LeNny [Gast] schrieb am 15.May.2010, 19:55:33 in der Kategorie pc.security
hijackthis-logfile
sorry ich hab den logfile vergessen:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:28:05, on 15.05.2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal
Running processes:
c:\\PROGRA~1\\mcafee.com\\agent\\mcagent.exe
C:\\Windows\\system32\\taskeng.exe
C:\\Windows\\Explorer.EXE
C:\\Program Files\\Sony\\VAIO Power Management\\SPMgr.exe
C:\\Program Files\\Apoint\\Apoint.exe
C:\\Program Files\\sony\\ISB Utility\\ISBMgr.exe
C:\\Program Files\\sony\\Marketing Tools\\MarketingTools.exe
C:\\Program Files\\ZTE Join Air\\UIExec.exe
C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe
C:\\Program Files\\Steganos Safe OEM\\SteganosHotKeyService.exe
C:\\Program Files\\Java\\jre6\\bin\\jusched.exe
C:\\Program Files\\iTunes\\iTunesHelper.exe
C:\\Program Files\\sony\\Network Utility\\LANUtil.exe
C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe
C:\\Program Files\\sony\\VAIO Media plus\\VMpTtray.exe
C:\\Windows\\ehome\\ehtray.exe
C:\\Program Files\\Tobit ClipInc\\Player\\ClipIncTray.exe
C:\\Program Files\\Tobit Radio.fx\\Client\\rfx-tray.exe
C:\\Program Files\\WIDCOMM\\Bluetooth Software\\BTTray.exe
C:\\Program Files\\McAfee Security Scan\\2.0.181\\SSScheduler.exe
C:\\Program Files\\Apoint\\Apntex.exe
C:\\Windows\\ehome\\ehmsas.exe
C:\\Windows\\system32\\conime.exe
C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CCC.exe
C:\\Program Files\\iTunes\\iTunes.exe
C:\\Program Files\\WIDCOMM\\Bluetooth Software\\BtITunesPlugIn.exe
C:\\Windows\\system32\\Dwm.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbarUser_32.exe
C:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10e.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
c:\\program files\\avira\\antivir desktop\\avgnt.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Windows\\system32\\SearchProtocolHost.exe
C:\\Users\\Julian\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\23ZBEWT2\\HiJackThis204[1].exe
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.facebook.com/
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant =
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch =
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = *.local
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\\PROGRA~1\\mcafee\\msk\\mskapbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\\PROGRA~1\\mcafee\\VIRUSS~1\\scriptsn.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\5.4.4525.1752\\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\\PROGRA~1\\mcafee\\SITEAD~1\\mcieplg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\\Program Files\\Ask.com\\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\\PROGRA~1\\mcafee\\SITEAD~1\\mcieplg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\\Program Files\\Ask.com\\GenericAskToolbar.dll
O4 - HKLM\\..\\Run: [Windows Defender] %ProgramFiles%\\Windows Defender\\MSASCui.exe -hide
O4 - HKLM\\..\\Run: [RtHDVCpl] C:\\Program Files\\Realtek\\Audio\\HDA\\RtHDVCpl.exe
O4 - HKLM\\..\\Run: [Apoint] C:\\Program Files\\Apoint\\Apoint.exe
O4 - HKLM\\..\\Run: [ISBMgr.exe] \"C:\\Program Files\\Sony\\ISB Utility\\ISBMgr.exe\"
O4 - HKLM\\..\\Run: [StartCCC] \"C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun
O4 - HKLM\\..\\Run: [Google Desktop Search] \"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup
O4 - HKLM\\..\\Run: [McENUI] C:\\PROGRA~1\\McAfee\\MHN\\McENUI.exe /hide
O4 - HKLM\\..\\Run: [MarketingTools] C:\\Program Files\\Sony\\Marketing Tools\\MarketingTools.exe
O4 - HKLM\\..\\Run: [AML] C:\\Program Files\\Sony\\VAIO Launcher\\AML.exe InitApp
O4 - HKLM\\..\\Run: [mcagent_exe] \"C:\\Program Files\\McAfee.com\\Agent\\mcagent.exe\" /runkey
O4 - HKLM\\..\\Run: [Skytel] C:\\Program Files\\Realtek\\Audio\\HDA\\Skytel.exe
O4 - HKLM\\..\\Run: [UIExec] \"C:\\Program Files\\ZTE Join Air\\UIExec.exe\"
O4 - HKLM\\..\\Run: [avgnt] \"C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\" /min
O4 - HKLM\\..\\Run: [SAFEOEM HotKeys] \"C:\\Program Files\\Steganos Safe OEM\\SteganosHotKeyService.exe\"
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime
O4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"
O4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"
O4 - HKLM\\..\\Run: [Adobe ARM] \"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"
O4 - HKCU\\..\\Run: [NSUFloatingUI] \"C:\\Program Files\\Sony\\Network Utility\\LANUtil.exe\"
O4 - HKCU\\..\\Run: [swg] \"C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\"
O4 - HKCU\\..\\Run: [VMpTtray.exe] C:\\Program Files\\Sony\\VAIO Media plus\\VMpTtray.exe
O4 - HKCU\\..\\Run: [NortonOnlineBackupReminder] \"C:\\Program Files\\Symantec\\Norton Online Backup\\Activation\\NobuActivation.exe\" UNATTENDED
O4 - HKCU\\..\\Run: [ehTray.exe] C:\\Windows\\ehome\\ehTray.exe
