keylogged
- danman521
- Newbie
- Registriert: Aug 04, 2009
- Beiträge: 5
- Status: Offline
August 6th, 2009, 7:25 pm
Habe ich ein Key Logger
Logfile von Trend Micro HijackThis V2.0.2
Scan gespeichert um 12:44:41, am 8/4/2009
Plattform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot-Modus: Normal
Laufenden Prozesse:
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ PcCtlCom.exe
C: \ Program Files (x86) \ Google \ Update \ 1.2.183.7 \ GoogleCrashHandler.exe
C: \ Program Files (x86) \ Microsoft \ Search Enhancement Pack \ Seaport \ SeaPort.exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ Tmntsrv. exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ TmPfw.exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ tmproxy.exe
C: \ Program Files (x86) \ Viewpoint \ Common \ ViewpointService.exe
C: \ Program Files (x86) \ AIM6 \ aim6.exe
C: \ Program Files (x86) \ Windows Live \ Messenger \ msnmsgr.exe
C: \ Program Files (x86) \ Digital Line Detect \ DLG.exe
C: \ Program Files (x86) \ Trend Micro \ Internet Security 14 \ pccguide.exe
C: \ Program Files \ CyberLink \ PowerDVD DX \ PDVDDXSrv.exe
C: \ Program Files (x86) \ AIM6 \ aolsoftware. exe
C: \ Program Files (x86) \ Yahoo! \ Messenger \ ymsgr_tray.exe
C: \ Program Files (x86) \ Internet Explorer \ ieuser.exe
C: \ Program Files (x86) \ Internet Explorer \ iexplore.exe
C: \ Program Files (x86) \ Ziel Symbolleiste \ aimtbServer.exe
C: \ Program Files (x86) \ Windows Live \ Kontakt \ wlcomm.exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ PccVScan.exe
C: \ Program Files (x86) \ Spyware Doctor \ pctsAuxs.exe
C: \ Program Files (x86) \ Spyware Doctor \ pctsSvc.exe
C: \ Program Files (x86) \ Spyware Doctor \ pctsTray. exe
C: \ Program Files (x86) \ Malwarebytes Anti-Malware \ Winlogon (3). Exe
C: \ Windows \ SysWOW64 \ Macromed \ Flash \ FlashUtil10b.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ HijackThis. exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search , SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window Title = Internet Explorer, die von Dell
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: AIM Toolbar suchen Class - (03402f96-3dc7-4285-bc50-9e81fefafe43) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb. dll
O1 - Hosts::: 1 localhost
O2 - BHO: (no name) - (02478D38-C3F9-4efb-9B51-7695ECA05670) - (no file)
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files (x86) \ Gemeinsame Dateien \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim. dll
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
O2 - BHO: Search Helper - (6EBF7485-159F-4bff-A14F-B9E3AAC4465B) - C: \ Program Files (x86) \ Microsoft \ Search Enhancement Pack \ Search Helper \ SEPsearchhelperie.dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Gemeinsame Dateien \ Microsoft Shared \ Windows Live \ WindowsLiveLogin. dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files (x86) \ Google \ GoogleToolbarNotifier \ 5.1.1309.3572 \ swg.dll
O2 - BHO: AIM Toolbar Loader - (b0cda128-b425-4eef-a174-61a11ac5dbf8) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb.dll
O2 - BHO: Browser Address Error Redirector - (CA6319C0-31B7-401E-A518-A07C3DB8F777) - C: \ Program Files (x86) \ Dell \ BAE \ BAE. dll
O2 - BHO: MSN Toolbar Helper - (d2ce3e00-f94a-4740-988e-03dc2f38c34f) - C: \ Program Files (x86) \ MSN \ Toolbar \ 3.0.1125.0 \ msneshellx.dll
O2 - BHO: Java (TM) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jp2ssv.dll
O3 - Toolbar: AIM-Toolbar - (61539ecd-cc67-4437-a03c-9aaccbd14326) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb.dll
O3 - Toolbar: MSN Toolbar - (1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414) - C: \ Program Files (x86) \ MSN \ Toolbar \ 3. 0.1125.0 \ msneshellx.dll
O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files (x86) \ ATI Technologies \ ATI.ACE \ Core-Static \ CLIStart.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files (x86) \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [pccguide.exe] "C: \ Program Files (x86) \ Trend Micro \ Internet Security 14 \ pccguide.exe"
O4 - HKLM \ .. \ Run: [PDVDDXSrv] "C: \ Program Files \ CyberLink \ PowerDVD DX \ PDVDDXSrv.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Microsoft-Standard-Manager] "C: \ Program Files (x86) \ Microsoft \ Search Enhancement Pack \ Default Manager \ DefMgr.exe"-Wiederaufnahme
O4 - HKLM \ .. \ Run: [ISTray] "C: \ Program Files (x86) \ Spyware Doctor \ pctsTray.exe"
O4 - HKLM \ .. \ RunOnce: [Malwarebytes Anti-Malware] "C: \ Program Files (x86) \ Malwarebytes Anti-Malware \ mbamgui.exe" / install / silent
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Sidebar \ sidebar.exe / autorun
O4 - HKCU \ .. \ Run: [Aim6] "C: \ Program Files (x86) \ AIM6 \ aim6.exe" / d locale = en-US ee://aol/imApp
O4 - HKCU \ .. \ Run: [Messenger (Yahoo!)] "C: \ Program Files (x86) \ Yahoo! \ Messenger \ YahooMessenger.exe"-quiet
O4 - HKCU \ .. \ Run: [WMPNSCFG] C: \ Program Files (x86) \ Windows Media Player \ WMPNSCFG.exe
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files (x86) \ Windows Live \ Messenger \ msnmsgr. exe "/ Hintergrund
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (User LOCAL SERVICE)
O4 - HKUS \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User LOCAL SERVICE)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (Nutzer Netzdienst)
O4 - Global Startup: Digital Line Detect.lnk = "C: \ Program Files (x86) \ Digital Line Detect \ DLG. exe
O4 - Global Startup: Microsoft Office.lnk = C: \ Program Files (x86) \ Microsoft Office \ Office \ OSA9.EXE
O8 - Extra Kontext Menüpunkt: & AIM Toolbar-Suche - C: \ ProgramData \ AIM Toolbar \ ieToolbar \ Resources \ en-US \ local \ search.html
O9 - Extra button: AIM-Toolbar - (0b83c99c-1efa-4259-858f-bcb33e007a5b) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb. dll
O13 - Gopher Prefix:
O16 - DPF: (0CCA191D-13A6-4E29-B746-314DEE697D83) (Facebook Photo Uploader 5 Kontrolle) -- http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: (48DD0448-9209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: (9C23D886-43CB-43DE-B2DB-112A68D7E10A) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: @% SystemRoot% \ system32 \ Alg. exe, -112 (ALG) - Unbekannte Eigentümer - C: \ Windows \ System32 \ alg.exe (file missing)
O23 - Service: Ati External Event Utility - Unbekannte Eigentümer - C: \ Windows \ system32 \ Ati2evxx.exe (file missing)
O23 - Service: @ dfsrres.dll, -101 (DFSR) - Unbekannte Eigentümer - C: \ Windows \ system32 \ DFSR.exe (file missing)
O23 - Service: Google Update Service (gupdate1c9dbbef3dde86d) (gupdate1c9dbbef3dde86d) - Google Inc. - C: \ Program Files (x86) \ Google \ Update \ GoogleUpdate. exe
O23 - Service: Google-Software Updater (gusvc) - Google - C: \ Program Files (x86) \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: @ keyiso.dll, -100 (KeyIso) - Unbekannte Eigentümer - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @ comres.dll, -2797 (MSDTC) - Unbekannte Eigentümer - C: \ Windows \ System32 \ msdtc.exe (file missing)
O23 - Service: @% SystemRoot% \ System32 \ Netlogon.dll, -102 (Netlogon) - Unbekannte Eigentümer - C: \ Windows \ system32 \ LSASS. exe (file missing)
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ PcCtlCom.exe
O23 - Service: @% systemroot% \ system32 \ Psbase.dll, -300 (ProtectedStorage) - Unbekannte Eigentümer - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @% systemroot% \ system32 \ Locator.exe, -2 (RpcLocator) - Unbekannte Eigentümer - C: \ Windows \ system32 \ Locator.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ samsrv. dll, -1 (SamSs) - Unbekannte Eigentümer - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C: \ Program Files (x86) \ Spyware Doctor \ pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C: \ Program Files (x86) \ Spyware Doctor \ pctsSvc.exe
