Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:48:32, on 30.01.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:UsersJedi-77AppDataLocalTempsidebar.exe
C:WindowsSOUNDMAN.EXE
C:Program Files (x86)Internet Download ManagerIDMan.exe
C:TreiberBrowser MouseLwbWheel.exe
C:Program Files (x86)CyberLinkPowerDVDPDVDServ.exe
C:Program Files (x86)AviraAntiVir PersonalEdition Classicavgnt.exe
C:Program Files (x86)Sony EricssonMobile2Application LauncherApplication Launcher.exe
C:Program Files (x86)Common FilesTeleca SharedGeneric.exe
C:Program Files (x86)Internet Download ManagerIEMonitor.exe
C:Program Files (x86)Sony EricssonMobile2Mobile Phone Monitorepmworker.exe
C:Program Files (x86)Windows LiveMessengermsnmsgr.exe
C:Program Files (x86)Mozilla Firefoxfirefox.exe
C:Program Files (x86)Trend MicroHijackThisHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:Program Files (x86)Internet Download ManagerIDMIECC.dll
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:Program Files (x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program Files (x86)Javajre1.6.0_06binssv.dll
O2 - BHO: amazon - {84B94901-3645-4D80-A6B7-4D0050B19455} - C:PROGRA~2teXXasIEBUTT~2.DLL
O2 - BHO: eBay - {CD9B7762-DFBC-42B1-BB30-02A78287B456} - C:PROGRA~2teXXasIEBUTT~1.DLL
O4 - HKLM..Run: [LWBMOUSE] C:TreiberBrowser Mouselwbwheel.exe
O4 - HKLM..Run: [StartCCC] "C:TreiberATI TechnologiesATI.ACECore-StaticCLIStart.exe"
O4 - HKLM..Run: [UpdatePPShortCut] "C:Program Files (x86)CyberLinkPowerProducerMUITransferMUIStartMenu.exe" "C:Program Files (x86)CyberLinkPowerProducer" update "SoftwareCyberLinkPowerProducer5.0"
O4 - HKLM..Run: [RemoteControl] "C:Program Files (x86)CyberLinkPowerDVDPDVDServ.exe"
O4 - HKLM..Run: [LanguageShortcut] "C:Program Files (x86)CyberLinkPowerDVDLanguageLanguage.exe"
O4 - HKLM..Run: [avgnt] "C:Program Files (x86)AviraAntiVir PersonalEdition Classicavgnt.exe" /min
O4 - HKLM..Run: [Sony Ericsson PC Suite] "C:Program Files (x86)Sony EricssonMobile2Application LauncherApplication Launcher.exe" /startoptions
O4 - HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
O4 - HKCU..Run: [MsnMsgr] "C:Program Files (x86)Windows LiveMessengerMsnMsgr.Exe" /background
O4 - HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
O4 - HKCU..Run: [IDMan] C:Program Files (x86)Internet Download ManagerIDMan.exe /onboot
O4 - HKLM..PoliciesExplorerRun: [Sidebar] C:UsersJedi-77AppDataLocalTempsidebar.exe
O4 - HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User 'NETZWERKDIENST')
O4 - HKUSS-1-5-20..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'NETZWERKDIENST')
O4 - Global Startup: AutoStart IR.lnk = C:Program Files (x86)WinTVIr.exe
O8 - Extra context menu item: Download aller Links mit IDM - C:Program Files (x86)Internet Download ManagerIEGetAll.htm
O8 - Extra context menu item: Download FLV Video Inhalt mit IDM - C:Program Files (x86)Internet Download ManagerIEGetVL.htm
O8 - Extra context menu item: Download mit IDM - C:Program Files (x86)Internet Download ManagerIEExt.htm
O8 - Extra context menu item: eBay - Mein eBay - C:Program Files (x86)teXXasSearchEbaymein.htm
O8 - Extra context menu item: eBay - Powersuche - C:Program Files (x86)teXXasSearchEbaypower.htm
O8 - Extra context menu item: eBay - Startseite - C:Program Files (x86)teXXasSearchEbay.htm
O8 - Extra context menu item: eBay Suche starten - C:Program Files (x86)teXXasSearchEbay.htm
O8 - Extra context menu item: Google Suche - C:Program Files (x86)teXXasSearchGoogle.htm
O8 - Extra context menu item: Google Suche starten - C:Program Files (x86)teXXasSearchGoogle.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program Files (x86)Javajre1.6.0_06binssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program Files (x86)Javajre1.6.0_06binssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:Program Files (x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:Program Files (x86)ICQ6ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:Program Files (x86)ICQ6ICQ.exe
O13 - Gopher Prefix:
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary...t.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) -
http://www.creative.com/softwareupda...5035/CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:PROGRA~2COMMON~1SkypeSKYPE4~1.DLL
O23 - Service: @%SystemRoot%system32Alg.exe,-112 (ALG) - Unknown owner - C:WindowsSystem32alg.exe (file missing)
O23 - Service: Avira AntiVir Personal - Free Antivirus Planer (AntiVirScheduler) - Avira GmbH - C:Program Files (x86)AviraAntiVir PersonalEdition Classicsched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:Program Files (x86)AviraAntiVir PersonalEdition Classicavguard.exe
O23 - Service: ASP.NET-Zustandsdienst (aspnet_state) - Unknown owner - C:WindowsMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe (file missing)
O23 - Service: Ati External Event Utility - Unknown owner - C:Windowssystem32Ati2evxx.exe (file missing)
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:Windowssystem32DFSR.exe (file missing)
O23 - Service: EPGService - Hauppauge Computer Works - C:PROGRA~2WinTVEPG ServicesSystemEPGService.exe
O23 - Service: @%systemroot%system32fxsresm.dll,-118 (Fax) - Unknown owner - C:Windowssystem32fxssvc.exe (file missing)
O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:PROGRA~2WinTVHCWTVS~1.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:WindowsSystem32msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:Program Files (x86)NeroNero 7Nero BackItUpNBService.exe
O23 - Service: @%SystemRoot%System32netlogon.dll,-102 (Netlogon) - Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:Program Files (x86)Common FilesAheadLibNMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:Windowssystem32PnkBstrA.exe
O23 - Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:Program Files (x86)CyberLinkShared FilesRichVideo.exe
O23 - Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) - Unknown owner - C:Windowssystem32locator.exe (file missing)
O23 - Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) - Unknown owner - C:Windowssystem32lsass.exe (file missing)
O23 - Service: @%SystemRoot%system32SLsvc.exe,-101 (slsvc) - Unknown owner - C:Windowssystem32SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:WindowsSystem32snmptrap.exe (file missing)
O23 - Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) - Unknown owner - C:WindowsSystem32spoolsv.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:Program Files (x86)Alcohol SoftAlcohol 120StarWindStarWindServiceAE.exe
O23 - Service: @%SystemRoot%System32TuneUpDefragService.exe,-1 (TuneUp.Defrag) - Unknown owner - C:WindowsSystem32TuneUpDefragService.exe (file missing)
O23 - Service: @%SystemRoot%System32TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - Unknown owner - C:WindowsSystem32TUProgSt.exe (file missing)
O23 - Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:Windowssystem32UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%system32vds.exe,-100 (vds) - Unknown owner - C:WindowsSystem32vds.exe (file missing)
O23 - Service: @%systemroot%system32vssvc.exe,-102 (VSS) - Unknown owner - C:Windowssystem32vssvc.exe (file missing)
O23 - Service: @%systemroot%system32wbengine.exe,-104 (wbengine) - Unknown owner - C:Windowssystem32wbengine.exe (file missing)
O23 - Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:Windowssystem32wbemWmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:Program Files (x86)Windows Media Playerwmpnetwk.exe (file missing)
--
End of file - 10535 bytes