Zurück   Trojaner-Board > Malware entfernen > Diskussionsforum
BKA-Virus..Scan mit OTLPENet.exe

BKA-Virus..Scan mit OTLPENet.exe


Diskussionsforum: BKA-Virus..Scan mit OTLPENet.exe

Windows 7 Hier sind ausschließlich fachspezifische Diskussionen erwünscht. Bitte keine Log-Files, Hilferufe oder ähnliches posten. Themen zum "Trojaner entfernen" oder "Malware Probleme" dürfen hier nur diskutiert werden. Bereinigungen von nicht ausgebildeten Usern sind hier untersagt. Wenn du dir einen Virus doer Trojaner eingefangen hast, eröffne ein Thema in den Bereinigungsforen oben.

Antwort
Alt 04.03.2012, 19:45   #1
jens.c1
 
BKA-Virus..Scan mit OTLPENet.exe - Standard

BKA-Virus..Scan mit OTLPENet.exe


Hallo,
ich hab mir den BKA-virus eingefangen. ich hab mir OTLPENet.exe runtergladen und den scan durchgeführt. Jedoch weiss ich nicht mehr weiter. Ich poste mal den Scan. vllt kann mir jemand sagen wie ich weiter zu verfahren habe....danke im vorraus


Scan:

OTL logfile created on: 3/4/2012 7:15:52 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
64bit-Windows 7 Home Premium Service Pack 1 (Version = 6.1.7601) - Type = System
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 90.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 97.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files (x86)
Drive C: | 100.00 Mb Total Space | 74.29 Mb Free Space | 74.30% Space Free | Partition Type: NTFS
Drive D: | 3.68 Gb Total Space | 0.02 Gb Free Space | 0.52% Space Free | Partition Type: FAT32
Drive E: | 466.26 Gb Total Space | 260.59 Gb Free Space | 55.89% Space Free | Partition Type: NTFS
Drive F: | 465.16 Gb Total Space | 292.03 Gb Free Space | 62.78% Space Free | Partition Type: NTFS
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001

========== Win32 Services (SafeList) ==========

SRV:64bit: - (FLEXnet Licensing Service 64) -- E:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Acresso Software Inc.)
SRV:64bit: - (UxTuneUp) -- E:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV:64bit: - (WinDefend) -- E:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (Steam Client Service) -- E:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (npggsvc) -- E:\Windows\SysWow64\GameMon.des (INCA Internet Co., Ltd.)
SRV - (NIS) -- E:\Program Files (x86)\Norton Internet Security\Engine\18.7.0.13\ccSvcHst.exe (Symantec Corporation)
SRV - (PnkBstrA) -- E:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (Stereo Service) -- E:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (TuneUp.Defrag) @C:\Program Files (x86) -- E:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (FLEXnet Licensing Service) -- E:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- E:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (TuneUp.UtilitiesSvc) -- E:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (UxTuneUp) -- E:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
SRV - (clr_optimization_v2.0.50727_32) -- E:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (USBAAPL64) -- E:\Windows\System32\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (SymEvent) -- E:\Windows\System32\drivers\SYMEVENT64x86.SYS (Symantec Corporation)
DRV:64bit: - (SymNetS) -- E:\Windows\System32\Drivers\NISx64\1207000.00D\SYMNETS.SYS (Symantec Corporation)
DRV:64bit: - (SRTSP) -- E:\Windows\System32\Drivers\NISx64\1207000.00D\SRTSP64.SYS (Symantec Corporation)
DRV:64bit: - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- E:\Windows\system32\drivers\NISx64\1207000.00D\SRTSPX64.SYS (Symantec Corporation)
DRV:64bit: - (SymEFA) -- E:\Windows\System32\drivers\NISx64\1207000.00D\symefa64.sys (Symantec Corporation)
DRV:64bit: - (SymDS) -- E:\Windows\System32\drivers\NISx64\1207000.00D\symds64.sys (Symantec Corporation)
DRV:64bit: - (SymIRON) -- E:\Windows\system32\drivers\NISx64\1207000.00D\Ironx64.SYS (Symantec Corporation)
DRV:64bit: - (TsUsbFlt) -- E:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (sptd) -- E:\Windows\System32\drivers\sptd.sys (Duplex Secure Ltd.)
DRV:64bit: - (npf) -- E:\Windows\System32\drivers\npf.sys (CACE Technologies, Inc.)
DRV:64bit: - (Ntfs) -- E:\Windows\System32\wbem\ntfs.mof ()
DRV:64bit: - (RTL8167) -- E:\Windows\System32\drivers\Rt64win7.sys (Realtek Corporation )
DRV:64bit: - (ebdrv) -- E:\Windows\system32\DRIVERS\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- E:\Windows\system32\DRIVERS\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- E:\Windows\System32\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (MTsensor) -- E:\Windows\System32\drivers\ASACPI.sys ()
DRV - (NAVEX15) -- E:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20120227.018_67c\ex64.sys (Symantec Corporation)
DRV - (NAVENG) -- E:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20120227.018_67c\eng64.sys (Symantec Corporation)
DRV - (eeCtrl) -- E:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- E:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (IDSVia64) -- E:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20120225.003\IDSviA64.sys (Symantec Corporation)
DRV - (BHDrvx64) -- E:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20120215.001\BHDrvx64.sys (Symantec Corporation)
DRV - (TuneUpUtilitiesDrv) -- E:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (adfs) -- E:\Windows\SysWow64\drivers\adfs.sys (Adobe Systems, Inc.)
DRV - (NPPTNT2) -- E:\Windows\SysWOW64\npptNT2.sys (INCA Internet Co., Ltd.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\Admin_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\Jens_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ask.com/?o=101810&l=dis
IE - HKU\Jens_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKU\Jens_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKU\Jens_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 7E DB F2 20 D7 BB CA 01 [binary data]
IE - HKU\Jens_ON_E\..\URLSearchHook: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - Reg Error: Key error. File not found
IE - HKU\Jens_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Jens_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local




