| |
| |||||||
Log-Analyse und Auswertung: Hilfe Computer leistung sehr schwachWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
26.08.2008, 07:58
| #1 |
| |  Hilfe Computer leistung sehr schwach Guten Tag allerseits, ich habe Windows Xp SP 2, jedoch ist mein Computer sehr langsam ! Obwohl ich 1 Gbyte Arbeitspeicher hab - 2,6 Ghz und eine ATI Readeon X 1650 pro 512 MB was kann es sein ? Sieht sehr verdächtig aus oder nicht? hijackthis log: Logfile of Trend Micro HijackThis v2.0.2 [edit] Bitte editiere zukünftig deine Links, wie es dir u.a. hier angezeigt wird: http://www.trojaner-board.de/22771-a...tml#post171958 Danke.  Sunny [/edit] habe auch mir Malwarebytes ein scan gemacht dabei kam das heraus: Malwarebytes' Anti-Malware 1.25 Datenbank Version: 1087 Windows 5.1.2600 Service Pack 2 08:47:23 26.08.2008 mbam-log-08-26-2008 (08-47-23).txt Scan-Methode: Vollständiger Scan (C:\|D:\|) Durchsuchte Objekte: 132694 Laufzeit: 2 hour(s), 9 minute(s), 38 second(s) Infizierte Speicherprozesse: 1 Infizierte Speichermodule: 2 Infizierte Registrierungsschlüssel: 15 Infizierte Registrierungswerte: 5 Infizierte Dateiobjekte der Registrierung: 1 Infizierte Verzeichnisse: 5 Infizierte Dateien: 39 Infizierte Speicherprozesse: C:\Programme\MyWebSearch\bar\1.bin\MWSOEMON.EXE (Adware.MyWebSearch) -> Unloaded process successfully. Infizierte Speichermodule: C:\Programme\MyWebSearch\bar\1.bin\MWSOESTB.DLL (Adware.MyWebSearch) -> Delete on reboot. C:\Programme\MyWebSearch\bar\1.bin\MWSBAR.DLL (Adware.MyWebSearch) -> Delete on reboot. Infizierte Registrierungsschlüssel: HKEY_CLASSES_ROOT\Interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{a4730ebe-43a6-443e-9776-36915d323ad3} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} (Adware.Agent) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{dac6ed64-8dd1-4ab8-aedf-b97892d28ffe} (Adware.Shopper) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dac6ed64-8dd1-4ab8-aedf-b97892d28ffe} (Adware.Shopper) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully. Infizierte Registrierungswerte: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\mywebsearch bar uninstall (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{dac6ed64-8dd1-4ab8-aedf-b97892d28ffe} (Adware.Shopper) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{dac6ed64-8dd1-4ab8-aedf-b97892d28ffe} (Adware.Shopper) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{dac6ed64-8dd1-4ab8-aedf-b97892d28ffe} (Adware.Shopper) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Search\ (Adware.Hotbar) -> Quarantined and deleted successfully. Infizierte Dateiobjekte der Registrierung: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowMyDocs (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully. Infizierte Verzeichnisse: C:\Programme\MyWebSearch (Adware.MyWebSearch) -> Delete on reboot. C:\Programme\MyWebSearch\bar (Adware.MyWebSearch) -> Delete on reboot. C:\Programme\MyWebSearch\bar\1.bin (Adware.MyWebSearch) -> Delete on reboot. C:\Programme\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Programme\FunWebProducts\Shared (Adware.MyWebSearch) -> Quarantined and deleted successfully. Infizierte Dateien: C:\Programme\MyWebSearch\bar\1.bin\MWSOESTB.DLL (Adware.MyWebSearch) -> Delete on reboot. C:\Programme\MyWebSearch\bar\1.bin\MWSOEMON.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Programme\MyWebSearch\bar\1.bin\MWSBAR.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Programme\Uninstall Fun Web Products.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Programme\MSN Messenger\msimg32.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Programme\MSN Messenger\riched20.dll (Adware.MyWeb.FunWeb) -> Quarantined and deleted successfully. C:\Programme\Multi_Media_Germany\tbMul1.dll (Adware.Shopper) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096325.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096312.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096313.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096314.scr (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096315.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096323.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096324.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096326.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096327.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096328.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096329.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096330.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096331.SCR (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096332.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096333.DLL (Adware.MyWeb.FunWeb) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096334.EXE (Adware.MyWeb.FunWeb) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096335.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096336.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096337.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096339.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096340.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096341.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096342.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096344.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096345.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096346.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096347.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096348.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096349.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096350.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{04DAED1E-7043-4B3F-828B-65529045ABE2}\RP453\A0096351.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully. C:\Programme\FunWebProducts\Shared\022A8323.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully. bitte um hilf vielen dank im vorraus mfg Eisqup |
|
| Themen zu Hilfe Computer leistung sehr schwach |
| 1.exe, adware.agent, adware.hotbar, adware.mywebsearch, adware.shopper, browser, computer, dateien, explorer, helper, hijack.startmenu, internet, internet explorer, langsam, links, log, malwarebytes, messenger, micro, microsoft, msimg32.dll, msn, msn messenger, programme, quara, registrierungsschlüssel, scan, searchscopes, sehr langsam, software, start, system, system volume information, windows, windows xp |
Linear-Darstellung
