title image


Smiley Logfile
Logfile of HijackThis v1.99.1

Scan saved at 13:06:50, on 21.03.2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)



Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\WINDOWS\Explorer.EXE

C:\Programme\Java\jre1.5.0_06\bin\jusched.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\WINDOWS\system32\RunDll32.exe

C:\windows\mousepad4.exe

C:\Programme\webHancer\Programs\whagent.exe

C:\Programme\webHancer\Programs\whsurvey.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\Programme\ArchiCrypt Stealth 3\ACStealth3.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\Programme\Messenger\msmsgs.exe

C:\WINDOWS\system32\svchost.exe

C:\Programme\Outlook Express\msimn.exe

C:\Programme\Gemeinsame Dateien\Windows\services32.exe

C:\WINDOWS\system32\rundll32.exe

C:\Programme\LeechGet 2004\LeechGet.exe

C:\PROGRA~1\eScan\TRAYSSER.EXE

C:\Programme\Gemeinsame Dateien\MicroWorld\Agent\MWASER.EXE

C:\Programme\Gemeinsame Dateien\MicroWorld\Agent\MWAgent.exe

C:\PROGRA~1\eScan\MAILDISP.EXE

C:\PROGRA~1\ESCAN\SPOOLER.EXE

C:\PROGRA~1\eScan\MAILSCAN.EXE

C:\Programme\Internet Explorer\iexplore.exe

C:\PROGRA~1\Network\ipnetwork.exe

C:\WINDOWS\system32\ntvdm.exe

C:\Programme\Lexmark X6100 Series\lxbfbmgr.exe

C:\Programme\Lexmark X6100 Series\lxbfbmon.exe

C:\MSOffice\Winword\WINWORD.EXE

C:\hijackthis\HijackThis.exe

C:\PROGRAMME\INTERNET EXPLORER\IEXPLORE.EXE



R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.news.at/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd

O4 - HKLM\..\Run: [keyboard] C:\windows\keyboard4.exe

O4 - HKLM\..\Run: [mousepad] C:\windows\mousepad4.exe

O4 - HKLM\..\Run: [newname] C:\windows\newname4.exe

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKLM\..\Run: [webHancer Agent] C:\Programme\webHancer\Programs\whagent.exe

O4 - HKLM\..\Run: [webHancer Survey Companion] C:\Programme\webHancer\Programs\whsurvey.exe

O4 - HKLM\..\Run: [MailScan Dispatcher] "C:\Programme\eScan\LAUNCH.EXE"

O4 - HKLM\..\Run: [eScan Updater] C:\PROGRA~1\eScan\TRAYICOS.EXE /App

O4 - HKLM\..\Run: [IpNetwork] C:\Programme\Network\ipnetwork.exe

O4 - HKLM\..\Run: [ABBYY Community Agent] C:\Programme\ABBYY FineReader 5.0 Home Edition\CAgent.exe

O4 - HKCU\..\Run: [ArchiCrypt Stealth] C:\Programme\ArchiCrypt Stealth 3\ACStealth3.exe -HIDE

O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [services32] C:\Programme\Gemeinsame Dateien\Windows\mc-110-12-0000228.exe

O4 - Startup: Outlook Express (2).lnk = C:\Programme\Outlook Express\msimn.exe

O8 - Extra context menu item: Mit dem LeechGet Wizard laden - file://C:\Programme\LeechGet 2004\\Wizard.html

O8 - Extra context menu item: Mit LeechGet herunterladen - file://C:\Programme\LeechGet 2004\\AddUrl.html

O8 - Extra context menu item: Mit LeechGet parsen - file://C:\Programme\LeechGet 2004\\Parser.html

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O10 - Hijacked Internet access by WebHancer

O10 - Hijacked Internet access by WebHancer

O10 - Hijacked Internet access by WebHancer

O10 - Unknown file in Winsock LSP: c:\windows\system32\mwtsp.dll

O16 - DPF: {D7BF3304-138B-4DD5-86EE-491BB6A2286C} - http://www.azebar.com/install/azesearch.cab

O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab

O20 - Winlogon Notify: OptimalLayout - C:\WINDOWS\system32\m628lgfu1628.dll

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: eScan Server-Updater (eScan-trayicos) - MicroWorld Technologies Inc. - C:\PROGRA~1\eScan\TRAYSSER.EXE

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: MWAgent - MicroWorld Technologies Inc. - C:\Programme\Gemeinsame Dateien\MicroWorld\Agent\MWASER.EXE






geschrieben von

Login

E-Mail:
  

Passwort:
  

Beitrag anfügen

Symbol:
 
 
 
 
 
 
 
 
 
 
 
 
 

Überschrift: