Ergebnis 1 bis 9 von 9

Thema: Fenster minimieren sich von selbst

  1. #1
    GastFrage-
    Beiträge
    0

    Standard Fenster minimieren sich von selbst


    Bei mir minimieren sich nur kurzer Zeit automatisch die Fenster...
    Hier ist mein Hijack Bericht:

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 17:28:45, on 26.11.2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Users\Laurin\DAEMON Tools Lite\DTShellHlp.exe
    A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\avp.exe
    A:\Programme\Sonstige Programme\iTunes\iTunesHelper.exe
    C:\Program Files (x86)\Skype\Phone\Skype.exe
    A:\Firefox\HiJackThis204.exe
    A:\Programme\Sonstige Programme\Firefox\firefox.exe
    A:\Programme\Sonstige Programme\Firefox\plugin-container.exe
    C:\windows\SysWOW64\DllHost.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
    O2 - BHO: MegaIeHelperBHO - {77F4E711-789B-447F-9614-96759B2F83C6} - C:\Users\Laurin\AppData\Local\Megamedia\Megakey\Me gaIeHelper.dll
    O2 - BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
    O4 - HKLM\..\Run: [AVP] "A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\avp.exe"
    O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "A:\Programme\Sonstige Programme\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    O4 - HKLM\..\Run: [Smart File Advisor] "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [uTorrent] "A:\Programme\Sonstige Programme\uTorrent\uTorrent.exe" /MINIMIZED
    O4 - HKCU\..\Run: [EADM] "A:\Programme\Sonstige Programme\Origin\Origin.exe" -AutoStart
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
    O4 - HKUS\S-1-5-21-1327263066-3674831430-1017213505-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
    O4 - HKUS\S-1-5-21-1327263066-3674831430-1017213505-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
    O4 - Startup: Hamachi.lnk = A:\Programme\Sonstige Programme\Hamachi\hamachi.exe
    O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
    O8 - Extra context menu item: Capture Web Page - C:\Users\Laurin\AppData\Local\Megamedia\Megakey\Ca ptureWebPage.htm
    O8 - Extra context menu item: Fetch to Megaupload - C:\Users\Laurin\AppData\Local\Megamedia\Megakey\Me gaUpload.htm
    O8 - Extra context menu item: Hinzufügen zu Anti-Banner - A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\ie_banner_deny.htm
    O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
    O9 - Extra button: Statistik für Web-Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\scieplgn.dll
    O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O20 - AppInit_DLLs: A:\PROGRA~1\SONSTI~1\KASPER~1\KASPER~1.0FO\adialhk .dll,A:\PROGRA~1\SONSTI~1\KASPER~1\KASPER~1.0FO\kl oehk.dll
    O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Acronis Nonstop Backup-Dienst (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
    O23 - Service: Apache2.2 - Apache Software Foundation - A:\Programme\Sonstige Programme\xampp\apache\bin\httpd.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\avp.exe
    O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\windows\system32\CISVC.EXE (file missing)
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\windows\system32\inetsrv\inetinfo.exe (file missing)
    O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
    O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\windows\system32\mqsvc.exe (file missing)
    O23 - Service: @mqutil.dll,-6203 (MSMQTriggers) - Unknown owner - C:\windows\system32\mqtgsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
    O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
    O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-20001 (WMSVC) - Unknown owner - C:\windows\system32\inetsrv\wmsvc.exe (file missing)

    --
    End of file - 12682 bytes

  2. #2
    legend12 Regelmäßiger Besucher
    Registriert seit
    03.12.2010
    Ort
    Berlin
    Beiträge
    127
    Danksagungen
    4

    Standard

    lass mal bitet Spybot-S&D 2.0 über deine festplatte laufen .und dann nochmal neu HijackThis laufen lassen du hast zeimlich auffällige daten.

  3. #3
    bisy V.I.PCMaster
    Registriert seit
    02.01.2010
    Ort
    01127 Dresden
    Beiträge
    8.847
    Danksagungen
    1.414

    Standard

    kopier den logfile in das frei feld auf http://www.hijackthis.de und klick auf auswerten.

    da wirst du eine menge schädlicher einträge finden, diese musst du dann im prog hijackthis suchen undmakieren/haken setzten und auf fixen klicken.

    voher aber wirklich spybot drüber laufen lassen, es würd von hijackthis bei manchen einträgen empfohlen
    Geändert von bisy (27.11.2011 um 13:50 Uhr)

  4. #4
    launlaur Foren-Neuling
    Registriert seit
    27.11.2011
    Beiträge
    4
    Danksagungen
    0

    Standard

    also ich habe nochmal Spybot drüberlaufenlassen...
    dann kam das hier raus:

