hallo ich schicke euch mal meine logfile,
denn mein PC bleibt irgendwie immer hängen, ich kann dann nichts mehr machen.
Mein mozilla firefox funzt auch nichtmehr, es kommt immer die absturzmeldung.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:05:49, on 04.05.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\\WINDOWS\\System32\\smss.exe
C:\\WINDOWS\\system32\\winlogon.exe
C:\\WINDOWS\\system32\\services.exe
C:\\WINDOWS\\system32\\lsass.exe
C:\\WINDOWS\\system32\\Ati2evxx.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\WINDOWS\\system32\\Ati2evxx.exe
C:\\WINDOWS\\system32\\spoolsv.exe
C:\\Programme\\Gemeinsame Dateien\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe
C:\\Programme\\avmwlanstick\\WlanNetService.exe
C:\\Programme\\Bonjour\\mDNSResponder.exe
C:\\Programme\\ESET\\ESET NOD32 Antivirus\\ekrn.exe
C:\\Programme\\ICQ6Toolbar\\ICQ Service.exe
C:\\Programme\\Java\\jre6\\bin\\jqs.exe
C:\\WINDOWS\\system32\\PnkBstrA.exe
C:\\Programme\\Microsoft\\Search Enhancement Pack\\SeaPort\\SeaPort.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\Programme\\Gemeinsame Dateien\\Microsoft Shared\\Windows Live\\WLIDSVC.EXE
C:\\Programme\\Gemeinsame Dateien\\Microsoft Shared\\Windows Live\\WLIDSvcM.exe
C:\\WINDOWS\\system32\\wbem\\wmiapsrv.exe
C:\\WINDOWS\\Explorer.EXE
C:\\WINDOWS\\SOUNDMAN.EXE
C:\\Programme\\Java\\jre6\\bin\\jusched.exe
C:\\Programme\\Microsoft Office\\Office12\\GrooveMonitor.exe
C:\\Programme\\avmwlanstick\\wlangui.exe
C:\\Programme\\ESET\\ESET NOD32 Antivirus\\egui.exe
C:\\Programme\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe
C:\\WINDOWS\\system32\\ctfmon.exe
C:\\WINDOWS\\system32\\ctfmon.exe
C:\\programme\\steam\\steam.exe
C:\\Programme\\ICQ7.0\\ICQ.exe
C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_FATICAE.EXE
C:\\Programme\\Microsoft\\Search Enhancement Pack\\SCServer\\SCServer.exe
C:\\Programme\\ATI Technologies\\ATI.ACE\\Core-Static\\ccc.exe
C:\\Programme\\MSN Toolbar\\Platform\\4.0.0360.0\\mswinext.exe
C:\\Programme\\DivX\\DivX Updater\\DivXVersionChecker.exe
C:\\Programme\\Internet Explorer\\IEXPLORE.EXE
C:\\Programme\\Microsoft\\Search Enhancement Pack\\SCServer\\SCServer.exe
C:\\Programme\\Internet Explorer\\iexplore.exe
C:\\WINDOWS\\system32\\msiexec.exe
C:\\Programme\\Trend Micro\\HiJackThis\\HiJackThis.exe

R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.google.de/
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant =
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch =
R1 - HKCU\\Software\\Microsoft\\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = fritz.box;*.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\\PROGRA~1\\Yahoo!\\Companion\\Installs\\cpn\\yt.dll
R3 - URLSearchHook: IsoBuster Toolbar - {266fcdca-7bb3-4da7-b3bf-f845dea2ebd6} - C:\\Programme\\IsoBuster\\tbIso1.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\\Programme\\ICQ6Toolbar\\1001201741\\ICQToolBar.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\\PROGRA~1\\Yahoo!\\Companion\\Installs\\cpn\\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Programme\\Gemeinsame Dateien\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\\Programme\\AskBarDis\\bar\\bin\\askBar.dll
O2 - BHO: IsoBuster Toolbar - {266fcdca-7bb3-4da7-b3bf-f845dea2ebd6} - C:\\Programme\\IsoBuster\\tbIso1.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\\Programme\\Spyware Doctor\\BDT\\PCTBrowserDefender.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\\Programme\\Microsoft\\Search Enhancement Pack\\Search Helper\\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\PROGRA~1\\MICROS~2\\Office12\\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Programme\\Java\\jre6\\bin\\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Programme\\Gemeinsame Dateien\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: MSN Toolbar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\\Programme\\MSN Toolbar\\Platform\\4.0.0360.0\\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Programme\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\\Programme\\FlashFXP\\IEFlash.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\\Programme\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\\Programme\\EPSON\\EPSON Web-To-Page\\EPSON Web-To-Page.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\\PROGRA~1\\Yahoo!\\Companion\\Installs\\cpn\\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\\PROGRA~1\\Yahoo!\\Companion\\Installs\\cpn\\yt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\\Programme\\EPSON\\EPSON Web-To-Page\\EPSON Web-To-Page.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\\Programme\\AskBarDis\\bar\\bin\\askBar.dll
O3 - Toolbar: IsoBuster Toolbar - {266fcdca-7bb3-4da7-b3bf-f845dea2ebd6} - C:\\Programme\\IsoBuster\\tbIso1.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\\Programme\\ICQ6Toolbar\\1001201741\\ICQToolBar.dll
O3 - Toolbar: MSN Toolbar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\\Programme\\MSN Toolbar\\Platform\\4.0.0360.0\\npwinext.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\\Programme\\Spyware Doctor\\BDT\\PCTBrowserDefender.dll
O4 - HKLM\\..\\Run: [ATIPTA] \"C:\\Programme\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\"
O4 - HKLM\\..\\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Programme\\QuickTime\\qttask.exe\" -atboottime
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Programme\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [ASuite] J:\\Lupo PenSuite v6.70 Full\\Launcher\\ASuite.exe
O4 - HKLM\\..\\Run: [GrooveMonitor] \"C:\\Programme\\Microsoft Office\\Office12\\GrooveMonitor.exe\"
O4 - HKLM\\..\\Run: [AVMWlanClient] C:\\Programme\\avmwlanstick\\wlangui.exe
O4 - HKLM\\..\\Run: [MSN Toolbar] \"C:\\Programme\\MSN Toolbar\\Platform\\4.0.0360.0\\mswinext.exe\"
O4 - HKLM\\..\\Run: [Microsoft Default Manager] \"C:\\Programme\\Microsoft\\Search Enhancement Pack\\Default Manager\\DefMgr.exe\" -resume
O4 - HKLM\\..\\Run: [StartCCC] \"C:\\Programme\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun
O4 - HKLM\\..\\Run: [egui] \"C:\\Programme\\ESET\\ESET NOD32 Antivirus\\egui.exe\" /hide /waitservice
O4 - HKLM\\..\\Run: [NodLogin] C:\\Programme\\ESET\\ESET NOD32 Antivirus\\nodlogin.exe
O4 - HKLM\\..\\RunOnce: [Malwarebytes\' Anti-Malware] C:\\Programme\\Malwarebytes\' Anti-Malware\\mbamgui.exe /install /silent
O4 - HKCU\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKCU\\..\\Run: [Messenger (Yahoo!)] \"C:\\Programme\\Yahoo!\\Messenger\\YahooMessenger.exe\" -quiet
O4 - HKCU\\..\\Run: [DW6] \"C:\\Programme\\The Weather Channel FW\\Desktop\\DesktopWeather.exe\"
O4 - HKCU\\..\\Run: [Steam] \"c:\\programme\\steam\\steam.exe\" -silent
O4 - HKCU\\..\\Run: [settdebugx.exe] C:\\DOKUME~1\\ANDY~1.AND\\LOKALE~1\\Temp\\settdebugx.exe
O4 - HKCU\\..\\Run: [ICQ] \"C:\\Programme\\ICQ7.0\\ICQ.exe\" silent loginmode=4
O4 - HKCU\\..\\Run: [EPSON Stylus DX4400 Series] C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_FATICAE.EXE /FU \"C:\\DOKUME~1\\ANDY~1.AND\\LOKALE~1\\Temp\\E_S192.tmp\" /EF \"HKCU\"
O4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'LOKALER DIENST\')
O4 - HKUS\\S-1-5-19\\..\\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User \'LOKALER DIENST\')
O4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'NETZWERKDIENST\')
O4 - HKUS\\S-1-5-20\\..\\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User \'NETZWERKDIENST\')
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\S-1-5-18\\..\\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - HKUS\\.DEFAULT\\..\\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User \'Default user\')
O4 - Startup: Adobe Gamma.lnk = C:\\Programme\\Gemeinsame Dateien\\Adobe\\Calibration\\Adobe Gamma Loader.exe
O4 - Startup: hamachi.lnk = C:\\Programme\\Hamachi\\hamachi.exe
O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\\PROGRA~1\\MICROS~2\\Office12\\EXCEL.EXE/3000
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~2\\Office12\\ONBttnIE.dll
O9 - Extra \'Tools\' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MICROS~2\\Office12\\ONBttnIE.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\\Programme\\ICQ7.0\\ICQ.exe
O9 - Extra \'Tools\' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\\Programme\\ICQ7.0\\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\Office12\\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\\Programme\\ICQLite\\ICQLite.exe (file missing)
O9 - Extra \'Tools\' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\\Programme\\ICQLite\\ICQLite.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Programme\\Messenger\\msmsgs.exe
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Programme\\Messenger\\msmsgs.exe
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\PROGRA~1\\MICROS~2\\Office12\\GR99D3~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\\WINDOWS\\system32\\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\WINDOWS\\system32\\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\\Programme\\Gemeinsame Dateien\\Adobe Systems Shared\\Service\\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\\Programme\\Gemeinsame Dateien\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: AVM WLAN Connection Service - AVM Berlin - C:\\Programme\\avmwlanstick\\WlanNetService.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\\Programme\\Bonjour\\mDNSResponder.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\\Programme\\Spyware Doctor\\BDT\\BDTUpdateService.exe
O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\\Programme\\Gemeinsame Dateien\\AVM\\de_serv.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\\Programme\\ESET\\ESET NOD32 Antivirus\\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\\Programme\\ESET\\ESET NOD32 Antivirus\\ekrn.exe
O23 - Service: Google Update Service (gupdate1c9e557e30244) (gupdate1c9e557e30244) - Google Inc. - C:\\Programme\\Google\\Update\\GoogleUpdate.exe
O23 - Service: ICQ Service - Unknown owner - C:\\Programme\\ICQ6Toolbar\\ICQ Service.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\\Programme\\iPod\\bin\\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\\Programme\\Java\\jre6\\bin\\jqs.exe
O23 - Service: PnkBstrA - Unknown owner - C:\\WINDOWS\\system32\\PnkBstrA.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\\Programme\\Spyware Doctor\\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\\Programme\\Spyware Doctor\\pctsSvc.exe

--
End of file - 12954 bytes