O23 - Service: @% SystemRoot% \ system32 \ SLsvc.exe, -101 (slsvc) - Unbekannte Eigentümer - C: \ Windows \ system32 \ SLsvc. exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ snmptrap.exe, -3 (SNMPTRAP) - Unbekannte Eigentümer - C: \ Windows \ System32 \ snmptrap.exe (file missing)
O23 - Service: @% systemroot% \ system32 \ spoolsv.exe, -1 (Spooler) - Unbekannte Eigentümer - C: \ Windows \ System32 \ spoolsv.exe (file missing)
O23 - Service: stllssvr - Microvision Development, Inc. - C: \ Program Files (x86) \ Gemeinsame Dateien \ SureThing Shared \ stllssvr.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ tmproxy.exe
O23 - Service: @% SystemRoot% \ system32 \ ui0detect.exe, -101 (UI0Detect) - Unbekannte Eigentümer - C: \ Windows \ system32 \ UI0Detect.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ VDS. exe, -100 (VDS) - Unbekannte Eigentümer - C: \ Windows \ System32 \ Vds.exe (file missing)
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files (x86) \ Viewpoint \ Common \ ViewpointService.exe
O23 - Service: @% systemroot% \ system32 \ Vssvc.exe, -102 (VSS) - Unbekannte Eigentümer - C: \ Windows \ system32 \ Vssvc.exe (file missing)
O23 - Service: @% Systemroot% \ system32 \ wbem \ wmiapsrv.exe, -110 (wmiApSrv) - Unbekannte Eigentümer - C: \ Windows \ system32 \ wbem \ WmiApSrv. exe (file missing)
O23 - Service: @% ProgramFiles% \ Windows Media Player \ wmpnetwk.exe, -101 (WMPNetworkSvc) - Unbekannte Eigentümer - C: \ Program Files (x86) \ Windows Media Player \ wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Unbekannte Eigentümer - C: \ Windows \ system32 \ drivers \ xaudio64.exe (file missing)
--
Ende der Datei - 10462 bytes
Logfile von Trend Micro HijackThis V2.0.2
Scan gespeichert um 12:44:41, am 8/4/2009
Plattform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot-Modus: Normal
Laufenden Prozesse:
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ PcCtlCom.exe
C: \ Program Files (x86) \ Google \ Update \ 1.2.183.7 \ GoogleCrashHandler.exe
C: \ Program Files (x86) \ Microsoft \ Search Enhancement Pack \ Seaport \ SeaPort.exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ Tmntsrv. exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ TmPfw.exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ tmproxy.exe
C: \ Program Files (x86) \ Viewpoint \ Common \ ViewpointService.exe
C: \ Program Files (x86) \ AIM6 \ aim6.exe
C: \ Program Files (x86) \ Windows Live \ Messenger \ msnmsgr.exe
C: \ Program Files (x86) \ Digital Line Detect \ DLG.exe
C: \ Program Files (x86) \ Trend Micro \ Internet Security 14 \ pccguide.exe
C: \ Program Files \ CyberLink \ PowerDVD DX \ PDVDDXSrv.exe
C: \ Program Files (x86) \ AIM6 \ aolsoftware. exe
C: \ Program Files (x86) \ Yahoo! \ Messenger \ ymsgr_tray.exe
C: \ Program Files (x86) \ Internet Explorer \ ieuser.exe
C: \ Program Files (x86) \ Internet Explorer \ iexplore.exe
C: \ Program Files (x86) \ Ziel Symbolleiste \ aimtbServer.exe
C: \ Program Files (x86) \ Windows Live \ Kontakt \ wlcomm.exe
C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ PccVScan.exe
C: \ Program Files (x86) \ Spyware Doctor \ pctsAuxs.exe
C: \ Program Files (x86) \ Spyware Doctor \ pctsSvc.exe
C: \ Program Files (x86) \ Spyware Doctor \ pctsTray. exe
C: \ Program Files (x86) \ Malwarebytes Anti-Malware \ Winlogon (3). Exe
C: \ Windows \ SysWOW64 \ Macromed \ Flash \ FlashUtil10b.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ HijackThis. exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search , SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window Title = Internet Explorer, die von Dell
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: AIM Toolbar suchen Class - (03402f96-3dc7-4285-bc50-9e81fefafe43) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb. dll
O1 - Hosts::: 1 localhost
O2 - BHO: (no name) - (02478D38-C3F9-4efb-9B51-7695ECA05670) - (no file)
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files (x86) \ Gemeinsame Dateien \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim. dll
