bundeskriminalamt trojaner

ari1604 · 27.07.2011, 19:03

ok glaub da war was falsch... hab es jetzt nochmal gemacht... da kam folgendes:

========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ deleted successfully.
C:\Program Files\BittorrentBar_DE\tbBitt.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\ deleted successfully.
C:\Program Files\Softonic_Deutsch\tbSoft.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\ deleted successfully.
C:\Program Files\DVDVideoSoft\tbDVDV.dll moved successfully.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Internet Explorer\URLSearchHooks\\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ not found.
File C:\Program Files\BittorrentBar_DE\tbBitt.dll not found.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Internet Explorer\URLSearchHooks\\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\ not found.
File C:\Program Files\Softonic_Deutsch\tbSoft.dll not found.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Internet Explorer\URLSearchHooks\\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\ not found.
File C:\Program Files\DVDVideoSoft\tbDVDV.dll not found.
HKU\Cristina_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully!
HKU\Cristina_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Prefs.js: "Fast Browser Search" removed from browser.search.defaultenginename
Prefs.js: "Search" removed from browser.search.defaultthis.engineName
Prefs.js: "hxxp://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=18&q=" removed from browser.search.defaulturl
Prefs.js: "Fast Browser Search" removed from browser.search.order.1
Prefs.js: engine@conduit.com:3.3.3.2 removed from extensions.enabledItems
Prefs.js: "hxxp://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=18&tid={7C97AC97-89BA-5E42-F20E-4C42D5FAC591}&q=" removed from keyword.URL
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\searchplugin folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\modules folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\defaults folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\components folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\searchplugin folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\modules folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\defaults folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\components folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822} folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\searchplugin folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\modules folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\defaults folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\components folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c} folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{a6e4a4eb-d169-4e99-8988-250fcbafe767}\searchplugin folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{a6e4a4eb-d169-4e99-8988-250fcbafe767}\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{a6e4a4eb-d169-4e99-8988-250fcbafe767}\lib folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{a6e4a4eb-d169-4e99-8988-250fcbafe767}\defaults folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{a6e4a4eb-d169-4e99-8988-250fcbafe767}\components folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{a6e4a4eb-d169-4e99-8988-250fcbafe767}\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{a6e4a4eb-d169-4e99-8988-250fcbafe767} folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB} folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\searchplugin folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\lib folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\defaults folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\components folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f} folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com\searchplugin folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com\lib folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com\DualPackage folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com\defaults folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com\components folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com\chrome folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\engine@conduit.com folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\moveplayer@movenetworks.com\platform\WINNT_x86-msvc\plugins folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\moveplayer@movenetworks.com\platform\WINNT_x86-msvc folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\moveplayer@movenetworks.com\platform folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\moveplayer@movenetworks.com\META-INF folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\moveplayer@movenetworks.com\components folder moved successfully.
C:\Users\Cristina\AppData\Roaming\Mozilla\Firefox\Profiles\6evvgjfs.default\extensions\moveplayer@movenetworks.com folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
C:\Program Files\ConduitEngine\ConduitEngine.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ not found.
File C:\Program Files\BittorrentBar_DE\tbBitt.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\ not found.
File C:\Program Files\Softonic_Deutsch\tbSoft.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\ not found.
File C:\Program Files\DVDVideoSoft\tbDVDV.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
File C:\Program Files\ConduitEngine\ConduitEngine.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ not found.
File C:\Program Files\BittorrentBar_DE\tbBitt.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}\ not found.
File C:\Program Files\Softonic_Deutsch\tbSoft.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D0943516-5076-4020-A3B5-AEFAF26AB263} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0943516-5076-4020-A3B5-AEFAF26AB263}\ deleted successfully.
C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}\ not found.
File C:\Program Files\DVDVideoSoft\tbDVDV.dll not found.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{64EAD72B-FFD4-4E01-AA3A-4C71665D73E4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64EAD72B-FFD4-4E01-AA3A-4C71665D73E4}\ not found.
File C:\Program Files\BittorrentBar_DE\tbBitt.dll not found.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{8DBB6D8E-E4A6-4E3B-9753-AF78B226441C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8DBB6D8E-E4A6-4E3B-9753-AF78B226441C}\ not found.
File C:\Program Files\Softonic_Deutsch\tbSoft.dll not found.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E9911EC6-1BCC-40B0-9993-E0EEA7F6953F}\ not found.
File C:\Program Files\DVDVideoSoft\tbDVDV.dll not found.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Windows\CurrentVersion\Run\\{B34B0FC7-41AD-84B0-32D6-89BC05210DEE} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B34B0FC7-41AD-84B0-32D6-89BC05210DEE}\ not found.
Registry value HKEY_USERS\Cristina_ON_C\Software\Microsoft\Windows\CurrentVersion\Run\\lrdciv deleted successfully.
C:\Users\Cristina\AppData\Local\lrdciv.exe moved successfully.
Registry value HKEY_USERS\Cristina_ON_C\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\Users\Cristina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SFUOJ3D\contacts[1].exe deleted successfully.
C:\Users\Cristina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SFUOJ3D\contacts[1].exe moved successfully.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
C:\autoexec.bat moved successfully.
File move failed. X:\AUTORUN.INF scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{69b283b3-d3a2-11df-99d6-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{69b283b3-d3a2-11df-99d6-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{69b283b3-d3a2-11df-99d6-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{69b283b3-d3a2-11df-99d6-806e6f6e6963}\ not found.
File F:\Startme.exe not found.
C:\Users\Cristina\AppData\Local\lrdciv.dat moved successfully.
C:\Users\Cristina\AppData\Local\lrdciv_navps.dat moved successfully.
C:\Users\Cristina\AppData\Local\qmwkq.bat moved successfully.
C:\Users\Cristina\AppData\Local\lrdciv_nav.dat moved successfully.
========== FILES ==========
C:\Program Files\BittorrentBar_DE folder moved successfully.
C:\Program Files\Softonic_Deutsch folder moved successfully.
C:\Program Files\ConduitEngine folder moved successfully.
C:\Users\Cristina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2SFUOJ3D folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTLPE by OldTimer - Version 3.1.48.0 log created on 07272011_225850

hab den rechner neu gestartet... sieht so aus als würde alles wieder gehen ... vielen vielen dank

bundeskriminalamt trojaner

Log-Analyse und Auswertung: bundeskriminalamt trojaner

bundeskriminalamt trojaner

Ähnliche Themen: bundeskriminalamt trojaner