title image


Smiley abgesicherter Modus nicht mehr möglich
Hallo,



ich habe gestern festgestellt das es mir nicht mehr möglich ist in den abgesicherten Modus zu starten.Ich komme zwar über F8 in das Auswahlmenu und sehe auch den "Startbildschirm" in dem Modus,aber ab da fängt er immer neu an zu booten,egal ob ich die Standardmeldung "Windows wird im abgesicherten Modus ausgeführt bla bla" mit JA oder NEIN anklicke.



Habe den Virenscanner Kaspersky,Adaware,Spybot,Blacklight(AntiRootkit) etc. drüberlaufen

lassen aber nichts gefunden.



Hier mal noch nen Tcp log



Apache.exe:1592 TCP middleea-568c05:3476 middleea-568c05:0 LISTENING

Apache.exe:1592 TCP middleea-568c05:3476 middleea-568c05:0 LISTENING

firefox.exe:2280 TCP middleea-568c05:1059 localhost:1060 ESTABLISHED

firefox.exe:2280 TCP middleea-568c05:1060 localhost:1059 ESTABLISHED

firefox.exe:2280 TCP middleea-568c05:1149 localhost:5405 ESTABLISHED

firefox.exe:2280 TCP middleea-568c05:1153 localhost:5405 ESTABLISHED

firefox.exe:2280 TCP middleea-568c05:1155 localhost:5405 ESTABLISHED

kavsvc.exe:1632 TCP middleea-568c05:1031 middleea-568c05:0 LISTENING

onspeedcore.exe:2404 TCP middleea-568c05:5405 middleea-568c05:0 LISTENING

onspeedcore.exe:2404 TCP middleea-568c05:1043 212.100.243.192:7000 ESTABLISHED

onspeedcore.exe:2404 TCP middleea-568c05:1032 localhost:1033 ESTABLISHED

onspeedcore.exe:2404 TCP middleea-568c05:1033 localhost:1032 ESTABLISHED

onspeedcore.exe:2404 TCP middleea-568c05:5405 localhost:1155 ESTABLISHED

onspeedcore.exe:2404 TCP middleea-568c05:5405 localhost:1156 ESTABLISHED

onspeedcore.exe:2404 TCP middleea-568c05:5405 localhost:1153 ESTABLISHED

onspeedcore.exe:2404 TCP middleea-568c05:5405 localhost:1149 ESTABLISHED

StarWindService.exe:2184 TCP middleea-568c05:3260 middleea-568c05:0 LISTENING

StarWindService.exe:2184 TCP middleea-568c05:3261 middleea-568c05:0 LISTENING

svchost.exe:3220 UDP middleea-568c05:1900 *:*

svchost.exe:3220 UDP middleea-568c05:1900 *:*

















und nen Hijack log









Logfile of HijackThis v1.99.1

Scan saved at 10:10:32, on 15.04.2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)



Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Programme\TuneUp Utilities 2006\WinStylerThemeSvc.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Programme\BlueSoleil\BTNtService.exe

C:\WINDOWS\system32\CTsvcCDA.EXE

C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe

C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe

C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe

C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\nvraidservice.exe

C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nTrayFw.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\system32\wdfmgr.exe

C:\Programme\Logitech\iTouch\iTouch.exe

C:\Programme\RivaTuner v2.0 RC 15.7\RivaTuner.exe

C:\Programme\ONSPEED\onspeedcore.exe

C:\WINDOWS\SOUNDMAN.EXE

C:\PROGRA~1\NERO6U~1\NEROTO~1\DRIVES~1.EXE

C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe

C:\Programme\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE

C:\Programme\Creative\Shared Files\Module Loader\DLLML.exe

C:\Programme\Creative\Shared Files\Module Loader\DLLML.exe

C:\WINDOWS\CTHELPER.EXE

C:\WINDOWS\system32\CTXFIHLP.EXE

C:\Programme\SpeedProject\SpeedCommander 9\SpeedCommander.exe

C:\WINDOWS\SYSTEM32\CTXFISPI.EXE

C:\Programme\CPU Z\cpuz.exe

C:\Programme\SpeedFan\speedfan.exe

C:\Programme\Creative\MediaSource\Detector\CTDetect.exe

C:\Programme\Creative\MediaSource\Go\CTCMSGo.exe

C:\Programme\BlueSoleil\BlueSoleil.exe

C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpomau08.exe

C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe

C:\Programme\ONSPEED\onspeedgui.exe

C:\Programme\SmartSurfer3.1\SmartSurfer.exe

C:\WINDOWS\system32\svchost.exe

C:\Programme\Creative\ShareDLL\CADI\NotiMan.exe

C:\Programme\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe

C:\Programme\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe

C:\Programme\Hewlett-Packard\Digital Imaging\Bin\hpoFXM08.exe

C:\Programme\Mozilla Firefox\firefox.exe

C:\Programme\TCP VIEW\Tcpview.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Programme\Hijackthis\HijackThis.exe



