title image


Smiley Re: Na, wo ist es denn hin, das kleine Log? (o.T.)
grins, kurzfristig abhanden gekommen...

und wieder gefunden!





Logfile of HijackThis v1.99.1

Scan saved at 20:33:32, on 30.09.2005

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)



Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

D:\Programme\SysTrayX\SYSTRAYX.EXE

C:\Programme\avmclient\avmbtservice.exe

C:\Programme\avmclient\panapp.exe

C:\Programme\avmclient\AvmObexService.exe

C:\WINDOWS\system32\oodag.exe

C:\WINDOWS\System32\svchost.exe

D:\Programme\UPHClean\uphclean.exe

C:\WINDOWS\Logi_MwX.Exe

C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe

D:\Programme\Logitech\iTouch\iTouch.exe

D:\Programme\ViceVersa Pro\VVLauncher\VVLauncher.exe

C:\Programme\avmclient\bluefritz.exe

C:\Programme\avmclient\AvmObex.exe

C:\Programme\avmclient\AvmObex.exe

D:\Programme\ZipMagic\zm32NT.exe

D:\Programme\Java\jre-1.5.0_05\bin\jusched.exe

D:\Programme\Ditto\Ditto.exe

D:\Programme\Adobe\Acrobat 5.0\Distillr\AcroTray.exe

D:\Programme\FRITZ!\FriFon32.exe

D:\Programme\Logitech\SetPoint\SetPoint.exe

D:\Programme\Warecentral\PrintKey-Pro\PKey_Pro.exe

D:\Programme\FRITZ!\FriFax32.exe

D:\Programme\FRITZ!\FwebProt.exe

D:\Programme\FRITZ!\FriWeb32.exe

D:\Programme\VCOM\PowerDesk\Pdesk.exe

C:\Programme\Gemeinsame Dateien\Logitech\KHAL\KHALMNPR.EXE

D:\Programme\SimpleCheck\SimpleCheck.exe

D:\PROGRA~1\INCRED~1\bin\IMApp.exe

D:\Programme\VCOM\PowerDesk\PDExplo.exe

E:\DiskH\Updates & Patches WinXP SP2\Hijack\HijackThis.exe



R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Programme\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar2.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar2.dll

O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe

O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe

O4 - HKLM\..\Run: [zBrowser Launcher] D:\Programme\Logitech\iTouch\iTouch.exe

O4 - HKLM\..\Run: [VVLauncher] D:\Programme\ViceVersa Pro\VVLauncher\VVLauncher.exe

O4 - HKLM\..\Run: [AVMBlueClient] C:\Programme\avmclient\bluefritz.exe

O4 - HKLM\..\Run: [AVMBLUEOBEX] C:\Programme\avmclient\AvmObex.exe -pushclient -ftpclient

O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [ZipMagic] D:\Programme\ZipMagic\zm32NT.exe

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [KAVPersonal50] "D:\Programme\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\kav.exe" /minimize

O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Programme\Java\jre-1.5.0_05\bin\jusched.exe

O4 - HKLM\..\RunServices: [ZipMagic] D:\Programme\ZipMagic\zm32NT.exe

O4 - HKLM\..\RunOnce: [SYSTRAYX] D:\Programme\SysTrayX\RUNSTX.EXE

O4 - HKCU\..\Run: [Ditto] D:\Programme\Ditto\Ditto.exe

O4 - Startup: FriFax32.exe.lnk = D:\Programme\FRITZ!\FriFax32.exe

O4 - Startup: FRITZ!web Protect.lnk = D:\Programme\FRITZ!\FwebProt.exe

O4 - Startup: FRITZ!web.lnk = D:\Programme\FRITZ!\FriWeb32.exe

O4 - Startup: SYSTRAYX.LNK = D:\Programme\SysTrayX\SysTrayX.EXE

O4 - Startup: Toolbar.lnk = D:\Programme\VCOM\PowerDesk\Pdesk.exe

O4 - Global Startup: Acrobat Assistant.lnk = D:\Programme\Adobe\Acrobat 5.0\Distillr\AcroTray.exe

