|
HijackThis LOG, help! Hallo alle zusammen! Bei meinem Computer ist so allerhand in Argen, aber ich hoffe das mir hier jemand mit meinem HijackThis Log helfen kann, weil ich mir immer noch ziemlich unsicher bin was genau ich loeschen kann und was nicht. also hier mein LOG (Vielen dank im vorraus!!): Logfile of HijackThis v1.97.7 Scan saved at 12:37:06 PM, on 9/25/2004 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\Ati2evxx.exe c:\srvcpu\svchost.exe C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\DefWatch.exe c:\srvcpu\smss.exe C:\Program Files\FSI\F-Prot\fpavupdm.exe C:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Rtvscan.exe C:\WINDOWS\Explorer.EXE C:\Program Files\FSI\F-Prot\F-Sched.exe C:\Program Files\FSI\F-Prot\F-StopW.EXE C:\PROGRA~1\PESTPA~1\PPControl.exe C:\WINDOWS\System32\ctfmon.exe C:\PROGRA~1\PESTPA~1\PPMemCheck.exe C:\PROGRA~1\PESTPA~1\CookiePatrol.exe C:\PROGRA~1\PESTPA~1\pestpatrol.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\dana\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.nytimes.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dellnet.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.netscape.com R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://keyword.netscape.com/keyword/%s R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: AIM Search - {40D41A8B-D79B-43d7-99A7-9EE0F344C385} - C:\Program Files\AIM Toolbar\AIMBar.dll O4 - HKLM\..\Run: [msn] msnmsgr.exe O4 - HKLM\..\Run: [Win32 Usb Driver] usb32.exe O4 - HKLM\..\Run: [System32 Spool ] winint.exe O4 - HKLM\..\Run: [RAV8Tray] C:\Program Files\GeCAD\RAV8 Desktop\ravtray8.exe O4 - HKLM\..\Run: [FRISK FP-Scheduler] C:\Program Files\FSI\F-Prot\F-Sched.exe STARTUP O4 - HKLM\..\Run: [F-StopW] C:\Program Files\FSI\F-Prot\F-StopW.EXE O4 - HKLM\..\Run: [PestPatrol Control Center] C:\PROGRA~1\PESTPA~1\PPControl.exe O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\PESTPA~1\PPMemCheck.exe O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\PESTPA~1\CookiePatrol.exe O4 - HKLM\..\RunServices: [Microsoft service Machines] wissmsgr.exe O4 - HKLM\..\RunServices: [Win32 USB2.0 Driver] w32usb2.exe O4 - HKLM\..\RunServices: [MSN Update] dllcon.exe O4 - HKLM\..\RunServices: [Win32 USB2 Driver] winupdate.exe O4 - HKLM\..\RunServices: [System Uptime Server] sysentry.exe O4 - HKLM\..\RunServices: [Win32 System Spool] spoolsvc.exe O4 - HKLM\..\RunServices: [Micr Update] soundblaster.exe O4 - HKLM\..\RunServices: [System Recovery Scheduling Service] srss.exe O4 - HKLM\..\RunServices: [Video Process] Avg123.exe O4 - HKCU\..\Run: [Win32 USB2 Driver] winupdate.exe O4 - HKCU\..\Run: [Win32 System Spool] spoolsvc.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe O4 - HKCU\..\Run: [AIM] C:\Program Files\Netscape\Communicator\Program\AIM\aim.exe -cnetwait.odl O4 - Global Startup: ravmon.exe.lnk = C:\Program Files\GeCAD\RAV8 Desktop\ravmon.exe O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm O9 - Extra 'Tools' menuitem: MaxSpeed (HKLM) O9 - Extra button: AIM (HKLM) O9 - Extra button: Real.com (HKLM) O9 - Extra button: MoneySide (HKLM) O9 - Extra button: Messenger (HKLM) O9 - Extra 'Tools' menuitem: Messenger (HKLM) O9 - Extra button: WeatherBug (HKCU) O12 - Plugin for .mp3: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O15 - Trusted Zone: www.mozilla.org O15 - Trusted Zone: http://*.windowsupdate.com O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/s...sh/swflash.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553580000} - http://download.macromedia.com/pub/s...sh/swflash.cab |
@mettigugi lade doch mal HJT 1.98.2 hier http://www.trojaner-board.de/51130-a...ijackthis.html update bitte dein system + IE und poste bitte ein neues log von HJT chaosman |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 22:36 Uhr. |
Copyright ©2000-2025, Trojaner-Board