========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/"
FF - prefs.js..extensions.enabledItems: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f}:2.5.8.6
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.0.900
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.0.900
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:10.1.0.68 - 1
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442
FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:2011.7.5.2

FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer: E:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer: E:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0: E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: E:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0: E:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision: E:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming: E:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3: E:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9: E:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\Adobe Reader: E:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: E:\Users\Jens\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video [2010/12/30 14:06:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa [2010/12/30 14:06:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFFPlgn\ [2012/02/10 14:51:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn_2011_7_5_2 [2012/02/29 02:09:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 3.6.27\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/02/18 11:40:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 3.6.27\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/02/18 11:40:45 | 000,000,000 | ---D | M]

[2010/03/04 15:28:54 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Jens\AppData\Roaming\Mozilla\Extensions
[2012/02/28 01:53:54 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\extensions
[2010/04/09 17:07:31 | 000,000,000 | ---D | M] (DVDVideoSoft Toolbar) -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f}
[2010/11/13 15:01:13 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2011/06/23 14:58:58 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\extensions\DTToolbar@toolbarnet.com
[2010/10/30 09:45:28 | 000,000,000 | ---D | M] (vShare Plugin) -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\extensions\vshare@toolbar
[2010/09/25 12:57:38 | 000,002,394 | ---- | M] () -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\searchplugins\askcom.xml
[2010/04/10 06:12:58 | 000,000,873 | ---- | M] () -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\searchplugins\conduit.xml
[2010/03/07 00:37:46 | 000,002,055 | ---- | M] () -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\searchplugins\daemon-search.xml
[2011/05/29 14:45:47 | 000,002,449 | ---- | M] () -- E:\Users\Jens\AppData\Roaming\Mozilla\Firefox\Profiles\4u2mxmzn.default\searchplugins\safesearch.xml
[2011/08/16 03:05:37 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files (x86)\Mozilla Firefox\extensions
[2011/11/05 02:04:19 | 000,000,000 | ---D | M] (Skype Click to Call) -- E:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010/12/30 14:06:02 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video&gt -- E:\PROGRAM FILES (X86)\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\HTML5VIDEO
[2010/12/30 14:06:02 | 000,000,000 | ---D | M] (DivX HiQ) -- E:\PROGRAM FILES (X86)\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\WPA
[2012/02/29 02:09:04 | 000,000,000 | ---D | M] (Norton Toolbar) -- E:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\COFFPLGN_2011_7_5_2
[2012/02/10 14:51:41 | 000,000,000 | ---D | M] (Symantec Intrusion Prevention) -- E:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFFPLGN
[2010/03/27 06:31:50 | 000,001,392 | ---- | M] () -- E:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010/03/27 06:31:50 | 000,002,344 | ---- | M] () -- E:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2010/03/27 06:31:50 | 000,006,805 | ---- | M] () -- E:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2010/03/27 06:31:50 | 000,001,178 | ---- | M] () -- E:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2010/03/27 06:31:50 | 000,001,105 | ---- | M] () -- E:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml

O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - E:\Windows\System32\drivers\etc\hosts
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - E:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - E:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - E:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - E:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - E:\Program Files (x86)\Norton Internet Security\Engine\18.7.0.13\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - E:\Program Files (x86)\Norton Internet Security\Engine\18.7.0.13\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - E:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (DVDVideoSoftTB Toolbar) - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - E:\Program Files (x86)\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - E:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - E:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - E:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - E:\Program Files (x86)\Norton Internet Security\Engine\18.7.0.13\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (DVDVideoSoftTB Toolbar) - {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - E:\Program Files (x86)\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
O3 - HKU\Jens_ON_E\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - E:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3:64bit: - HKU\Jens_ON_E\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - E:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\Jens_ON_E\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - E:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\Jens_ON_E\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - E:\Program Files (x86)\Norton Internet Security\Engine\18.7.0.13\coieplg.dll (Symantec Corporation)
O3 - HKU\Jens_ON_E\..\Toolbar\WebBrowser: (DVDVideoSoftTB Toolbar) - {E9911EC6-1BCC-40B0-9993-E0EEA7F6953F} - E:\Program Files (x86)\DVDVideoSoft\prxtbDVD0.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [Eraser] E:\Program Files\Eraser\Eraser.exe (The Eraser Project)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] E:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] E:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [DivX Download Manager] E:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] E:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKU\Jens_ON_E..\Run: [DAEMON Tools Lite] E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\Jens_ON_E..\Run: [Steam] E:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKU\LocalService_ON_E..\Run: [Sidebar] E:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_E..\Run: [Sidebar] E:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_E..\RunOnce: [mctadmin] File not found
O4 - HKU\NetworkService_ON_E..\RunOnce: [mctadmin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - E:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - E:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe (PokerStars)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - E:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - E:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - E:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{405d82eb-29ac-11df-b7c8-90e6ba7ad9ec}\Shell - "" = AutoRun
O33 - MountPoints2\{405d82eb-29ac-11df-b7c8-90e6ba7ad9ec}\Shell\AutoRun\command - "" = K:\install.exe Vietnam
O33 - MountPoints2\{b779fbee-27c7-11df-a63c-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{b779fbee-27c7-11df-a63c-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/29 02:14:57 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Local\Eraser 6
[2012/02/29 02:11:22 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Roaming\TuneUp Software
[2012/02/29 02:09:50 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Roaming\Apple Computer
[2012/02/29 02:09:47 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Roaming\Adobe
[2012/02/29 02:09:33 | 000,000,000 | R--D | C] -- E:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/02/29 02:09:33 | 000,000,000 | R--D | C] -- E:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/02/29 02:09:33 | 000,000,000 | -H-D | C] -- E:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/02/29 02:09:24 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Roaming\Identities
[2012/02/29 02:09:20 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Local\VirtualStore
[2012/02/29 02:09:15 | 000,000,000 | R--D | C] -- E:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/02/29 02:09:15 | 000,000,000 | -HSD | C] -- E:\Users\Admin\AppData\Local\Verlauf
[2012/02/29 02:09:15 | 000,000,000 | -HSD | C] -- E:\Users\Admin\AppData\Local\Temporary Internet Files
[2012/02/29 02:09:15 | 000,000,000 | -HSD | C] -- E:\Users\Admin\Documents\Eigene Videos
[2012/02/29 02:09:15 | 000,000,000 | -HSD | C] -- E:\Users\Admin\Documents\Eigene Musik
[2012/02/29 02:09:15 | 000,000,000 | -HSD | C] -- E:\Users\Admin\Documents\Eigene Bilder
[2012/02/29 02:09:15 | 000,000,000 | -HSD | C] -- E:\Users\Admin\AppData\Local\Anwendungsdaten
[2012/02/29 02:09:15 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Local\Temp
[2012/02/29 02:09:15 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Local\Microsoft
[2012/02/29 02:09:15 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Roaming\Media Center Programs
[2012/02/29 02:09:15 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\LocalLow
[2012/02/29 02:09:15 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Local
[2012/02/29 02:09:14 | 000,000,000 | --SD | C] -- E:\Users\Admin\AppData\Roaming\Microsoft
[2012/02/29 02:09:14 | 000,000,000 | R--D | C] -- E:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/02/29 02:09:14 | 000,000,000 | ---D | C] -- E:\Users\Admin\AppData\Roaming
[2012/02/28 16:54:46 | 000,000,000 | ---D | C] -- E:\$WINDOWS.~LS
[2012/02/16 01:47:30 | 000,509,952 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ntshrui.dll
[2012/02/16 01:47:29 | 000,515,584 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\timedate.cpl
[2012/02/16 01:47:29 | 000,478,720 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\timedate.cpl
[2012/02/16 01:47:23 | 000,634,880 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msvcrt.dll
[2012/02/16 01:47:14 | 000,702,464 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeeds.dll
[2012/02/16 01:47:14 | 000,599,552 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\msfeeds.dll
[2012/02/16 01:47:14 | 000,247,808 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ieui.dll
[2012/02/16 01:47:14 | 000,176,640 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\ieui.dll
[2012/02/16 01:47:14 | 000,097,280 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\mshtmled.dll
[2012/02/16 01:47:13 | 000,134,144 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\url.dll
[2012/02/16 01:47:13 | 000,132,096 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\url.dll
[2012/02/16 01:47:13 | 000,067,072 | ---- | C] (Microsoft Corporation) -- E:\Windows\SysWow64\mshtmled.dll
[3 E:\Windows\*.tmp files -> E:\Windows\*.tmp -> ]
[1 E:\Windows\SysWow64\*.tmp files -> E:\Windows\SysWow64\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/02/29 02:15:10 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat
[2012/02/29 02:15:03 | 000,013,408 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/29 02:15:03 | 000,013,408 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/29 02:09:17 | 000,001,102 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/02/29 02:08:44 | 3220,529,152 | -HS- | M] () -- E:\hiberfil.sys
[2012/02/28 17:17:09 | 608,881,904 | ---- | M] () -- E:\Windows\MEMORY.DMP
[2012/02/28 17:01:20 | 000,002,544 | ---- | M] () -- E:\Windows\diagwrn.xml
[2012/02/28 17:01:20 | 000,001,890 | ---- | M] () -- E:\Windows\diagerr.xml
[2012/02/28 16:29:55 | 000,001,106 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/02/28 15:48:04 | 000,654,150 | ---- | M] () -- E:\Windows\System32\perfh007.dat
[2012/02/28 15:48:04 | 000,616,032 | ---- | M] () -- E:\Windows\System32\perfh009.dat
[2012/02/28 15:48:04 | 000,130,022 | ---- | M] () -- E:\Windows\System32\perfc007.dat
[2012/02/28 15:48:04 | 000,106,412 | ---- | M] () -- E:\Windows\System32\perfc009.dat
[2012/02/28 12:38:00 | 000,006,604 | ---- | M] () -- E:\Users\Jens\Desktop\Windows-Kompatibilitätsbericht.htm
[2012/02/17 01:28:54 | 000,002,340 | ---- | M] () -- E:\Users\Public\Desktop\Google Chrome.lnk
[2012/02/17 01:28:54 | 000,002,239 | ---- | M] () -- E:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/02/16 11:08:21 | 002,878,728 | ---- | M] () -- E:\Windows\System32\FNTCACHE.DAT
[2012/02/16 01:47:07 | 001,933,098 | ---- | M] () -- E:\Windows\System32\drivers\NISx64\1207000.00D\Cat.DB
[2012/02/11 17:39:10 | 003,235,048 | ---- | M] () -- E:\Users\Jens\Desktop\Shirley Bassey - Light My Fire.mp3
[2012/02/11 17:37:52 | 004,946,841 | ---- | M] () -- E:\Users\Jens\Desktop\Minnie Riperton - Capitol Gold_ The Best Of Minnie Riperton - 17 - Light My Fire.mp3
[2012/02/11 17:29:04 | 002,838,656 | ---- | M] () -- E:\Users\Jens\Desktop\16-16 _ 16.mp3
[2012/02/11 17:28:23 | 003,463,296 | ---- | M] () -- E:\Users\Jens\Desktop\12-12 _ 12.mp3
[2012/02/11 17:28:09 | 004,014,208 | ---- | M] () -- E:\Users\Jens\Desktop\13-13 _ 13.mp3
[2012/02/11 17:22:45 | 000,981,120 | ---- | M] () -- E:\Users\Jens\Desktop\01-1 _ 1.mp3
[2012/02/11 17:22:29 | 002,730,112 | ---- | M] () -- E:\Users\Jens\Desktop\02-2 _ 2.mp3
[2012/02/11 17:16:48 | 003,897,344 | ---- | M] () -- E:\Users\Jens\Desktop\10-mighty_mi_is_clickums-cms.mp3
[2012/02/10 16:17:32 | 000,280,736 | ---- | M] () -- E:\Windows\SysWow64\PnkBstrB.xtr
[2012/02/10 16:17:32 | 000,280,736 | ---- | M] () -- E:\Windows\SysWow64\PnkBstrB.exe
[2012/02/10 16:15:59 | 000,215,128 | ---- | M] () -- E:\Windows\SysWow64\PnkBstrB.ex0
[2012/02/10 12:18:55 | 000,002,489 | ---- | M] () -- E:\Users\Public\Desktop\Norton Internet Security.lnk
[2012/02/10 12:18:55 | 000,000,000 | R--D | M] -- E:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
[3 E:\Windows\*.tmp files -> E:\Windows\*.tmp -> ]
[1 E:\Windows\SysWow64\*.tmp files -> E:\Windows\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/02/29 02:09:38 | 000,001,405 | ---- | C] () -- E:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012/02/29 02:09:34 | 000,001,439 | ---- | C] () -- E:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/02/29 02:09:15 | 000,002,239 | ---- | C] () -- E:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/02/29 02:09:15 | 000,000,290 | ---- | C] () -- E:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/02/29 02:09:15 | 000,000,272 | ---- | C] () -- E:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/02/28 12:38:00 | 000,006,604 | ---- | C] () -- E:\Users\Jens\Desktop\Windows-Kompatibilitätsbericht.htm
[2012/02/28 12:33:55 | 000,002,544 | ---- | C] () -- E:\Windows\diagwrn.xml
[2012/02/28 12:33:55 | 000,001,890 | ---- | C] () -- E:\Windows\diagerr.xml
[2012/02/11 17:37:00 | 003,235,048 | ---- | C] () -- E:\Users\Jens\Desktop\Shirley Bassey - Light My Fire.mp3
[2012/02/11 17:35:38 | 004,946,841 | ---- | C] () -- E:\Users\Jens\Desktop\Minnie Riperton - Capitol Gold_ The Best Of Minnie Riperton - 17 - Light My Fire.mp3
[2012/02/11 17:28:14 | 002,838,656 | ---- | C] () -- E:\Users\Jens\Desktop\16-16 _ 16.mp3
[2012/02/11 17:26:21 | 004,014,208 | ---- | C] () -- E:\Users\Jens\Desktop\13-13 _ 13.mp3
[2012/02/11 17:26:17 | 003,463,296 | ---- | C] () -- E:\Users\Jens\Desktop\12-12 _ 12.mp3
[2012/02/11 17:22:24 | 000,981,120 | ---- | C] () -- E:\Users\Jens\Desktop\01-1 _ 1.mp3
[2012/02/11 17:21:38 | 002,730,112 | ---- | C] () -- E:\Users\Jens\Desktop\02-2 _ 2.mp3
[2012/02/11 17:15:49 | 003,897,344 | ---- | C] () -- E:\Users\Jens\Desktop\10-mighty_mi_is_clickums-cms.mp3
[2011/09/27 11:50:31 | 000,444,283 | ---- | C] () -- E:\Program Files (x86)\Common Files\WinPcapNmap.exe
[2011/06/09 11:28:51 | 000,252,928 | ---- | C] () -- E:\Windows\SysWow64\DShowRdpFilter.dll
[2011/04/09 11:55:28 | 000,179,261 | ---- | C] () -- E:\Windows\SysWow64\xlive.dll.cat
[2011/02/05 13:22:38 | 000,280,736 | ---- | C] () -- E:\Windows\SysWow64\PnkBstrB.exe
[2011/02/05 13:22:33 | 002,434,856 | ---- | C] () -- E:\Windows\SysWow64\pbsvc_bc2.exe
[2011/02/05 13:22:33 | 000,075,136 | ---- | C] () -- E:\Windows\SysWow64\PnkBstrA.exe
[2010/10/09 18:22:25 | 000,000,004 | ---- | C] () -- E:\Users\Jens\AppData\Roaming\avdrn.dat
[2010/03/14 08:42:42 | 006,500,352 | ---- | C] () -- E:\Windows\SysWow64\PSP VintageWarmer2.dll
[2010/03/14 08:42:42 | 006,496,256 | ---- | C] () -- E:\Windows\SysWow64\PSP VintageWarmer.dll
[2010/03/04 15:32:05 | 000,000,056 | -H-- | C] () -- E:\ProgramData\ezsidmv.dat
[2010/01/26 21:09:02 | 000,053,299 | ---- | C] () -- E:\Windows\SysWow64\pthreadVC.dll
[2009/07/14 00:38:36 | 000,067,584 | --S- | C] () -- E:\Windows\bootstat.dat
[2009/07/13 21:35:51 | 000,000,741 | ---- | C] () -- E:\Windows\SysWow64\NOISE.DAT
[2009/07/13 21:34:42 | 000,215,943 | ---- | C] () -- E:\Windows\SysWow64\dssec.dat
[2009/07/13 19:10:29 | 000,043,131 | ---- | C] () -- E:\Windows\mib.bin
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 17:25:04 | 000,197,632 | ---- | C] () -- E:\Windows\SysWow64\ir32_32.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- E:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 16:26:10 | 000,673,088 | ---- | C] () -- E:\Windows\SysWow64\mlang.dat

========== LOP Check ==========

[2010/03/04 14:56:08 | 000,000,000 | -HSD | M] -- E:\ProgramData\Anwendungsdaten
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Application Data
[2010/03/07 00:36:06 | 000,000,000 | ---D | M] -- E:\ProgramData\DAEMON Tools Lite
[2010/03/07 00:32:13 | 000,000,000 | ---D | M] -- E:\ProgramData\DAEMON Tools Pro
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Desktop
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Documents
[2010/03/04 14:56:08 | 000,000,000 | -HSD | M] -- E:\ProgramData\Dokumente
[2011/08/16 03:04:31 | 000,000,000 | ---D | M] -- E:\ProgramData\Easybits GO
[2010/03/04 14:56:08 | 000,000,000 | -HSD | M] -- E:\ProgramData\Favoriten
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Favorites
[2010/06/27 12:49:02 | 000,000,000 | ---D | M] -- E:\ProgramData\G DATA
[2011/03/25 18:02:30 | 000,000,000 | ---D | M] -- E:\ProgramData\LAG
[2011/05/29 14:08:17 | 000,000,000 | ---D | M] -- E:\ProgramData\PCSettings
[2010/03/07 01:16:24 | 000,000,000 | ---D | M] -- E:\ProgramData\Propellerhead Software
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Start Menu
[2010/03/04 14:56:08 | 000,000,000 | -HSD | M] -- E:\ProgramData\Startmenü
[2010/03/07 03:21:53 | 000,000,000 | ---D | M] -- E:\ProgramData\Steinberg
[2009/07/14 00:08:56 | 000,000,000 | -HSD | M] -- E:\ProgramData\Templates
[2010/04/12 14:57:43 | 000,000,000 | ---D | M] -- E:\ProgramData\TuneUp Software
[2010/03/04 14:56:08 | 000,000,000 | -HSD | M] -- E:\ProgramData\Vorlagen
[2010/03/14 08:31:46 | 000,000,000 | ---D | M] -- E:\ProgramData\VST3 Presets
[2010/03/04 15:51:14 | 000,000,000 | ---D | M] -- E:\ProgramData\{0DD0EEEE-2A7C-411C-9243-1AE62F445FC3}
[2011/01/29 18:40:28 | 000,000,000 | -H-D | M] -- E:\ProgramData\{7D55A338-9946-4B03-9D84-8FD1472DA229}
[2010/07/24 05:59:48 | 000,000,000 | ---D | M] -- E:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
[2010/04/12 14:57:20 | 000,000,000 | -HSD | M] -- E:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2012/01/30 01:45:58 | 000,032,640 | ---- | M] () -- E:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========


< End of report >

Alt 04.03.2012, 21:32   #2
jens.c1
 
BKA-Virus..Scan mit OTLPENet.exe - Standard

BKA-Virus..Scan mit OTLPENet.exe


kann mir denn niemand helfen? ich habs schon auf anderem wege probiert, was aber nicht klappte....
__________________
Alt 04.03.2012, 23:24   #3
Ryko
 
BKA-Virus..Scan mit OTLPENet.exe - Standard

BKA-Virus..Scan mit OTLPENet.exe


Du befindest dich im Falschen bereich.
Zitat:
Diskussionsforum: Hier sind ausschließlich fachspezifische Diskussionen erwünscht. Bitte keine Log-Files, Hilferufe oder ähnliches.
Erstelle doch bitte einen neuen Thread hier http://www.trojaner-board.de/plagege...n-bekaempfung/.
Und beachte bitte dieses http://www.trojaner-board.de/69886-a...-beachten.html
__________________
__________________
Alt 04.03.2012, 23:51   #4
Shadow
/// Mr. Schatten
 
BKA-Virus..Scan mit OTLPENet.exe - Standard

BKA-Virus..Scan mit OTLPENet.exe


Zitat:
Zitat von jens.c1 Beitrag anzeigen
kann mir denn niemand helfen? ich habs schon auf anderem wege probiert, was aber nicht klappte....
In den falschen Bereich posten und schon nach nicht einmal 2 Stunden maulen, ist äußerst ungeschickt - um es mal freundlicher auszudrücken.
Wenn du sofortigen Service an einem Sonntagabend haben willst, dann magst du dich an kommerzielle Notdienste mit dreistelligem Stundensatz wenden.

