|
PC nach Trojaner/ Virus XP Antivirus sehrlangsam insbesondere Outlook.... Hallo an alle aktiven hier im Forum! Ich schätze Eure arbeit sehr und war schon des öfteren als stiller mitleser beteiligt... Niun habe ich mir den XP antivirus eingefangen und schon vieles versucht (hoffentlich noch nicht alles). Antivir -> findet nix AVG -> findet nix Malwarebytes -> findet nix Wie gesagt mein PC ist sehr langsam und insbesondere Outlook will nicht mehr richtig! Hijackthis Logfile: StartupList report, 02.02.2009, 19:06:18 StartupList version: 1.52.2 Started from : C:\Programme\Trend Micro\HijackThis\HijackThis.EXE Detected: Windows XP SP3 (WinNT 5.01.2600) Detected: Internet Explorer v7.00 (7.00.6000.16762) * Using default options ================================================== Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\PROGRA~1\AVG\AVG8\avgfws8.exe C:\Programme\Bonjour\mDNSResponder.exe C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Programme\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\nvsvc32.exe C:\Programme\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe C:\PROGRA~1\AVG\AVG8\avgam.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Programme\Winamp\winampa.exe C:\Programme\MMEDIA\TV Jukebox 3.0\tvjbMonitor.exe C:\Programme\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\RTHDCPL.EXE C:\Programme\Medion Info Display\MdionLCM.exe C:\PROGRA~1\Medion\KeyStat\KeyStat.exe C:\Programme\iTunes\iTunesHelper.exe C:\WINDOWS\system32\CmUCReye.exe C:\WINDOWS\system32\rundll32.exe C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Programme\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\WINDOWS\system32\ctfmon.exe C:\Programme\Skype\Phone\Skype.exe C:\Programme\Windows Live\Messenger\MsnMsgr.Exe C:\Programme\iPod\bin\iPodService.exe C:\programme\freecall.com\freecall\freecall.exe C:\Programme\DAEMON Tools\daemon.exe C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe C:\Programme\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexingService.exe C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMIndexStoreSvr.exe C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe C:\Programme\MostFun\Bin\MostFun.exe C:\Programme\Stickies\stickies.exe C:\Programme\TechSmith\SnagIt 8\TSCHelp.exe C:\Programme\TechSmith\SnagIt 8\SnagPriv.exe C:\Programme\Skype\Plugin Manager\skypePM.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\Programme\BitComet\BitComet.exe C:\Programme\Mozilla Firefox\firefox.exe C:\Programme\FXdirekt Bank AG\FEXtrader pro LIVE\FexTraderExecutable.exe C:\Programme\FXdirekt Bank AG\FEXtrader pro LIVE\FexTrader LIVE.exe C:\WINDOWS\system32\wuauclt.exe C:\Programme\Trend Micro\HijackThis\HijackThis.exe -------------------------------------------------- Listing of startup folders: Shell folders Startup: [C:\Dokumente und Einstellungen\Besitzer\Startmenü\Programme\Autostart] MostFun.lnk = C:\Programme\MostFun\Bin\MostFun.exe Stickies.lnk = C:\Programme\Stickies\stickies.exe Shell folders Common Startup: [C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart] Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe Ralink Wireless Utility.lnk = C:\Programme\RALINK\RT2500 USB Wireless LAN Card\Installer\WINXP\RaConfig2500.exe SnagIt 8.lnk = C:\Programme\TechSmith\SnagIt 8\SnagIt32.exe -------------------------------------------------- Checking Windows NT UserInit: [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] UserInit = C:\WINDOWS\system32\userinit.exe, -------------------------------------------------- Autorun entries from Registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run WinampAgent = C:\Programme\Winamp\winampa.exe tvjbmonitor = C:\Programme\MMEDIA\TV Jukebox 3.0\tvjbMonitor.exe TkBellExe = "C:\Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot SunJavaUpdateSched = "C:\Programme\Java\jre6\bin\jusched.exe" RTHDCPL = RTHDCPL.EXE QuickTime Task = "C:\Programme\QuickTime\QTTask.exe" -atboottime nwiz = nwiz.exe /install NvMediaCenter = RunDLL32.exe NvMCTray.dll,NvTaskbarInit NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup NeroFilterCheck = C:\Programme\Gemeinsame Dateien\Ahead\Lib\NeroCheck.exe MedionVFD = "C:\Programme\Medion Info Display\MdionLCM.exe" Keyboard Status = C:\PROGRA~1\Medion\KeyStat\KeyStat.exe KernelFaultCheck = %systemroot%\system32\dumprep 0 -k iTunesHelper = "C:\Programme\iTunes\iTunesHelper.exe" CmUCRRun = C:\WINDOWS\system32\CmUCReye.exe BluetoothAuthenticationAgent = rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent avgnt = "C:\Programme\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min AppleSyncNotifier = C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe Alcmtr = ALCMTR.EXE AdobeCS4ServiceManager = "C:\Programme\Gemeinsame Dateien\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin Adobe Reader Speed Launcher = "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" Adobe Photo Downloader = "C:\Programme\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" AVG8_TRAY = C:\PROGRA~1\AVG\AVG8\avgtray.exe -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\Run ctfmon.exe = C:\WINDOWS\system32\ctfmon.exe Skype = "C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized MsnMsgr = "C:\Programme\Windows Live\Messenger\MsnMsgr.Exe" /background FreeCall = "C:\programme\freecall.com\freecall\freecall.exe" -nosplash -minimized DAEMON Tools = "C:\Programme\DAEMON Tools\daemon.exe" -lang 1033 BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} = "C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe" -------------------------------------------------- Autorun entries from Registry: HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce FFTI = C:\Dokumente und Einstellungen\Besitzer\Anwendungsdaten\Mozilla\Firefox\Profiles\jselzru1.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Dokumente und Einstellungen\Besitzer\Anwendungsdaten\Mozilla\Firefox\Profiles/jselzru1.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" -------------------------------------------------- Autorun entries in Registry subkeys of: HKLM\Software\Microsoft\Windows\CurrentVersion\Run [OptionalComponents] = -------------------------------------------------- Autorun entries in Registry subkeys of: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [AdobeUpdater] = -------------------------------------------------- Shell & screensaver key from C:\WINDOWS\SYSTEM.INI: Shell=*INI section not found* SCRNSAVE.EXE=*INI section not found* drivers=*INI section not found* Shell & screensaver key from Registry: Shell=Explorer.exe SCRNSAVE.EXE=*Registry value not found* drivers=*Registry value not found* Policies Shell key: HKCU\..\Policies: Shell=*Registry value not found* HKLM\..\Policies: Shell=*Registry value not found* -------------------------------------------------- Enumerating Browser Helper Objects: BitComet ClickCapture - C:\Programme\BitComet\tools\BitCometBHO_1.1.9.24.dll - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -------------------------------------------------- Enumerating Task Scheduler jobs: 1-Klick-Wartung.job AppleSoftwareUpdate.job -------------------------------------------------- Enumerating Download Program Files: [SpinTop DRM Control] InProcServer32 = C:\WINDOWS\DOWNLO~1\stg_drm.ocx CODEBASE = file:///C:/Programme/Big%20Kahuna%20Reef/Images/stg_drm.ocx [Checkers Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\msgrchkr.dll CODEBASE = http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab [MSN Photo Upload Tool] InProcServer32 = C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll CODEBASE = http://by137fd.bay137.hotmail.msn.com/resources/MsnPUpld.cab [Facebook Photo Uploader 4 Control] InProcServer32 = C:\WINDOWS\Downloaded Program Files\ImageUploader4.1.ocx CODEBASE = http://upload.facebook.com/controls/FacebookPhotoUploader3.cab [UnoCtrl Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\GAME_UNO1.dll CODEBASE = http://messenger.zone.msn.com/DE-DE/a-UNO1/GAME_UNO1.cab [Facebook Photo Uploader Control] InProcServer32 = C:\WINDOWS\Downloaded Program Files\FacebookPhotoUploader.ocx CODEBASE = http://upload.facebook.com/controls/FacebookPhotoUploader.cab [SopCore Control] InProcServer32 = C:\PROGRA~1\SopCast\sopocx.ocx CODEBASE = http://download.sopcast.com/download/SOPCORE.CAB [MSN Games - Installer] InProcServer32 = C:\WINDOWS\Downloaded Program Files\ZIntro.ocx CODEBASE = http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab [MessengerStatsClient Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll CODEBASE = http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab [ArmHelper Control] InProcServer32 = ./Images/armhelper.ocx CODEBASE = file:///C:/Programme/Big%20Kahuna%20Reef/Images/armhelper.ocx [Shockwave Flash Object] InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx CODEBASE = http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab [WheelofFortune Object] InProcServer32 = C:\WINDOWS\Downloaded Program Files\WoF.ocx CODEBASE = http://messenger.zone.msn.com/binary/WoF.cab57176.cab [Minesweeper Flags Class] InProcServer32 = C:\WINDOWS\Downloaded Program Files\MineSweeper.dll CODEBASE = http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab -------------------------------------------------- Enumerating Winsock LSP files: NameSpace #4: C:\WINDOWS\system32\wshbth.dll NameSpace #5: C:\Programme\Bonjour\mdnsNSP.dll -------------------------------------------------- Enumerating ShellServiceObjectDelayLoad items: PostBootReminder: C:\WINDOWS\system32\SHELL32.dll CDBurn: C:\WINDOWS\system32\SHELL32.dll WebCheck: C:\WINDOWS\system32\webcheck.dll SysTray: C:\WINDOWS\system32\stobject.dll UPnPMonitor: C:\WINDOWS\system32\upnpui.dll WPDShServiceObj: C:\WINDOWS\system32\WPDShServiceObj.dll -------------------------------------------------- End of report, 11.349 bytes Report generated in 0,172 seconds Command line options: /verbose - to add additional info on each section /complete - to include empty sections and unsuspicious data /full - to include several rarely-important sections /force9x - to include Win9x-only startups even if running on WinNT /forcent - to include WinNT-only startups even if running on Win9x /forceall - to include all Win9x and WinNT startups, regardless of platform /history - to list version history only Lets go trouble:snyper:! DANKE an alle die helfen wollen! |
Kann/ will mir niemand helfen? |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 19:29 Uhr. |
Copyright ©2000-2025, Trojaner-Board