O4 - HKCU\\..\\Run: [ClipIncSrvTray] \"C:\\Program Files\\Tobit ClipInc\\Player\\ClipIncTray.exe\"
O4 - HKCU\\..\\Run: [rfxsrvtray] \"C:\\Program Files\\Tobit Radio.fx\\Client\\rfx-tray.exe\"
O4 - HKCU\\..\\RunOnce: [scan_after_setup] \"c:\\program files\\avira\\antivir desktop\\avcenter.exe\" /SCANAFTERSETUP=\"scan setup2date wait newprocess\"
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie_ctx.htm
O8 - Extra context menu item: Google Sidewiki... - res://C:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\\PROGRA~1\\MICROS~2\\OFFICE11\\EXCEL.EXE/3000
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O9 - Extra \'Tools\' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\\windows\\system32\\wpclsp.dll
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\\PROGRA~1\\mcafee\\SITEAD~1\\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\PROGRA~1\\COMMON~1\\Skype\\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\Windows\\system32\\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\\Program Files\\Common Files\\ArcSoft\\Connection Service\\Bin\\ACService.exe
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\\Program Files\\Adobe\\Photoshop Elements 7.0\\PhotoshopElementsFileAgent.exe
O23 - Service: Avira AntiVir Planer (AntiVirSchedulerService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\\Windows\\system32\\Ati2evxx.exe
O23 - Service: Dienst \"Bonjour\" (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\\Program Files\\WIDCOMM\\Bluetooth Software\\btwdins.exe
O23 - Service: ClipInc 001 (ClipInc001) - Unknown owner - C:\\Program Files\\Tobit ClipInc\\Server\\ClipInc-Server.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\\Program Files\\Intel\\WiFi\\bin\\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\\Program Files\\Common Files\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.9.911.3589 (GoogleDesktopManager-110309-193829) - Google - C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Unknown owner - C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe (file missing)
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\\Program Files\\Common Files\\InterVideo\\RegMgr\\iviRegMgr.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\\Program Files\\McAfee\\SiteAdvisor\\McSACore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\\Program Files\\McAfee Security Scan\\2.0.181\\McCHSvc.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\\PROGRA~1\\COMMON~1\\mcafee\\mna\\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\\PROGRA~1\\COMMON~1\\mcafee\\mcproxy\\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcshield.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\\Program Files\\McAfee\\MPF\\MPFSrv.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\\Program Files\\McAfee\\MSK\\MskSrver.exe
O23 - Service: NSUService - Sony Corporation - C:\\Program Files\\sony\\Network Utility\\NSUService.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\PACSPTISVR.exe
O23 - Service: Radio.fx Server (Radio.fx) - Unknown owner - C:\\Program Files\\Tobit Radio.fx\\Server\\rfx-server.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\\Program Files\\Common Files\\Intel\\WirelessCommon\\RegSrvc.exe
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\\Program Files\\Realtek\\Audio\\HDA\\RtkAudioService.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHCImp.exe
O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHDBSvr.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHDs.exe
O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\SOHLib\\SOHPlMgr.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\\Program Files\\ArcSoft\\Magic-i Visual Effects 2\\uCamMonitor.exe
O23 - Service: UI Assistant Service - Unknown owner - C:\\Program Files\\ZTE Join Air\\AssistantServices.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Entertainment Platform\\VzHardwareResourceManager\\VzHardwareResourceManager\\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\\Program Files\\sony\\VAIO Event Service\\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\\Program Files\\Sony\\VAIO Power Management\\SPMService.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Content Folder Watcher\\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\\Program Files\\Sony\\VCM Intelligent Analyzing Manager\\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VcmXml\\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Entertainment Platform\\VCSW\\VCSW.exe
O23 - Service: VUAgent - Sony Corporation - C:\\Program Files\\sony\\VAIO Update 5\\VUAgent.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\VAIO Entertainment Platform\\VzCdb\\VzCdbSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\\Windows\\system32\\DRIVERS\\xaudio.exe
--
End of file - 15071 bytes
Archiv