hidserv.exe Fehler

[Frierkatze]

"hidserv.exe hat einen fehler verursacht. das programm wird jetzt geschlossen"

Diesen Satz lese ich immer beim hochfahren des Rechners.
Kann mir da evtl. jemand was zu sagen und mir weiterhelfen?
Danke schonmal

LG

 

[anonymum2]

Re: hidserv.exe Fehler

Hi Frierkatze

Das ist ein Fall für HiJackThis. Scanne alles und poste hier im Forum. Anleitungen und Downloads
findest Du hier im Forum.

Gruss rolfpower

 

[Frierkatze]

Re: hidserv.exe Fehler

Hallo rolfpower,

gesagt getan

Hier das Ergebnis:

Logfile of HijackThis v1.98.2
Scan saved at 20:25:43, on 10.11.2004
Platform: Windows 2000 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG6\avgserv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\system32\ZoneLabs\vsmon.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\Explorer.exe
C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiMon.exe
C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe
C:\Programme\Google\Gmail Notifier\gnotify.exe
C:\Programme\BeatNik2\BeatNik.exe
C:\Programme\Rainlendar\Rainlendar.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\kernel.exe
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\sc_watch.exe
C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\PROFIL~1.EXE
C:\Programme\Yahoo!\Messenger\YPager.exe
C:\PROGRA~1\INCRED~1\bin\IncMail.exe
C:\Programme\Jasc Software Inc\Paint Shop Pro 7\psp.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
E:\PROGRAMME\Neuer Ordner\HijackThis.exe
C:\WINNT\System32\qdv.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =

Please, Anmelden or Registrieren to view URLs content!

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

Please, Anmelden or Registrieren to view URLs content!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer von T-Online
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: (no name) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - (no file)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [ToADiMon.exe] C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiMon.exe -TOnlineAutodialStart
O4 - HKLM\..\Run: [AVG_CC] C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe /STARTUP
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Programme\Google\Gmail Notifier\gnotify.exe
O4 - HKCU\..\Run: [IncrediMail] C:\PROGRA~1\INCRED~1\bin\IncMail.exe /c
O4 - HKCU\..\Run: [qdv] C:\WINNT\System32\qdv.exe
O4 - Startup: BeatNik Internet Clock.lnk = C:\Programme\BeatNik2\BeatNik.exe
O4 - Startup: Rainlendar.lnk = C:\Programme\Rainlendar\Rainlendar.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\System32\msjava.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {6BEB1076-564E-400B-A012-69EE24216D02} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {6BEB1076-564E-400B-A012-69EE24216D02} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - ms-its:mhtml:file://c:\nosuxyz.mht!

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {1D0D9077-3798-49BB-9058-393499174D5D} - file://c:\counter.cab
O16 - DPF: {243981A8-28ED-49A1-9709-A24E567E5691} (My4ppleMemo Control) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {CFCB7308-782F-11D4-BE27-000102598CE4} (NPX Control) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {D909E944-3A96-4280-9983-9D00001973A4} (Access Control) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {E2F2B9D0-96B9-4B25-B90C-636ECB207D18} -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IMDownloader Class) -

Please, Anmelden or Registrieren to view URLs content!

O17 - HKLM\System\CCS\Services\Tcpip\..\{E9EC59CD-FD32-4F4D-9060-0B30131E96A7}: NameServer = 217.237.150.141 217.237.150.97

 

[anonymum2]

Re: hidserv.exe Fehler

Hi Frierkatze

Alle fixen, anschliessend mit Reg-Supreme bearbeiten.
R3 - Default URLSearchHook is missing
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - ms-its:mhtml:file://c:\nosuxyz.mht!

Please, Anmelden or Registrieren to view URLs content!

32.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IMDownloader Class) -

Please, Anmelden or Registrieren to view URLs content!

der.cab
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {1D0D9077-3798-49BB-9058-393499174D5D} - file://c:\counter.cab
O16 - DPF: {243981A8-28ED-49A1-9709-A24E567E5691} (My4ppleMemo Control) -

Please, Anmelden or Registrieren to view URLs content!

Gruss rolfpower

 

[Frierkatze]

Re: hidserv.exe Fehler

soweit so gut, aber die fehlermeldung ist nach wie vor da ...
was nun? der neue log:

Logfile of HijackThis v1.98.2
Scan saved at 21:39:37, on 10.11.2004
Platform: Windows 2000 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG6\avgserv.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\stisvc.exe
C:\WINNT\system32\ZoneLabs\vsmon.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\Explorer.exe
C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiMon.exe
C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe
C:\Programme\Google\Gmail Notifier\gnotify.exe
C:\WINNT\System32\qdv.exe
C:\Programme\BeatNik2\BeatNik.exe
C:\WINNT\system32\drwtsn32.exe
C:\Programme\Rainlendar\Rainlendar.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\kernel.exe
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\sc_watch.exe
C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\PROFIL~1.EXE
E:\PROGRAMME\Neuer Ordner\HijackThis.exe
C:\PROGRAMME\T-ONLINE\T-ONLINE_SOFTWARE_5\BASIS-SOFTWARE\BASIS2\UPDATE.EXE
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\tonntp32.exe
C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\tonchkml32.exe
C:\PROGRAMME\INTERNET EXPLORER\IEXPLORE.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =

Please, Anmelden or Registrieren to view URLs content!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer von T-Online
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx
O3 - Toolbar: (no name) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - (no file)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINNT\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Programme\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [ToADiMon.exe] C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiMon.exe -TOnlineAutodialStart
O4 - HKLM\..\Run: [AVG_CC] C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe /STARTUP
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Programme\Google\Gmail Notifier\gnotify.exe
O4 - HKCU\..\Run: [IncrediMail] C:\PROGRA~1\INCRED~1\bin\IncMail.exe /c
O4 - HKCU\..\Run: [qdv] C:\WINNT\System32\qdv.exe
O4 - Startup: BeatNik Internet Clock.lnk = C:\Programme\BeatNik2\BeatNik.exe
O4 - Startup: Rainlendar.lnk = C:\Programme\Rainlendar\Rainlendar.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\System32\msjava.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {6BEB1076-564E-400B-A012-69EE24216D02} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {6BEB1076-564E-400B-A012-69EE24216D02} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {CFCB7308-782F-11D4-BE27-000102598CE4} (NPX Control) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {D909E944-3A96-4280-9983-9D00001973A4} (Access Control) -

Please, Anmelden or Registrieren to view URLs content!

O16 - DPF: {E2F2B9D0-96B9-4B25-B90C-636ECB207D18} -

Please, Anmelden or Registrieren to view URLs content!

 

[anonymum2]

Re: hidserv.exe Fehler

Hi Frierkatze

Die auch noch:

O3 - Toolbar: (no name) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - (no file
O16 - DPF: {E2F2B9D0-96B9-4B25-B90C-636ECB207D18} -

Please, Anmelden or Registrieren to view URLs content!

Gruss rolfpower