O4 - Global Startup: FriFon32.lnk = D:\Programme\FRITZ!\FriFon32.exe

O4 - Global Startup: Logitech SetPoint.lnk = D:\Programme\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: PrintKey-Pro.lnk = D:\Programme\Warecentral\PrintKey-Pro\PKey_Pro.exe

O8 - Extra context menu item: &Add animation to IncrediMail Style Box - D:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm

O8 - Extra context menu item: &Google Search - res://c:\programme\google\GoogleToolbar2.dll/cmsearch.html

O8 - Extra context menu item: &Translate English Word - res://c:\programme\google\GoogleToolbar2.dll/cmwordtrans.html

O8 - Extra context menu item: Backward Links - res://c:\programme\google\GoogleToolbar2.dll/cmbacklinks.html

O8 - Extra context menu item: Cached Snapshot of Page - res://c:\programme\google\GoogleToolbar2.dll/cmcache.html

O8 - Extra context menu item: Similar Pages - res://c:\programme\google\GoogleToolbar2.dll/cmsimilar.html

O8 - Extra context menu item: Translate Page into English - res://c:\programme\google\GoogleToolbar2.dll/cmtrans.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programme\Java\jre-1.5.0_05\bin\npjpi150_05.dll

O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programme\Java\jre-1.5.0_05\bin\npjpi150_05.dll

O9 - Extra button: IE-Spuren löschen - {6C7C0C9A-B51D-4ADB-A74D-C4E33744F866} - D:\Programme\TraXEx\TraXEx\Integration\TraXEx 3.0 Internet Explorer.lnk

O9 - Extra button: Löschautomat - {8DA7743F-9274-4BE8-899E-C0FF6ED61B00} - D:\Programme\TraXEx\TraXEx\Integration\TraXEx 3.0 Löschautomat.lnk

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: d:\programme\fritz!\sarah.dll

O10 - Unknown file in Winsock LSP: d:\programme\fritz!\sarah.dll

O10 - Unknown file in Winsock LSP: d:\programme\fritz!\sarah.dll

O10 - Unknown file in Winsock LSP: d:\programme\fritz!\sarah.dll

O10 - Unknown file in Winsock LSP: d:\programme\fritz!\sarah.dll

O17 - HKLM\System\CCS\Services\Tcpip\..\{642E66CB-5D36-432D-9C18-3E949BE128EE}: NameServer = 192.168.120.252,192.168.120.253

O23 - Service: AVM BT Connection Service - AVM Berlin - C:\Programme\avmclient\avmbtservice.exe

O23 - Service: AVM BT PAN Service - AVM Berlin - C:\Programme\avmclient\panapp.exe

O23 - Service: AVM BT OBEX Service (AvmObexService) - AVM Berlin - C:\Programme\avmclient\AvmObexService.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTSvcCDA.EXE

O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\Programme\Gemeinsame Dateien\AVM\de_serv.exe

O23 - Service: kavsvc - Kaspersky Lab - D:\Programme\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\kavsvc.exe

O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe

O23 - Service: Retrospect Helper - Dantz Development Corporation - D:\Programme\Dantz\Retrospect\rthlpsvc.exe

O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - D:\Programme\SiSoftware\SiSoftware Sandra Professional 2005.SR1\RpcDataSrv.exe

O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - D:\Programme\SiSoftware\SiSoftware Sandra Professional 2005.SR1\RpcSandraSrv.exe

O23 - Service: ScsiAccess - Unknown owner - D:\Programme\Photodex\CompuPicPro\ScsiAccess.exe





geschrieben von

Login

E-Mail:
  

Passwort:
  

Beitrag anfügen

Symbol:
 
 
 
 
 
 
 
 
 
 
 
 
 

Überschrift: