API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 20th, 2014
252
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.47 KB | None | 0 0
raw download clone embed print report
  1. Logfile of Trend Micro HijackThis v2.0.5
  2. Scan saved at 13:16:46, on 20.10.2014
  3. Platform: Windows XP SP3 (WinNT 5.01.2600)
  4. MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
  5.  
  6. FIREFOX: 22.0 (de)
  7. Boot mode: Normal
  8.  
  9. Running processes:
  10. C:\WINDOWS\System32\smss.exe
  11. C:\WINDOWS\system32\winlogon.exe
  12. C:\WINDOWS\system32\services.exe
  13. C:\WINDOWS\system32\lsass.exe
  14. C:\WINDOWS\system32\svchost.exe
  15. C:\WINDOWS\System32\svchost.exe
  16. C:\WINDOWS\system32\spoolsv.exe
  17. C:\Programme\Avira\AntiVir Desktop\sched.exe
  18. C:\Programme\Avira\AntiVir Desktop\avguard.exe
  19. C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
  20. C:\Programme\Java\jre6\bin\jqs.exe
  21. C:\WINDOWS\system32\nvsvc32.exe
  22. C:\WINDOWS\system32\PnkBstrA.exe
  23. C:\WINDOWS\system32\PnkBstrB.exe
  24. C:\WINDOWS\System32\svchost.exe
  25. C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe
  26. C:\Programme\LogMeIn Hamachi\hamachi-2.exe
  27. C:\Programme\LogMeIn Hamachi\LMIGuardianSvc.exe
  28. C:\Programme\Google\Update\GoogleUpdate.exe
  29. C:\WINDOWS\system32\wuauclt.exe
  30. C:\WINDOWS\Explorer.EXE
  31. C:\WINDOWS\RTHDCPL.EXE
  32. C:\WINDOWS\system32\RunDLL32.exe
  33. C:\Programme\Avira\AntiVir Desktop\avgnt.exe
  34. C:\Programme\LogMeIn Hamachi\hamachi-2-ui.exe
  35. C:\Programme\Avira\My Avira\Avira.OE.Systray.exe
  36. C:\WINDOWS\system32\rundll32.exe
  37. C:\WINDOWS\system32\ctfmon.exe
  38. C:\Programme\LogMeIn Hamachi\LMIGuardianSvc.exe
  39. C:\Programme\Avira\AntiVir Desktop\avshadow.exe
  40. C:\Programme\Java\jre6\bin\javaw.exe
  41. C:\Programme\Google\Chrome\Application\chrome.exe
  42. C:\Programme\Google\Chrome\Application\chrome.exe
  43. C:\Programme\Google\Chrome\Application\chrome.exe
  44. C:\Programme\Google\Chrome\Application\chrome.exe
  45. C:\Dokumente und Einstellungen\Pitty\Eigene Dateien\Downloads\HijackThis.exe
  46.  
  47. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
  48. R3 - URLSearchHook: (no name) - - (no file)
  49. O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
  50. O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll
  51. O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
  52. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll
  53. O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
  54. O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
  55. O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
  56. O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
  57. O4 - HKLM\..\Run: [nwiz] C:\Programme\NVIDIA Corporation\nview\nwiz.exe /installquiet
  58. O4 - HKLM\..\Run: [avgnt] "C:\Programme\Avira\AntiVir Desktop\avgnt.exe" /min
  59. O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Programme\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
  60. O4 - HKLM\..\Run: [Avira Systray] C:\Programme\Avira\My Avira\Avira.OE.Systray.exe
  61. O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
  62. O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOKALER DIENST')
  63. O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETZWERKDIENST')
  64. O4 - HKUS\S-1-5-21-1757981266-2077806209-839522115-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'UpdatusUser')
  65. O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
  66. O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
  67. O4 - Startup: Product Registration.lnk = C:\Dokumente und Einstellungen\Pitty\Lokale Einstellungen\Temp\is-D6U0F.tmp\ATR1.exe
  68. O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Dokumente und Einstellungen\Pitty\Anwendungsdaten\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
  69. O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
  70. O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  71. O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
  72. O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
  73. O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
  74. O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
  75. O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
  76. O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
  77. O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
  78. O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
  79. O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\AntiVir Desktop\sched.exe
  80. O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\AntiVir Desktop\avguard.exe
  81. O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Programme\Avira\My Avira\Avira.OE.ServiceHost.exe
  82. O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe
  83. O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Programme\Google\Update\GoogleUpdate.exe
  84. O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Programme\LogMeIn Hamachi\hamachi-2.exe
  85. O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe
  86. O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
  87. O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
  88. O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
  89. O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
  90. O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Programme\Skype\Updater\Updater.exe
  91.  
  92. --
  93. End of file - 6627 bytes
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!