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
O2 - BHO: Search Helper - (6EBF7485-159F-4bff-A14F-B9E3AAC4465B) - C: \ Program Files (x86) \ Microsoft \ Search Enhancement Pack \ Search Helper \ SEPsearchhelperie.dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Gemeinsame Dateien \ Microsoft Shared \ Windows Live \ WindowsLiveLogin. dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files (x86) \ Google \ GoogleToolbarNotifier \ 5.1.1309.3572 \ swg.dll
O2 - BHO: AIM Toolbar Loader - (b0cda128-b425-4eef-a174-61a11ac5dbf8) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb.dll
O2 - BHO: Browser Address Error Redirector - (CA6319C0-31B7-401E-A518-A07C3DB8F777) - C: \ Program Files (x86) \ Dell \ BAE \ BAE. dll
O2 - BHO: MSN Toolbar Helper - (d2ce3e00-f94a-4740-988e-03dc2f38c34f) - C: \ Program Files (x86) \ MSN \ Toolbar \ 3.0.1125.0 \ msneshellx.dll
O2 - BHO: Java (TM) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jp2ssv.dll
O3 - Toolbar: AIM-Toolbar - (61539ecd-cc67-4437-a03c-9aaccbd14326) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb.dll
O3 - Toolbar: MSN Toolbar - (1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414) - C: \ Program Files (x86) \ MSN \ Toolbar \ 3. 0.1125.0 \ msneshellx.dll
O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files (x86) \ ATI Technologies \ ATI.ACE \ Core-Static \ CLIStart.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files (x86) \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [pccguide.exe] "C: \ Program Files (x86) \ Trend Micro \ Internet Security 14 \ pccguide.exe"
O4 - HKLM \ .. \ Run: [PDVDDXSrv] "C: \ Program Files \ CyberLink \ PowerDVD DX \ PDVDDXSrv.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Microsoft-Standard-Manager] "C: \ Program Files (x86) \ Microsoft \ Search Enhancement Pack \ Default Manager \ DefMgr.exe"-Wiederaufnahme
O4 - HKLM \ .. \ Run: [ISTray] "C: \ Program Files (x86) \ Spyware Doctor \ pctsTray.exe"
O4 - HKLM \ .. \ RunOnce: [Malwarebytes Anti-Malware] "C: \ Program Files (x86) \ Malwarebytes Anti-Malware \ mbamgui.exe" / install / silent
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Sidebar \ sidebar.exe / autorun
O4 - HKCU \ .. \ Run: [Aim6] "C: \ Program Files (x86) \ AIM6 \ aim6.exe" / d locale = en-US ee://aol/imApp
O4 - HKCU \ .. \ Run: [Messenger (Yahoo!)] "C: \ Program Files (x86) \ Yahoo! \ Messenger \ YahooMessenger.exe"-quiet
O4 - HKCU \ .. \ Run: [WMPNSCFG] C: \ Program Files (x86) \ Windows Media Player \ WMPNSCFG.exe
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files (x86) \ Windows Live \ Messenger \ msnmsgr. exe "/ Hintergrund
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (User LOCAL SERVICE)
O4 - HKUS \ S-1-5-19 \ .. \ Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User LOCAL SERVICE)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / detectMem (Nutzer Netzdienst)
O4 - Global Startup: Digital Line Detect.lnk = "C: \ Program Files (x86) \ Digital Line Detect \ DLG. exe
O4 - Global Startup: Microsoft Office.lnk = C: \ Program Files (x86) \ Microsoft Office \ Office \ OSA9.EXE
O8 - Extra Kontext Menüpunkt: & AIM Toolbar-Suche - C: \ ProgramData \ AIM Toolbar \ ieToolbar \ Resources \ en-US \ local \ search.html
O9 - Extra button: AIM-Toolbar - (0b83c99c-1efa-4259-858f-bcb33e007a5b) - C: \ Program Files (x86) \ AIM Toolbar \ aimtb. dll
O13 - Gopher Prefix:
O16 - DPF: (0CCA191D-13A6-4E29-B746-314DEE697D83) (Facebook Photo Uploader 5 Kontrolle) -- http://upload.facebook.com/controls/200 ... oader5.cab
O16 - DPF: (48DD0448-9209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: (9C23D886-43CB-43DE-B2DB-112A68D7E10A) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: @% SystemRoot% \ system32 \ Alg. exe, -112 (ALG) - Unbekannte Eigentümer - C: \ Windows \ System32 \ alg.exe (file missing)
O23 - Service: Ati External Event Utility - Unbekannte Eigentümer - C: \ Windows \ system32 \ Ati2evxx.exe (file missing)
O23 - Service: @ dfsrres.dll, -101 (DFSR) - Unbekannte Eigentümer - C: \ Windows \ system32 \ DFSR.exe (file missing)
O23 - Service: Google Update Service (gupdate1c9dbbef3dde86d) (gupdate1c9dbbef3dde86d) - Google Inc. - C: \ Program Files (x86) \ Google \ Update \ GoogleUpdate. exe
O23 - Service: Google-Software Updater (gusvc) - Google - C: \ Program Files (x86) \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: @ keyiso.dll, -100 (KeyIso) - Unbekannte Eigentümer - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @ comres.dll, -2797 (MSDTC) - Unbekannte Eigentümer - C: \ Windows \ System32 \ msdtc.exe (file missing)
O23 - Service: @% SystemRoot% \ System32 \ Netlogon.dll, -102 (Netlogon) - Unbekannte Eigentümer - C: \ Windows \ system32 \ LSASS. exe (file missing)
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ PcCtlCom.exe
O23 - Service: @% systemroot% \ system32 \ Psbase.dll, -300 (ProtectedStorage) - Unbekannte Eigentümer - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: @% systemroot% \ system32 \ Locator.exe, -2 (RpcLocator) - Unbekannte Eigentümer - C: \ Windows \ system32 \ Locator.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ samsrv. dll, -1 (SamSs) - Unbekannte Eigentümer - C: \ Windows \ system32 \ lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C: \ Program Files (x86) \ Spyware Doctor \ pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C: \ Program Files (x86) \ Spyware Doctor \ pctsSvc.exe
O23 - Service: @% SystemRoot% \ system32 \ SLsvc.exe, -101 (slsvc) - Unbekannte Eigentümer - C: \ Windows \ system32 \ SLsvc. exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ snmptrap.exe, -3 (SNMPTRAP) - Unbekannte Eigentümer - C: \ Windows \ System32 \ snmptrap.exe (file missing)
O23 - Service: @% systemroot% \ system32 \ spoolsv.exe, -1 (Spooler) - Unbekannte Eigentümer - C: \ Windows \ System32 \ spoolsv.exe (file missing)
O23 - Service: stllssvr - Microvision Development, Inc. - C: \ Program Files (x86) \ Gemeinsame Dateien \ SureThing Shared \ stllssvr.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C: \ PROGRA ~ 2 \ TRENDM ~ 1 \ INTERN ~ 1 \ tmproxy.exe
O23 - Service: @% SystemRoot% \ system32 \ ui0detect.exe, -101 (UI0Detect) - Unbekannte Eigentümer - C: \ Windows \ system32 \ UI0Detect.exe (file missing)
O23 - Service: @% SystemRoot% \ system32 \ VDS. exe, -100 (VDS) - Unbekannte Eigentümer - C: \ Windows \ System32 \ Vds.exe (file missing)
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files (x86) \ Viewpoint \ Common \ ViewpointService.exe
O23 - Service: @% systemroot% \ system32 \ Vssvc.exe, -102 (VSS) - Unbekannte Eigentümer - C: \ Windows \ system32 \ Vssvc.exe (file missing)
O23 - Service: @% Systemroot% \ system32 \ wbem \ wmiapsrv.exe, -110 (wmiApSrv) - Unbekannte Eigentümer - C: \ Windows \ system32 \ wbem \ WmiApSrv. exe (file missing)
O23 - Service: @% ProgramFiles% \ Windows Media Player \ wmpnetwk.exe, -101 (WMPNetworkSvc) - Unbekannte Eigentümer - C: \ Program Files (x86) \ Windows Media Player \ wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Unbekannte Eigentümer - C: \ Windows \ system32 \ drivers \ xaudio64.exe (file missing)
--
Ende der Datei - 10462 bytes
- Anonymous
- Bot
- Registriert: 25 Feb 2008
- Beiträge: ?
- Loc: Ozzuland
- Status: Online
August 6th, 2009, 7:25 pm
- Don2007
- Web Master
- Registriert: Nov 21, 2006
- Beiträge: 4456
- Loc: NY
- Status: Offline
August 10th, 2009, 7:14 pm
Ich sehe nicht ein Keylogger. Was Sie denken, Sie hatten eine?
Seite 1 von 1
Um Antworten zu diesem Thema müssen Sie sich einloggen oder registrieren. Es ist kostenlos.
Buchung Informationen
- Beiträge in diesem Thema: 2 Beiträge
- Mitglieder in diesem Forum: 0 Mitglieder und 205 Gäste
- Du darfst keine neuen Themen in diesem Forum erstellen.
- Du darfst keine Antworten zu Themen in diesem Forum erstellen.
- Du darfst deine Beiträge in diesem Forum nicht ändern.
- Du darfst deine Beiträge in diesem Forum nicht löschen.
- Du darfst keine Dateianhänge in diesem Forum erstellen.
