Bitte um Auswertung

dragsuffer · 05.12.2004, 20:11

Logfile of HijackThis v1.98.2
Scan saved at 20:10:46, on 05.12.2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\nvraidservice.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\System32\RUNDLL32.EXE
C:\Programme\Panda Software\Panda Antivirus Platinum\APVXDWIN.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Programme\Panda Software\Panda Antivirus Platinum\Firewall\PavFires.exe
C:\Programme\Panda Software\Panda Antivirus Platinum\pavsrv51.exe
C:\Programme\Panda Software\Panda Antivirus Platinum\AVENGINE.EXE
C:\Programme\Panda Software\Panda Antivirus Platinum\pavProxy.exe
C:\WINDOWS\System32\wbem\unsecapp.exe
C:\WINDOWS\System32\taskmgr.exe
C:\Programme\Valve\Steam\Steam.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Dokumente und Einstellungen\Tobias\Desktop\hijackthis_198\HijackThis.exe

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\System32\nvraidservice.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SCANINICIO] "C:\Programme\Panda Software\Panda Antivirus Platinum\Inicio.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Programme\Panda Software\Panda Antivirus Platinum\APVXDWIN.EXE" /s
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O17 - HKLM\System\CCS\Services\Tcpip\..\{CB4AD48E-7030-47C0-8020-FE06489D0663}: NameServer = 192.168.0.1

steveman · 05.12.2004, 20:32

Hi,

lass mal diese Programm hier überprüfen.

C:\WINDOWS\System32\nvraidservice.exe

C:\WINDOWS\System32\wbem\unsecapp.exe

dragsuffer · 05.12.2004, 20:46

das ist rausgekommen:

File: nvraidservice.exe
Status:
OK
Packers detected:
None

AntiVir
No viruses found (0.36 seconds taken)
Avast
No viruses found (3.36 seconds taken)
BitDefender
No viruses found (2.25 seconds taken)
ClamAV
No viruses found (2.23 seconds taken)
Dr.Web
No viruses found (4.06 seconds taken)
F-Prot Antivirus
No viruses found (0.25 seconds taken)
Kaspersky Anti-Virus
No viruses found (2.89 seconds taken)
mks_vir
No viruses found (1.09 seconds taken)
NOD32
No viruses found (2.14 seconds taken)
Norman Virus Control
No viruses found (0.47 seconds taken)

----------------------------------------

File: unsecapp.exe
Status:
OK
Packers detected:
None

AntiVir
No viruses found (0.14 seconds taken)
Avast
No viruses found (1.51 seconds taken)
BitDefender
No viruses found (0.35 seconds taken)
ClamAV
No viruses found (0.33 seconds taken)
Dr.Web
No viruses found (0.50 seconds taken)
F-Prot Antivirus
No viruses found (0.06 seconds taken)
Kaspersky Anti-Virus
No viruses found (0.59 seconds taken)
mks_vir
No viruses found (0.20 seconds taken)
NOD32
No viruses found (0.39 seconds taken)
Norman Virus Control
No viruses found (0.46 seconds taken)

steveman · 05.12.2004, 20:55

Dann scheint alles ok zu sein.

Haui45 · 05.12.2004, 20:59

fixe folgendes:
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm

lösche manuell: C:\WINDOWS\web\related.htm

PS: dein System ist nicht auf dem neusten Stand (aktuell ist SP2)

Bitte um Auswertung

Log-Analyse und Auswertung: Bitte um Auswertung