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 21:45:31, on 27.11.2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\avp.exe
    C:\Users\Laurin\DAEMON Tools Lite\DTShellHlp.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
    A:\Programme\Sonstige Programme\Firefox\firefox.exe
    C:\Users\Laurin\Desktop\HiJackThis204.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
    O2 - BHO: MegaIeHelperBHO - {77F4E711-789B-447F-9614-96759B2F83C6} - C:\Users\Laurin\AppData\Local\Megamedia\Megakey\Me gaIeHelper.dll
    O2 - BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
    O4 - HKLM\..\Run: [AVP] "A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\avp.exe"
    O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    O4 - HKLM\..\Run: [Smart File Advisor] "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc
    O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
    O4 - HKLM\..\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [uTorrent] "A:\Programme\Sonstige Programme\uTorrent\uTorrent.exe" /MINIMIZED
    O4 - HKCU\..\Run: [EADM] "A:\Programme\Sonstige Programme\Origin\Origin.exe" -AutoStart
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
    O4 - HKUS\S-1-5-21-1327263066-3674831430-1017213505-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
    O4 - HKUS\S-1-5-21-1327263066-3674831430-1017213505-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
    O4 - Startup: Hamachi.lnk = A:\Programme\Sonstige Programme\Hamachi\hamachi.exe
    O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
    O8 - Extra context menu item: Capture Web Page - C:\Users\Laurin\AppData\Local\Megamedia\Megakey\Ca ptureWebPage.htm
    O8 - Extra context menu item: Fetch to Megaupload - C:\Users\Laurin\AppData\Local\Megamedia\Megakey\Me gaUpload.htm
    O8 - Extra context menu item: Hinzufügen zu Anti-Banner - A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\ie_banner_deny.htm
    O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
    O9 - Extra button: Statistik für Web-Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\scieplgn.dll
    O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O10 - Unknown file in Winsock LSP: c:\programdata\megamedia\megakey\msadm.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O20 - AppInit_DLLs: A:\PROGRA~1\SONSTI~1\KASPER~1\KASPER~1.0FO\adialhk .dll,A:\PROGRA~1\SONSTI~1\KASPER~1\KASPER~1.0FO\kl oehk.dll
    O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
    O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Acronis Nonstop Backup-Dienst (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
    O23 - Service: Apache2.2 - Apache Software Foundation - A:\Programme\Sonstige Programme\xampp\apache\bin\httpd.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - A:\Programme\Sonstige Programme\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstatio\avp.exe
    O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\windows\system32\CISVC.EXE (file missing)
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\windows\system32\inetsrv\inetinfo.exe (file missing)
    O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
    O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\windows\system32\mqsvc.exe (file missing)
    O23 - Service: @mqutil.dll,-6203 (MSMQTriggers) - Unknown owner - C:\windows\system32\mqtgsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
    O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: Spybot S&D 2 Live Protection Service (SDHookService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHookSvc.exe
    O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
    O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
    O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-20001 (WMSVC) - Unknown owner - C:\windows\system32\inetsrv\wmsvc.exe (file missing)

    --
    End of file - 13679 bytes

  5. #5
    bisy V.I.PCMaster
    Registriert seit
    02.01.2010
    Ort
    01127 Dresden
    Beiträge
    8.847
    Danksagungen
    1.414

    Standard

    wie ich oben schon geschrieben hatte, kopier den logfile in das frei feld auf http://www.hijackthis.de und klick auf auswerten.

    da wirst du eine menge schädlicher einträge finden, diese musst du dann im prog hijackthis suchen und makieren/haken setzten und auf fixen klicken.

    ich würde bei allen ein haken setzten wo ein rotes kreuz da steht, auch wenn da steht, das man vorher spybot drüberlaufen lassen soll.

  6. #6
    launlaur Foren-Neuling
    Registriert seit
    27.11.2011
    Beiträge
    4
    Danksagungen
    0

    Standard

    Des habe ich gemacht, aber hijackThis kann die meisten Einträge nicht entfernen...

  7. #7
    bisy V.I.PCMaster
    Registriert seit
    02.01.2010
    Ort
    01127 Dresden
    Beiträge
    8.847
    Danksagungen
    1.414

    Standard

    versuch das ganze mal im abgesicherten modus (beim pc start F8 drücken).

  8. #8
    launlaur Foren-Neuling
    Registriert seit
    27.11.2011
    Beiträge
    4
    Danksagungen
    0

    Standard

    also ich habe jetzt nochmal im abgesicherten modus gestartet, aber die einträge ließen sich immer noch nicht enfernen...
    Hab dann mit lspfix die daten entfernt und nochmal s&d drüberlaufen lassen. Da kommt jetzt aber immer die Meldung, dass Quarantine.reg nicht erstellet werden konnte...

  9. #9
    launlaur Foren-Neuling
    Registriert seit
    27.11.2011
    Beiträge
    4
    Danksagungen
    0

    Standard

    OK, habe gelöst, danke!!!
    :-]

Um auf dieses Thema zu ANTWORTEN bitte sich zuerst » hier kostenlos registrieren!!
Neue Frage stellen?
Kurze Zusammenfassung der Frage:

Ähnliche Themen

  1. wie erstelle ich ein Programm das ein Fenster öffnet?
    Von fensteröffner im Forum GFX, Webdesign und Programmierung
    Antworten: 13
    Letzter Beitrag: 22.07.2014, 12:31
  2. Mozilla Firefox öffnet leere Fenster
    Von seeming im Forum Windows Programme und Apps
    Antworten: 14
    Letzter Beitrag: 10.12.2010, 08:49
  3. Fenster im (Hitnergrund) capturen
    Von NeXT im Forum Windows Programme und Apps
    Antworten: 4
    Letzter Beitrag: 10.03.2010, 21:56
  4. fenster frieren ein!
    Von rollator im Forum Notebooks, Barebones und HTPCs
    Antworten: 4
    Letzter Beitrag: 25.01.2010, 20:59
  5. Oft leere weiße Fenster
    Von norbertmarzahn im Forum Internet und Netzwerke
    Antworten: 2
    Letzter Beitrag: 26.09.2009, 04:50
  6. Windows XP SP3 Mauszeiger makiert Fenster wenn man nur drüber geht
    Von Jirko im Forum Windows Programme und Apps
    Antworten: 10
    Letzter Beitrag: 12.08.2008, 18:06
  7. Antworten: 2
    Letzter Beitrag: 01.07.2008, 21:25
  8. Reihenschaltund ODER parallel oder was?
    Von Wookie im Forum Case-Modding
    Antworten: 38
    Letzter Beitrag: 03.07.2007, 02:00

Stichworte