Immenser Leistungsabfall im PC-Betrieb

**Akai Nami** · 30.06.2005 16:51

Zitat

Logfile of HijackThis v1.99.1
Scan saved at 20:29:33, on 30.06.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
F

WINDOWS\System32\smss.exe
F

WINDOWS\system32\winlogon.exe
F

WINDOWS\system32\services.exe
F

WINDOWS\system32\lsass.exe
F

WINDOWS\system32\svchost.exe
F

WINDOWS\System32\svchost.exe
F

Programme\Ahead\InCD\InCDsrv.exe
F

Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
F

Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
F

Programme\Norton Internet Security\ISSVC.exe
F

Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
F

Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
F

Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
F

WINDOWS\Explorer.EXE
F

WINDOWS\system32\spoolsv.exe
F

Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
F

Programme\AVPersonal\AVGUARD.EXE
F

Programme\AVPersonal\AVWUPSRV.EXE
F

WINDOWS\System32\DVDRAMSV.exe
F

Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\mdm.exe
F

Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
F

Programme\Symantec\Norton Ghost\Agent\PQV2iSvc.exe
F

WINDOWS\system32\nvsvc32.exe
F

WINDOWS\System32\svchost.exe
F

Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
F

Programme\Gemeinsame Dateien\Ulead Systems\DVD\ULCDRSvr.exe
F

WINDOWS\tppaldr.exe
F

Programme\SlySoft\AnyDVD\AnyDVD.exe
F

Programme\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe
F

Programme\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
F

Programme\iRiver\HSeries\iHPDetect.exe
F

Programme\Symantec\Norton Ghost\Agent\GhostTray.exe
F

Programme\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
F

Programme\Microsoft AntiSpyware\gcasServ.exe
F

Programme\Hewlett-Packard\Toolbox\jre\bin\javaw.exe
F

WINDOWS\system32\wuauclt.exe
F

Programme\iRiver\Service\Updater.exe
F

Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe
F

Programme\Gemeinsame Dateien\PCSuite\DataLayer\DataLayer.exe
F

Programme\Microsoft AntiSpyware\gcasDtServ.exe
F

PROGRA~1\GEMEIN~1\PCSuite\Services\SERVIC~1.EXE
F

Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe
F

Programme\iTunes\iTunesHelper.exe
F

Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
F

Programme\iPod\bin\iPodService.exe
F

Programme\QuickTime\qttask.exe
F

Programme\Musicmatch\Musicmatch Jukebox\MMDiag.exe
F

Programme\AVPersonal\AVGNT.EXE
F

WINDOWS\system32\ctfmon.exe
F

Programme\Nokia\Nokia PC Suite 6\PcSync2.exe
F

Programme\Musicmatch\Musicmatch Jukebox\mim.exe
F

PROGRA~1\GEMEIN~1\Nokia\MPAPI\MPAPI3s.exe
F

Programme\GetRight\getright.exe
F

WINDOWS\system32\RAMASST.exe
F

Programme\Internet Explorer\iexplore.exe
C

totalcmd\TOTALCMD.EXE
F

Temp\HijackThis.exe
F

Programme\Messenger\msmsgs.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.focus.de/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.apple.com/de/itunes/download/
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - F

Programme\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F

Programme\Adobe\Acrobat 7.0\Active

AcroIEHelper.dll
O2 - BHO: T3ToolbarHelper Class - {164E93C4-09BF-4647-9E0B-D5FBB1D35E63} - F

PROGRA~1\DASRTL~1\DASOER~1.DLL
O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - F

Programme\GetRight\xx2gr.dll
O2 - BHO: (no name) - {9D9A7350-46C9-4E3C-92EF-382B5740A1C3} - (no file)
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - F

Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - f

programme\google\googletoolbar2.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - F

Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: IEHlprObj Class - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - G

lotus\org6\organize\iehelper.dll (file missing)
O3 - Toolbar: (no name) - {CFB25594-4D5F-11D6-AB7B-00B0D094B576} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f

programme\google\googletoolbar2.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F

Programme\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll
O3 - Toolbar: (no name) - {52FE5233-367C-4EFB-BDD7-0BE4D212C107} - (no file)
O3 - Toolbar: DasÖrtliche Such-Leiste - {6E5B18CB-0EB6-4461-88B8-33B4683613D5} - F

PROGRA~1\DASRTL~1\DASOER~1.DLL
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - F

Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - F

Programme\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F

WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TPP Auto Loader] F

WINDOWS\tppaldr.exe
O4 - HKLM\..\Run: [AnyDVD] F

Programme\SlySoft\AnyDVD\AnyDVD.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] F

PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [StatusClient 2.6] F

Programme\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup 2.5] F

Programme\Hewlett-Packard\Toolbox\hpbpsttp.exe
O4 - HKLM\..\Run: [HP Software Update] "F

Programme\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [iHP-100] F

Programme\iRiver\HSeries\iHPDetect.exe
O4 - HKLM\..\Run: [Norton Ghost 9.0] F

Programme\Symantec\Norton Ghost\Agent\GhostTray.exe
O4 - HKLM\..\Run: [LyraHD2TrayApp] "F

Programme\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE F

WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [gcasServ] "F

Programme\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [iRiver AutoDB] F

Programme\iRiver\Service\MLService.exe
O4 - HKLM\..\Run: [iRiver Updater] F

Programme\iRiver\Service\Updater.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] F

Programme\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray
O4 - HKLM\..\Run: [DataLayer] F

Programme\Gemeinsame Dateien\PCSuite\DataLayer\DataLayer.exe
O4 - HKLM\..\Run: [TkBellExe] "F

Programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] "F

Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MimBoot] F

Programme\Musicmatch\Musicmatch Jukebox\mimboot.exe
O4 - HKLM\..\Run: [ccApp] "F

Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [QuickTime Task] "F

Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVGCtrl] "F

Programme\AVPersonal\AVGNT.EXE" /min
O4 - HKCU\..\Run: [ctfmon.exe] F

WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PcSync] F

Programme\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - Global Startup: Adobe Reader - Schnellstart.lnk = F

Programme\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: GetRight - Tray Icon.lnk = F

Programme\GetRight\getright.exe
O4 - Global Startup: Lotus Organizer EasyClip.lnk = ?
O4 - Global Startup: RAMASST.lnk = F

WINDOWS\system32\RAMASST.exe
O8 - Extra context menu item: &Google Search - res://f

programme\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Download with GetRight - F

Programme\GetRight\GRdownload.htm
O8 - Extra context menu item: Im Cache gespeicherte Seite - res://f

programme\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: In Adobe PDF konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: In vorhandene PDF-Datei konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://F

PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - F

Programme\GetRight\GRbrowse.htm
O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - res://F

Programme\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Verweisseiten - res://f

programme\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Ähnliche Seiten - res://f

programme\google\GoogleToolbar1.dll/cmsimilar.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F

WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F

WINDOWS\System32\msjava.dll
O9 - Extra button: Web Entry - {B4E30F61-16D9-11D3-85D1-005004229569} - G

lotus\org6\organize\bandobjs.dll (file missing)
O9 - Extra button: ICQ 4.1 - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - F

Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - F

Programme\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F

Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F

Programme\Messenger\msmsgs.exe
O15 - Trusted Zone: *.musicmatch.com (HKLM)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.co...?1092243656171
O16 - DPF: {B020B534-4AA2-4B99-BD6D-5F6EE286DF5C} (Symantec Download Bridge) - http://www2.service.t-online.de/dyn/...5/2334156.html
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/aio/de/check/qdiagh.cab?323
O17 - HKLM\System\CCS\Services\Tcpip\..\{EC149170-ABDF-4590-BED0-C48A923F365C}: NameServer = 192.168.120.252,192.168.120.253
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - F

Programme\Gemeinsame Dateien\Acronis\Schedule2\schedul2.exe
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - F

Programme\AVPersonal\AVGUARD.EXE
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - F

Programme\AVPersonal\AVWUPSRV.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - F

Programme\Gemeinsame Dateien\AVM\de_serv.exe
O23 - Service: DVD-RAM_Service - Matsushita Electric Industrial Co., Ltd. - F

WINDOWS\System32\DVDRAMSV.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - F

Programme\Ahead\InCD\InCDsrv.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - F

Programme\iPod\bin\iPodService.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - F

Programme\Norton Internet Security\ISSVC.exe
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - F

Programme\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Ghost - Symantec Corporation - F

Programme\Symantec\Norton Ghost\Agent\PQV2iSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F

WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - F

WINDOWS\system32\hpzipm12.exe
O23 - Service: PMounter - Unknown owner - F

WINDOWS\system32\PMounter.exe
O23 - Service: SAVScan - Symantec Corporation - F

Programme\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - F

PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - F

Programme\Gemeinsame Dateien\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - F

Programme\Gemeinsame Dateien\Ulead Systems\DVD\ULCDRSvr.exe

Das stand drinnen.

EDIT: Hab jetzt Antivir drüber laufen lassen und habe einen Wurm und zwei trojanische Pferde entdeckt und gelöscht. Hoffe, dass jetzt alles besser geht. Danke, dennoch. @Whiz-zarD

EDIT2: Funktioniert doch nicht. Was ist da nur los?

Thema: Immenser Leistungsabfall im PC-Betrieb

Themen-Optionen

Anzeige

Baum-Darstellung

Berechtigungen