Vollständige Version anzeigen : Fileinfector?!


BladeFire
27.06.2011, 14:40

Villeicht hab ich mir was eingefangen werdet ihr daraus schlau?

Hijickthis

Logfile of Trend Micro HijackThis v2;0;4
Scan saved at 22:48:34, on 26;06;2011
Platform: Windows Vista SP2 (WinNT 6;00;1906)
MSIE: Internet Explorer v7;00 (7;00;6002;18005)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm;exe
C:\Program Files\Mozilla Firefox\firefox;exe
C:\Windows\Explorer;EXE
C:\Windows\system32\taskeng;exe
C:\Program Files\Avira\AntiVir Desktop\avgnt;exe
C:\Windows\RtHDVCpl;exe
C:\Program Files\Skype\Phone\Skype;exe
C:\Program Files\Avira\AntiVir Desktop\avcenter;exe
C:\Windows\system32\wbem\unsecapp;exe
C:\Program Files\Mozilla Firefox\plugin-container;exe
D:\Downloads\HiJackThis204;exe
C:\Windows\system32\SearchProtocolHost;exe
C:\Users\Andreas\Desktop\HiJackThis204;exe
C:\Windows\system32\SearchFilterHost;exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Suche | A1~net (;;;telekom~at/suche)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Handy - Festnetz - Internet - Mobiles Internet - TV | A1~net (;;;telekom~at)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! (;go;microsoft~com/fwlink/?LinkId=69157)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing (;go;microsoft~com/fwlink/?LinkId=54896)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing (;go;microsoft~com/fwlink/?LinkId=54896)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = A1 Telekom Austria TA AG
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *;local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings;dll
F2 - REG:system;ini: UserInit=C:\Windows\system32\userinit;exe,userinit;exe,,C:\Program Files\nvsemmyt\vxvoygvh;exe
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper;dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim;dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin;dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32;dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32;dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions;dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE;dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin;dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5;1;1309;3572\swg;dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv;dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings;dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE;dll
O4 - HKLM\.;\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui;exe -hide
O4 - HKLM\.;\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui;exe" /starttray
O4 - HKLM\.;\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt;exe" /min
O4 - HKLM\.;\Run: [RtHDVCpl] RtHDVCpl;exe
O4 - HKCU\.;\Run: [Skype] "C:\Program Files\Skype\Phone\Skype;exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\.;\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar;exe /detectMem (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\.;\Run: [WindowsWelcomeCenter] rundll32;exe oobefldr;dll,ShowWelcomeCenter (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\.;\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar;exe /detectMem (User 'NETZWERKDIENST')
O8 - Extra context menu item: Free YouTube Download - C:\Users\Andreas\AppData\Roaming\DVDVideoSoftIEHelpers\youtubedownload;htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Andreas\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3conv erter;htm
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL;EXE/3000
O9 - Extra button: ;C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts;dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension;dll
O9 - Extra 'Tools' menuitem: ;C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts;dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension;dll
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE;dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE;dll
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin;dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin;dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin;dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR;DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices;dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui;dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService;exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx;exe
O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder;exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver;exe
O23 - Service: Google Update Service (gupdate1c9a676ed902960) (gupdate1c9a676ed902960) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate;exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate;exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService;exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC;EXE
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService;exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice;exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService;exe
O23 - Service: NetLimiter 3 Service (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 3\nlsvc;exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService;exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files\HTC\Internet Pass-Through\PassThruSvr;exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\system32\drivers\pclepci;sys
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc;exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA;exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE;exe
O23 - Service: TeamViewer 4 (TeamViewer4) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version4\TeamViewer_Service;exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler;exe
O23 - Service: ;%SystemRoot%\System32\TuneUpDefragService;exe,-1 (TuneUp;Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService;exe
O23 - Service: ;%SystemRoot%\System32\TUProgSt;exe,-1 (TuneUp;ProgramStatisticsSvc) - TuneUp Software - C:\Windows\System32\TUProgSt;exe

--
End of file - 9309 bytes

Hardware Preisvergleich | Amazon Blitzangebote!

Videos zum Thema
Video Loading...
R0cka
03.07.2011, 11:48

Wenn dein Problem noch aktuell ist solltest du bitte diese Sachen fixen!

R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings;dll

O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings;dll


Ausserdem wäre ein Log von ;;;malwarebytes~org (;;;malwarebytes~org/products/malwarebytes_pro) hilfreich.

Gruß
R0cka


Ähnliche Themen zu Fileinfector?!
  • Fileinfector?!
    Villeicht hab ich mir was eingefangen werdet ihr daraus schlau? Hijickthis Logfile of Trend Micro HijackThis v2;0;4 Scan saved at 22:48:34, on 26;06;2011 Platform: Windows Vista SP2 (WinNT 6;00;1906) MSIE: Internet Explorer v7;00 (7;00;6002;18005) Boot mode: Normal Running processes: C:\Windows\ [...]



raid-rush.ws | Imprint & Contact pr