\Windows\system32\jscript.dll C:\Windows\system32\ieaksie.dll C:\Windows\system32\vbscript.dll C:\Windows\system32\ieakeng.dll C:\Windows\system32\admparse.dll C:\Windows\system32\ieakui.dll C:\Windows\system32\advpack.dll C:\Windows\system32\inseng.dll C:\Windows\system32\wextract.exe C:\Windows\system32\iexpress.exe C:\Windows\system32\mstime.dll C:\Windows\system32\icardie.dll C:\Windows\system32\dxtmsft.dll C:\Windows\system32\imgutil.dll C:\Windows\system32\dxtrans.dll C:\Windows\system32\pngfilt.dll C:\Windows\system32\mshtmled.dll C:\Windows\system32\mshtmler.dll C:\Windows\system32\mshta.exe C:\Windows\system32\tdc.ocx C:\Windows\system32\msls31.dll C:\Windows\system32\ieapfltr.dll C:\Windows\system32\ntoskrnl.exe C:\Windows\system32\ntkrnlpa.exe C:\Windows\system32\sdohlp.dll C:\Windows\system32\rpcss.dll C:\Windows\system32\printfilterpipelineprxy.dll ---------------------------------------- C:\Windows\Prefetch ---------------------------------------- C:\Windows\Tasks C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3480174324-3849644135-1060484389-1003UA.job C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3480174324-3849644135-1060484389-1003Core.job C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job C:\Windows\Tasks\1-Klick-Wartung.job C:\Windows\Tasks\SupBackGroundTask.job C:\Windows\Tasks\Google Software Updater.job C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job C:\Windows\Tasks\SA.DAT C:\Windows\Tasks\SCHEDLGU.TXT ---------------------------------------- C:\Windows\Temp ---------------------------------------- C:\Users\Emilija\AppData\Local\Temp C:\Users\Emilija\AppData\Local\Temp\IM C:\Users\Emilija\AppData\Local\Temp\hjtscanlist.zip C:\Users\Emilija\AppData\Local\Temp\etilqs_Gj8CGzZ8nin2EOa9fkpH C:\Users\Emilija\AppData\Local\Temp\Emilija.bmp C:\Users\Emilija\AppData\Local\Temp\_avast4_ C:\Users\Emilija\AppData\Local\Temp\MFPL7014.DLL C:\Users\Emilija\AppData\Local\Temp\AVK_UpdateBase1 C:\Users\Emilija\AppData\Local\Temp\AVK_UpdateBase0 C:\Users\Emilija\AppData\Local\Temp\hsperfdata_Emilija C:\Users\Emilija\AppData\Local\Temp\AVK_UpdateAntiVirusKit C:\Users\Emilija\AppData\Local\Temp\rcg04lzy.tmp C:\Users\Emilija\AppData\Local\Temp\java_install_reg.log C:\Users\Emilija\AppData\Local\Temp\WPDNSE C:\Users\Emilija\AppData\Local\Temp\amt.log C:\Users\Emilija\AppData\Local\Temp\alm.log C:\Users\Emilija\AppData\Local\Temp\csxs-PHXS.log C:\Users\Emilija\AppData\Local\Temp\BTN%Copy%1 C:\Users\Emilija\AppData\Local\Temp\swtag.log C:\Users\Emilija\AppData\Local\Temp\TWAIN.LOG C:\Users\Emilija\AppData\Local\Temp\Twain001.Mtx C:\Users\Emilija\AppData\Local\Temp\Twunk001.MTX C:\Users\Emilija\AppData\Local\Temp\u7d10tpb.tmp C:\Users\Emilija\AppData\Local\Temp\jml5t37h.tmp C:\Users\Emilija\AppData\Local\Temp\GFScratch C:\Users\Emilija\AppData\Local\Temp\031w457a.tmp C:\Users\Emilija\AppData\Local\Temp\2nsbafn6.tmp C:\Users\Emilija\AppData\Local\Temp\Twunk002.MTX C:\Users\Emilija\AppData\Local\Temp\26535_15-1.jpg C:\Users\Emilija\AppData\Local\Temp\40572_17-1.jpg C:\Users\Emilija\AppData\Local\Temp\Cookies C:\Users\Emilija\AppData\Local\Temp\IncrediMail C:\Users\Emilija\AppData\Local\Temp\MessengerCache C:\Users\Emilija\AppData\Local\Temp\{F2330E38-127F-4638-AFBA-6F07B8A07D80} C:\Users\Emilija\AppData\Local\Temp\Imaxel C:\Users\Emilija\AppData\Local\Temp\chrome_installer.log C:\Users\Emilija\AppData\Local\Temp\REV7203.tmp C:\Users\Emilija\AppData\Local\Temp\37672_30-1.jpg C:\Users\Emilija\AppData\Local\Temp\IUJ7831536231795973550Swap.tmp C:\Users\Emilija\AppData\Local\Temp\jar_cache6979528781024901160.tmp C:\Users\Emilija\AppData\Local\Temp\jar_cache484378484638385596.tmp C:\Users\Emilija\AppData\Local\Temp\Low C:\Users\Emilija\AppData\Local\Temp\History C:\Users\Emilija\AppData\Local\Temp\Temporary Internet Files ---------------------------------------- C:\Program Files C:\Program Files\Trend Micro C:\Program Files\coolspot AG C:\Program Files\Common Files C:\Program Files\Google C:\Program Files\Mozilla Firefox C:\Program Files\Your Freedom C:\Program Files\Internet Explorer C:\Program Files\DreamBoxEdit C:\Program Files\InstallShield Installation Information C:\Program Files\Ipswitch C:\Program Files\IrfanView C:\Program Files\Windows Mail C:\Program Files\Safari C:\Program Files\IncrediMail C:\Program Files\ICQ6.5 C:\Program Files\ICQ6Toolbar C:\Program Files\MSXML 4.0 C:\Program Files\Nikon C:\Program Files\Canon C:\Program Files\PhotoME C:\Program Files\onOne Software C:\Program Files\FileZilla FTP Client C:\Program Files\Perry Rhodan C:\Program Files\DAEMON Tools Lite C:\Program Files\DAEMON Tools Toolbar C:\Program Files\Micro-Sys Software C:\Program Files\GSiteCrawler C:\Program Files\PantsOff C:\Program Files\fc-prints C:\Program Files\Java C:\Program Files\Adobe C:\Program Files\Adobe Media Player C:\Program Files\Microsoft SQL Server C:\Program Files\Hewlett-Packard C:\Program Files\hplp2065 C:\Program Files\Windows Media Player C:\Program Files\Microsoft Small Business C:\Program Files\Microsoft C:\Program Files\Windows Live C:\Program Files\Windows Live SkyDrive C:\Program Files\NAVIGON C:\Program Files\DVD Shrink C:\Program Files\iTunes C:\Program Files\iPod C:\Program Files\QuickTime C:\Program Files\Apple Software Update C:\Program Files\PDFCreator C:\Program Files\PDFCreator Toolbar C:\Program Files\Vstplugins C:\Program Files\Sony C:\Program Files\Sony Setup C:\Program Files\Ashampoo C:\Program Files\TuneUp Utilities 2009 C:\Program Files\OpenOffice.org 3 C:\Program Files\VideoLAN C:\Program Files\WinRAR C:\Program Files\AltBinz C:\Program Files\CCleaner C:\Program Files\Microsoft.NET C:\Program Files\VS Revo Group C:\Program Files\G DATA C:\Program Files\Samsung C:\Program Files\Gemeinsame Dateien C:\Program Files\Windows NT C:\Program Files\MSSOAP C:\Program Files\Vimicro Corporation C:\Program Files\Atheros WLAN Client C:\Program Files\Intel C:\Program Files\Synaptics C:\Program Files\WIDCOMM C:\Program Files\Cisco C:\Program Files\Realtek C:\Program Files\Windows Calendar C:\Program Files\Windows Sidebar C:\Program Files\Movie Maker C:\Program Files\Windows Collaboration C:\Program Files\Windows Journal C:\Program Files\Windows Photo Gallery C:\Program Files\Windows Defender C:\Program Files\desktop.ini C:\Program Files\Uninstall Information C:\Program Files\Microsoft Games C:\Program Files\Reference Assemblies C:\Program Files\MSBuild ---------------------------------------- C:\ProgramData\.. Emilija Public Default desktop.ini Default User All Users ---------------------------------------- C:\Windows\system32\drivers\etc\hosts # 38.25.63.10 x.acme.com # x client host 127.0.0.1 localhost ::1 localhost 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com ---------------------------------------- Abbildname PID Sitzungsname Sitz.-Nr. Speichernutzung ========================= ======== ================ =========== =============== System Idle Process 0 Services 0 12 K System 4 Services 0 24.328 K smss.exe 532 Services 0 668 K csrss.exe 600 Services 0 5.956 K wininit.exe 652 Services 0 3.588 K csrss.exe 664 Console 1 10.036 K services.exe 696 Services 0 6.664 K lsass.exe 708 Services 0 2.104 K lsm.exe 716 Services 0 3.848 K svchost.exe 880 Services 0 6.020 K nvvsvc.exe 928 Services 0 3.056 K svchost.exe 952 Services 0 6.324 K svchost.exe 992 Services 0 37.504 K svchost.exe 1040 Services 0 11.788 K svchost.exe 1088 Services 0 98.408 K svchost.exe 1100 Services 0 22.236 K audiodg.exe 1180 Services 0 10.356 K svchost.exe 1200 Services 0 4.248 K SLsvc.exe 1216 Services 0 7.100 K svchost.exe 1268 Services 0 9.396 K winlogon.exe 1364 Console 1 5.240 K svchost.exe 1432 Services 0 19.076 K wlanext.exe 1556 Services 0 11.536 K spoolsv.exe 1640 Services 0 8.068 K taskeng.exe 1648 Services 0 5.608 K svchost.exe 1696 Services 0 14.544 K AppleMobileDeviceService. 1864 Services 0 3.184 K ASTSRV.EXE 1892 Services 0 2.392 K AVKService.exe 1924 Services 0 4.732 K BcmSqlStartupSvc.exe 1980 Services 0 3.024 K svchost.exe 2016 Services 0 3.016 K EvtEng.exe 2044 Services 0 12.208 K ICQ Service.exe 1424 Services 0 3.832 K RegSrvc.exe 2088 Services 0 3.920 K sqlbrowser.exe 2160 Services 0 2.904 K sqlwriter.exe 2192 Services 0 5.688 K rundll32.exe 2208 Console 1 5.424 K svchost.exe 2220 Services 0 5.240 K TUProgSt.exe 2344 Services 0 7.456 K svchost.exe 2388 Services 0 2.120 K SearchIndexer.exe 2412 Services 0 29.716 K dwm.exe 3316 Console 1 105.868 K taskeng.exe 3328 Console 1 5.116 K explorer.exe 3456 Console 1 79.972 K taskeng.exe 3508 Console 1 11.792 K MagicDoctorKbdHk.exe 3516 Console 1 3.640 K WmiPrvSE.exe 3616 Services 0 5.156 K dmhkcore.exe 3720 Console 1 7.076 K EasyBatteryMgr3.exe 3744 Console 1 3.768 K EasySpeedUpManager.exe 3756 Console 1 4.848 K MSASCui.exe 1404 Console 1 7.376 K RtHDVCpl.exe 1792 Console 1 6.764 K SynTPEnh.exe 868 Console 1 7.220 K rundll32.exe 524 Console 1 4.920 K AVKTray.exe 4028 Console 1 6.468 K sidebar.exe 3408 Console 1 18.228 K sidebar.exe 1964 Console 1 13.484 K SynTPHelper.exe 984 Console 1 2.532 K svchost.exe 3984 Services 0 31.768 K ImApp.exe 5124 Console 1 6.264 K AVKWCtl.exe 2264 Services 0 225.904 K AVKProxy.exe 3776 Services 0 268.288 K GDFwSvc.exe 6008 Services 0 22.956 K IncMail.exe 5436 Console 1 19.908 K conime.exe 4952 Console 1 52 K firefox.exe 5304 Console 1 103.384 K SearchProtocolHost.exe 2868 Services 0 8.864 K cmd.exe 5992 Console 1 2.804 K conime.exe 5000 Console 1 3.376 K SearchFilterHost.exe 6048 Services 0 5.188 K tasklist.exe 4708 Console 1 4.692 K WmiPrvSE.exe 2712 Services 0 5.916 K ***** Ende des Scans 09.08.2009 um 14:30:56,53 ***
Danke und Gruß
Durch checken der E-Mail Fehlermeldung konnte ich fest stellen das die beanstandete IP gar nicht zu meiner Domain gehört sondern zu einer Firma aus Frankfurt die aber auch bei meinem Hoster eine Domain besitzt. Es ist also vielleicht davon auszugehen das der Verursacher dort sitzt und mehrere IPs meines Hosters sozusagen in Sippenhaft genommen wurde.
Habe diesbezüglich meinen Hoster kontaktiert.