R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5405

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: PBlockHelper Class - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} - C:\Programme\ONSPEED\PBHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: NOW!Imaging - {9AA2F14F-E956-44B8-8694-A5B615CDF341} - C:\Programme\ONSPEED\components\NOWImaging.dll

O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll

O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll

O3 - Toolbar: ONSPEED - {8B79EE88-E62D-4AA8-B530-CC357BA112B7} - C:\Programme\ONSPEED\Toolband.dll

O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe

O4 - HKLM\..\Run: [nTrayFw] C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nTrayFw.exe

O4 - HKLM\..\Run: [NVIDIA nTune] "C:\Programme\NVIDIA Corporation\nTune\\nTune.exe" clear

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [KAVPersonal50] "C:\Programme\Kaspersky Anti-Virus Personal\kav.exe" /minimize

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [zBrowser Launcher] C:\Programme\Logitech\iTouch\iTouch.exe

O4 - HKLM\..\Run: [RivaTuner] "C:\Programme\RivaTuner v2.0 RC 15.7\RivaTuner.exe" /T

O4 - HKLM\..\Run: [SlipStream] "C:\Programme\ONSPEED\onspeedcore.exe"

O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [Nero DriveSpeed] C:\PROGRA~1\NERO6U~1\NEROTO~1\DRIVES~1.EXE

O4 - HKLM\..\Run: [CTDVDDET] "C:\Programme\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE"

O4 - HKLM\..\Run: [RCSystem] "C:\Programme\Creative\Shared Files\Module Loader\DLLML.exe" RCSystem * -Startup

O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Programme\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Programme\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"

O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE

O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE

O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE

O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Programme\RivaTuner v2.0 RC 15.7\RivaTuner.exe" /S

O4 - HKLM\..\Run: [FinePrint Dispatcher v5] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /runonce

O4 - HKCU\..\Run: [SpeedCommander] C:\Programme\SpeedProject\SpeedCommander 9\SpeedCommander.exe

O4 - HKCU\..\Run: [CPU-Z Application] C:\Programme\CPU Z\cpuz.exe

O4 - HKCU\..\Run: [NBJ] "C:\Programme\Nero 6 Ultra\Nero BackItUp\NBJ.exe"

O4 - HKCU\..\Run: [speedfan] C:\Programme\SpeedFan\speedfan.exe

O4 - HKCU\..\Run: [Creative Detector] "C:\Programme\Creative\MediaSource\Detector\CTDetect.exe" /R

O4 - HKCU\..\Run: [Creative MediaSource Go] "C:\Programme\Creative\MediaSource\Go\CTCMSGo.exe" /SCB

O4 - Startup: SmartSurfer.lnk = C:\Programme\SmartSurfer3.1\SmartSurfer.exe

O4 - Global Startup: BlueSoleil.lnk = ?

O4 - Global Startup: hp officejet 4100 series.lnk = ?

O4 - Global Startup: hpoddt01.exe.lnk = ?

O4 - Global Startup: ONSPEED.lnk = C:\Programme\ONSPEED\onspeedgui.exe

O8 - Extra context menu item: Alle Originalbilder Anzeigen - res://C:\Programme\ONSPEED\gui_resource.dll/327

O8 - Extra context menu item: Alles mit FlashGet laden - C:\Programme\FlashGet\jc_all.htm

O8 - Extra context menu item: Mit FlashGet laden - C:\Programme\FlashGet\jc_link.htm

O8 - Extra context menu item: Originalbild Anzeigen - res://C:\Programme\ONSPEED\gui_resource.dll/328

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe

O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll

O17 - HKLM\System\CCS\Services\Tcpip\..\{6B10BFEE-D918-4B0D-B0FB-91DCD97F2214}: NameServer = 62.134.11.4 195.182.110.132

O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Programme\BlueSoleil\BTNtService.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE

O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe

O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: kavsvc - Kaspersky Lab - C:\Programme\Kaspersky Anti-Virus Personal\kavsvc.exe

O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe

O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Programme\TuneUp Utilities 2006\WinStylerThemeSvc.exe



Vielleicht kann mir ja jemand helfen.Der PC läuft so eigentlich ohne Probleme aber wenn ich nicht in den Modus komme,dann ist doch irgendwas faul.



MfG Taran

geschrieben von

Login

E-Mail:
  

Passwort:
  

Beitrag anfügen

Symbol:
 
 
 
 
 
 
 
 
 
 
 
 
 

Überschrift: