Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Hijacker......will auf Nummer sicher gehen 3 (https://www.trojaner-board.de/15061-hijacker-will-nummer-sicher-gehen-3-a.html)

annette 08.03.2005 00:33
Hijacker......will auf Nummer sicher gehen 3
 
O4 - HKLM\..\Run: [EACLEAN] C:\Program Files\Compaq\Easy Access Button Support\eaclean.exe
O4 - HKLM\..\Run: [CPQInet] c:\compaq\CPQInet\CpqInet.exe
O4 - HKLM\..\Run: [Digital Dashboard] C:\Program Files\Compaq\Digital Dashboard\DevGulp.exe
O4 - HKLM\..\Run: [Service Connection] c:\cpqs\bwtools\sccenter.exe
O4 - HKLM\..\Run: [CountrySelection] pctptt.exe
O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [CompaqSysTray] cpqpscp.exe
O4 - HKLM\..\Run: [cqscp2ps.exe] C:\WINDOWS\SYSTEM\cqscp2ps.exe
O4 - HKLM\..\Run: [LexStart] Lexstart.exe
O4 - HKLM\..\Run: [SHPC32] shpc32.exe
O4 - HKLM\..\Run: [CQSCP2PSERVER] CQSCP2PS.EXE
O4 - HKLM\..\Run: [abtu] C:\WINDOWS\APPLIC~1\lopsearch.exe -QuieT
O4 - HKLM\..\Run: [MediaLoads Installer] "C:\Program Files\DownloadWare\dw.exe" /H
O4 - HKLM\..\Run: [QuickTime Task] C:\WINDOWS\SYSTEM\QTTASK.EXE
O4 - HKLM\..\Run: [WhenUSave] C:\PROGRA~1\SAVE\Save.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [MotiveMonitor] C:\Program Files\Motive\motmon.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [LVComs] C:\WINDOWS\SYSTEM\LVComS.exe
O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~1.DLL,NewDotNetStartup -s
O4 - HKLM\..\Run: [Iof] C:\WINDOWS\Ime.exe
O4 - HKLM\..\Run: [ControlPanel] C:\WINDOWS\SYSTEM\cmd32.exe internat.dll,LoadKeyboardProfile
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [bREb] C:\WINDOWS\YKRQXDDX.EXE
O4 - HKLM\..\Run: [Tlp] C:\WINDOWS\Ggn.exe
O4 - HKLM\..\Run: [Kpb] C:\WINDOWS\SYSTEM\Jlf.exe
O4 - HKLM\..\Run: [Oqi] C:\WINDOWS\SYSTEM\Qse.exe
O4 - HKLM\..\Run: [Hvi] C:\WINDOWS\SYSTEM\Udg.exe
O4 - HKLM\..\Run: [AdTools Service] C:\PROGRAM FILES\ADTOOLS SERVICE\ADTOOLS.EXE
O4 - HKLM\..\Run: [Lbi] C:\WINDOWS\SYSTEM\Rmh.exe
O4 - HKLM\..\Run: [Glv] C:\WINDOWS\SYSTEM\Oev.exe
O4 - HKLM\..\Run: [Ogj] C:\WINDOWS\Fln.exe
O4 - HKLM\..\Run: [Sge] C:\WINDOWS\SYSTEM\Egu.exe
O4 - HKLM\..\Run: [Oot] C:\WINDOWS\Rna.exe
O4 - HKLM\..\Run: [Cpf] C:\WINDOWS\Rdd.exe
O4 - HKLM\..\Run: [Gst] C:\WINDOWS\SYSTEM\Cik.exe
O4 - HKLM\..\Run: [Fji] C:\WINDOWS\Krc.exe
O4 - HKLM\..\Run: [Eum] C:\WINDOWS\Dvs.exe
O4 - HKLM\..\Run: [Dqa] C:\WINDOWS\SYSTEM\Leu.exe
O4 - HKLM\..\Run: [Chn] C:\WINDOWS\SYSTEM\Kte.exe
O4 - HKLM\..\Run: [Aib] C:\WINDOWS\Vqe.exe
O4 - HKLM\..\Run: [Emg] C:\WINDOWS\SYSTEM\Dif.exe
O4 - HKLM\..\Run: [Tof] C:\WINDOWS\SYSTEM\Blq.exe
O4 - HKLM\..\Run: [Rfv] C:\WINDOWS\Ihm.exe
O4 - HKLM\..\Run: [Hotbar] C:\Program Files\Hotbar\Bin\4.6.1.0\HbOEAddOn.exe
O4 - HKLM\..\Run: [WeatherOnTray] C:\PROGRAM FILES\HOTBAR\BIN\4.6.1.0\WEATHERONTRAY.EXE
O4 - HKLM\..\Run: [orrialba] C:\WINDOWS\SYSTEM\pspwzydc.exe
O4 - HKLM\..\Run: [Kmq] C:\WINDOWS\SYSTEM\Oto.exe
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [*StateMgr] C:\WINDOWS\System\Restore\StateMgr.exe
O4 - HKLM\..\RunServices: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Iof] C:\WINDOWS\Ime.exe
O4 - HKCU\..\Run: [Tlp] C:\WINDOWS\Ggn.exe
O4 - HKCU\..\Run: [Kpb] C:\WINDOWS\SYSTEM\Jlf.exe
O4 - HKCU\..\Run: [Oqi] C:\WINDOWS\SYSTEM\Qse.exe
O4 - HKCU\..\Run: [Hvi] C:\WINDOWS\SYSTEM\Udg.exe
O4 - HKCU\..\Run: [Lbi] C:\WINDOWS\SYSTEM\Rmh.exe
O4 - HKCU\..\Run: [Glv] C:\WINDOWS\SYSTEM\Oev.exe
O4 - HKCU\..\Run: [Ogj] C:\WINDOWS\Fln.exe
O4 - HKCU\..\Run: [Sge] C:\WINDOWS\SYSTEM\Egu.exe
O4 - HKCU\..\Run: [Oot] C:\WINDOWS\Rna.exe
O4 - HKCU\..\Run: [Cpf] C:\WINDOWS\Rdd.exe
O4 - HKCU\..\Run: [Gst] C:\WINDOWS\SYSTEM\Cik.exe
O4 - HKCU\..\Run: [Fji] C:\WINDOWS\Krc.exe
O4 - HKCU\..\Run: [Eum] C:\WINDOWS\Dvs.exe
O4 - HKCU\..\Run: [Dqa] C:\WINDOWS\SYSTEM\Leu.exe
O4 - HKCU\..\Run: [Chn] C:\WINDOWS\SYSTEM\Kte.exe
O4 - HKCU\..\Run: [Aib] C:\WINDOWS\Vqe.exe
O4 - HKCU\..\Run: [Emg] C:\WINDOWS\SYSTEM\Dif.exe
O4 - HKCU\..\Run: [Tof] C:\WINDOWS\SYSTEM\Blq.exe
O4 - HKCU\..\Run: [Rfv] C:\WINDOWS\Ihm.exe
O4 - HKCU\..\Run: [Kmq] C:\WINDOWS\SYSTEM\Oto.exe
O4 - Startup: Microsoft Works Calendar Reminders.lnk = C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
O4 - Startup: A1000 Settings Utility.lnk = C:\Program Files\Compaq\A1000\CPQA1000.exe
O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Startup: America Online 5.0 Tray Icon.lnk = C:\America Online 5.0a\aoltray.exe
O4 - Startup: PowerReg Scheduler.exe
O4 - Startup: Compaq Knowledge Center.lnk = C:\Program Files\Compaq Knowledge Center\bin\silent.exe
O4 - Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Yahoo! Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Translate - {06FE5D05-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra 'Tools' menuitem: AV &Translate - {06FE5D05-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra button: (no name) - {06FE5D02-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra 'Tools' menuitem: &Find Pages Linking to this URL - {06FE5D02-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra button: (no name) - {06FE5D03-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra 'Tools' menuitem: Find Other Pages on this &Host - {06FE5D03-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra button: (no name) - {06FE5D04-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra 'Tools' menuitem: AV Live - {06FE5D04-8F11-11d2-804F-00105A133818} - http://search.presario.net/scripts/r...c=3c00&LC=0409 (file missing)
O9 - Extra button: Print Favorites - {BA224D00-9553-11d2-9D65-00A0CC22CBC4} - C:\Program Files\Compaq\A1000\prnfavs.exe
O9 - Extra 'Tools' menuitem: Print &Favorites... - {BA224D00-9553-11d2-9D65-00A0CC22CBC4} - C:\Program Files\Compaq\A1000\prnfavs.exe
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRAM FILES\YAHOO!\MESSENGER\YHEXBMES0411.DLL
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRAM FILES\YAHOO!\MESSENGER\YHEXBMES0411.DLL
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O12 - Plugin for .swf: C:\Program Files\Netscape\Communicator\Program\PLUGINS\npswf32.dll
O15 - Trusted Zone: *.windupdates.com
O15 - Trusted Zone: *.searchmiracle.com
O15 - Trusted Zone: *.searchbarcash.com
O15 - Trusted Zone: *.skoobidoo.com
O15 - Trusted Zone: *.my-internet.info

cronos 08.03.2005 00:44
siehe http://www.trojaner-board.de/showthread.php?t=15062


Alle Zeitangaben in WEZ +1. Es ist jetzt 15:47 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131