|
Brauche mal Hilfe unter Vista neuling!!! Hallo Leute, hab mein System "Vista" mit Adware & Spybot durschlaufen lassen,wie immer nichts :) Und dann noch mal mit a-squared Free mit komischen ergebnis... a-squared Free - Version 2.1 Scan Einstellungen: Objekte: Speicher, Traces, Cookies, C:\, D:\, E:\, F:\, G:\ Archiv Scan: An Heuristik: An ADS Scan: An Scan Beginn: 01.04.2007 18:29:27 C:\Windows\system32\winload.exe gefunden: Trace.File.PC Tattletale C:\Program Files\Common Files\Acronis\Fomatik\fnls.dll/ gefunden: Heuristic.ArchiveBomb C:\Program Files\InstallShield Installation Information\{59452470-A902-477F-9338-9B88101681BD}\_setup.dll gefunden: Adware.Win32.Altnet.b C:\Program Files\InstallShield Installation Information\{9E158BB9-37B9-464B-837E-CC1D5766291B}\_setup.dll gefunden: Adware.Win32.Altnet.b C:\Program Files\InstallShield Installation Information\{EF3D45BB-2260-4008-88EA-492E7744A9DF}\_setup.dll gefunden: Adware.Win32.Altnet.b C:\Program Files\InstallShield Installation Information\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}\_setup.dll gefunden: Adware.Win32.Altnet.b C:\Program Files\InstallShield Installation Information\{F570A6CC-53ED-4AA9-8B08-551CD3E38D8B}\_setup.dll gefunden: Adware.Win32.Altnet.b D:\Drivers\USBMouse\ms98.cab/PMVAIO.DLL gefunden: Adware.Win32.Altnet.b D:\Programme\Acronis\TrueImageHome\BartPE\Files\fnls.dll/ gefunden: Heuristic.ArchiveBomb D:\Programme\Gemeinsame Dateien\Acronis\Fomatik\fnls.dll/ gefunden: Heuristic.ArchiveBomb D:\Programme\InstallShield Installation Information\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}\_setup.dll gefunden: Adware.Win32.Altnet.b D:\Programme\InstallShield Installation Information\{BE56FEF0-1A0F-4719-B3AD-34B5087AFA6D}\_setup.dll gefunden: Adware.Win32.Altnet.b D:\WINDOWS\system32\ms98.cab/PMVAIO.DLL gefunden: Adware.Win32.Altnet.b D:\WINDOWS\system32\PMVAIO.DLL gefunden: Adware.Win32.Altnet.b Gescannt Dateien: 120122 Traces: 186836 Cookies: 2 Prozesse: 15 Gefunden Dateien: 13 Traces: 1 Cookies: 0 Prozesse: 0 Registry Keys: 0 Scan Ende: 01.04.2007 19:37:28 Scan Zeit: 01:08:01 Weis jetzt nicht was ich davon halten soll :eek: Fehlalarm??? Hier noch mein HiJackThis: Logfile of Trend Micro HijackThis v2.0.0 (BETA) Scan saved at 19:55:57, on 01.04.2007 Platform: Windows Vista (WinNT 6.00.1904) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe C:\Program Files\Apoint\Apoint.exe C:\Windows\RtHDVCpl.exe C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\TrueCrypt\TrueCrypt.exe C:\Program Files\RocketDock\RocketDock.exe E:\Meine Vista Zip`s Und Portable!!!\Rainlendar-0.22.1 Zip\Rainlendar.exe C:\Program Files\Apoint\ApMsgFwd.exe C:\Program Files\Apoint\Apntex.exe C:\Windows\system32\conime.exe C:\Program Files\Opera\Opera.exe E:\Meine Vista Zip`s Und Portable!!!\KeePass-1.06.zip\KeePass.exe E:\Meine Vista Zip`s Und Portable!!!\HIJackThis\HiJackThis_v2.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hp://runonce.msn.com/?v=msgrv75 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = hp://g.msn.de/0SEDEDE/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [WinPatrol] "C:\PROGRA~1\BILLPS~1\WINPAT~1\WinPatrol.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [TrueCrypt] "C:\Program Files\TrueCrypt\TrueCrypt.exe" /q preferences O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST') O4 - Startup: Rainlendar.exe - Verknüpfung.lnk = E:\Meine Vista Zip`s Und Portable!!!\Rainlendar-0.22.1 Zip\Rainlendar.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Hinzufügen zu Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\ie_banner_deny.htm O9 - Extra button: Statistik für Web-Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll O13 - Gopher Prefix: O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{FF9F4D7E-9972-46D8-81EE-9268FCA889A4}: NameServer = 192.168.178.1 O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1.0\r3hook.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe -- End of file - 5433 bytes Währe net wenn ihr mir sagen könntet ob da alles inordnung währe oder nich... Danke!!! Gruss mAndee |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 20:26 Uhr. |
Copyright ©2000-2026, Trojaner-Board