Auf welchem Weg hast du es denn schon vergeblich probiert?
__________________
alle Tipps + Hilfen aller Helfer sind ohne Gewähr + Haftung
keine Hilfe via PN
hier ist ein Forum, jeder kann profitieren/kontrollieren - niemand ist fehlerfrei
tendenzielle Beachtung der Rechtschreibregeln erhöht die Wahrscheinlichkeit einer Antwort
-
Antwort

Themen zu BKA-Virus..Scan mit OTLPENet.exe
64-bit, adobe, askbar, autorun, bho, bka virus, bonjour, defender, download, error, explorer, firefox, format, google, helper, home, html, install.exe, langs, launch, logfile, microsoft, nvidia, plug-in, realtek, registry, scan, secure, security, software, symantec, version=1.0, winlogon


« Bücher über Malware Bekämpfung | festplatte virusfrei machen »


Ähnliche Themen: BKA-Virus..Scan mit OTLPENet.exe


  1. GVU-Trojaner, jedoch OTLPENet.exe nicht downloadbar auf http://oldtimer.geekstogo.com/OTLPENet.exe
    Log-Analyse und Auswertung - 20.02.2013 (13)
  2. Nach Verschlüsselungstrojaner Malewarebytes-/defogger-/otlpenet-/gmer-scan durchgeführt
    Log-Analyse und Auswertung - 21.08.2012 (27)
  3. BKA Trojaner mit Bluescreen - OTLPENET.txt vorhanden
    Plagegeister aller Art und deren Bekämpfung - 11.06.2012 (1)
  4. OTLPENet.exe - Remoteaccesss
    Netzwerk und Hardware - 01.06.2012 (1)
  5. AKM Trojaner und OTLPENet.exe win xp 32bit
    Log-Analyse und Auswertung - 29.05.2012 (1)
  6. AKM Trojaner und OTLPENet.exe
    Log-Analyse und Auswertung - 03.04.2012 (3)
  7. OTLPENet.exe bootet nicht
    Log-Analyse und Auswertung - 24.03.2012 (9)
  8. BKA-Virus..logfiles OTLPENet.exe
    Log-Analyse und Auswertung - 09.03.2012 (9)
  9. BKA-Trojaner, jedoch OTLPENet.exe nicht downloadbar auf http://oldtimer.geekstogo.com/OTLPENet.exe
    Log-Analyse und Auswertung - 16.11.2011 (14)
  10. OTLPENet.exe lädt nicht von CD
    Antiviren-, Firewall- und andere Schutzprogramme - 16.08.2011 (5)
  11. BKA Trojaner / OTLPENet.exe Log-File
    Log-Analyse und Auswertung - 12.08.2011 (1)
  12. OTLPENet.exe als ISO ?
    Plagegeister aller Art und deren Bekämpfung - 28.07.2011 (5)
  13. Wo kann ich den OTLPenet.exe runterladen?
    Plagegeister aller Art und deren Bekämpfung - 20.06.2011 (1)
  14. bka virus: kaspersky rescue-cd wird nicht gebootet und OTLPENet.exe kann nicht gedownloaded werden
    Plagegeister aller Art und deren Bekämpfung - 14.06.2011 (30)
  15. BKA Trojaner/ OTLPENet.exe Log-File
    Log-Analyse und Auswertung - 20.04.2011 (1)
  16. BKA Trojaner / OTLPENet.exe Log-File
    Log-Analyse und Auswertung - 18.04.2011 (6)
  17. E-SCAN BESTUCKT MIT VIRUS und MALWAREN__VORSICHT BEI E-SCAN eScan Anti-Virus (AV)!!!!
    Plagegeister aller Art und deren Bekämpfung - 31.10.2005 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema BKA-Virus..Scan mit OTLPENet.exe - Hallo, ich hab mir den BKA-virus eingefangen. ich hab mir OTLPENet.exe runtergladen und den scan durchgeführt. Jedoch weiss ich nicht mehr weiter. Ich poste mal den Scan. vllt kann mir - BKA-Virus..Scan mit OTLPENet.exe...
Archiv
Du betrachtest: BKA-Virus..Scan mit OTLPENet.exe auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55