Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Firewall 0x80070424 - OTL Log im Anhang

Firewall 0x80070424 - OTL Log im Anhang


Log-Analyse und Auswertung: Firewall 0x80070424 - OTL Log im Anhang

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 13.03.2012, 11:26   #1
grizu24
 
Firewall 0x80070424 - OTL Log im Anhang - Standard

Firewall 0x80070424 - OTL Log im Anhang


Hallo...

Habe hier schon oft Hilfe gefunden und bisher immer alles alleine lösen können. Derzeit kann ich meine WIN7 Firewall nicht ändern und es kam bis gestern immer eine Virusmeldung in AppData/Roaming. Habe dann schon ein paar Dateien gefixt, oft kam sie wieder. Derzeit kommt keine, malwarebytes findet nichts, Antivir auch nicht. Toran Remover auch nicht. Habe mit OTL eine Logfile gemacht, vielleicht kann mir einer helfen und versucht den zu identifizieren. Denke ich könnte auch den WIN7 security Virus gehabt haben. Neuinstallation ist jetzt nicht so das Problem, aber vielleicht ist ja auch nichts mehr da.

Folgende Dateien sind mir schon aufgefallen:
AppData\Roaming\2612.exe
Users\Dominik\AppData\Roaming\Blzmzn.exe

OTL logfile created on: 13.03.2012 10:54:31 - Run 2
OTL by OldTimer - Version 3.2.36.3 Folder = C:\Users\Dominik\Desktop
Starter Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

1,99 Gb Total Physical Memory | 0,97 Gb Available Physical Memory | 48,85% Memory free
3,98 Gb Paging File | 2,62 Gb Available in Paging File | 65,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,00 Gb Total Space | 60,79 Gb Free Space | 60,80% Space Free | Partition Type: NTFS
Drive D: | 117,87 Gb Total Space | 70,54 Gb Free Space | 59,85% Space Free | Partition Type: NTFS

Computer Name: NETBOOK | User Name: Dominik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Dominik\AppData\Roaming\2612.exe ()
PRC - C:\Users\Dominik\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Opera\opera.exe (Opera Software)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)
PRC - C:\Program Files\OpenOffice.org 3\program\soffice.bin (OpenOffice.org)
PRC - C:\Windows\AsScrPro.exe (ASUS)
PRC - C:\Program Files\1&1 Surf-Stick\UIMain.exe ()
PRC - C:\Program Files\1&1 Surf-Stick\CMUpdater.exe ()
PRC - C:\Program Files\1&1 Surf-Stick\AssistantServices.exe ()
PRC - C:\Program Files\1&1 Surf-Stick\UIExec.exe ()
PRC - C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
PRC - C:\Program Files\EeePC\HotkeyService\HotkeyService.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\syncables\syncables desktop\syncables.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\ASUS\Eee Docking\Eee Docking.exe ()
PRC - C:\Program Files\EeePC\SHE\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
PRC - C:\Program Files\EeePC\CapsHook\CapsHook.exe (ASUS)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (Broadcom Corporation.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
PRC - C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
PRC - C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronic Corp.)
PRC - C:\Windows\System32\AsusService.exe ()
PRC - C:\Program Files\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe (Boingo Wireless, Inc.)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation)


========== Modules (No Company Name) ==========

MOD - C:\Users\Dominik\AppData\Local\Temp\BBAccess.dll ()
MOD - C:\Users\Dominik\AppData\Local\Temp\syncables.portableDevice.rim.dll ()
MOD - C:\Users\Dominik\AppData\Local\Temp\syncables.rapi.dll ()
MOD - C:\Users\Dominik\AppData\Local\Temp\syncables.jni.dll ()
MOD - C:\Users\Dominik\AppData\Local\Temp\syncables.portableDevice.wmdm.dll ()
MOD - C:\Users\Dominik\AppData\Roaming\2612.exe ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstoggdec.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstwebmdec.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstffmpegcolorspace.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstcoreplugins.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstaudioresample.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstaudioconvert.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstwavparse.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstdirectsound.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstdecodebin2.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstautodetect.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gstwaveform.dll ()
MOD - C:\Program Files\Opera\gstreamer\plugins\gsttypefindfunctions.dll ()
MOD - C:\Program Files\Opera\gstreamer\gstreamer.dll ()
MOD - C:\Windows\System32\Macromed\Flash\NPSWF32.dll ()
MOD - C:\Program Files\OpenOffice.org 3\program\libxml2.dll ()
MOD - C:\Program Files\WinRAR\rarext.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UIPlugIn\UISetting.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UIMain.exe ()
MOD - C:\Program Files\1&1 Surf-Stick\UIPlugIn\UISms.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\CMUpdater.exe ()
MOD - C:\Program Files\1&1 Surf-Stick\UIPlugIn\UIPhoneBook.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UpdateAgent.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UIPlugIn\UIConnectRecord.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UIPlugIn\UIMms.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UISkin.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UIPlugIn\UIUssd.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UIPlugIn\UIStk.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIDataBase.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UICommonDlg.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIConfig.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BKService.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BISetting.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BISms.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BICodec.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIPhoneBook.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIXml.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIService.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\CMCOMService.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIRas.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIDevManager.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\UIExec.exe ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIOptimizationClient.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BILog.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIConnectRecord.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIStk.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIVoice.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BIUssd.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\SysService.dll ()
MOD - C:\Program Files\1&1 Surf-Stick\Component\BICallRecord.dll ()
MOD - C:\Program Files\ASUS\Eee Docking\Eee Docking.exe ()
MOD - C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll ()
MOD - C:\Program Files\Adobe\Reader 9.0\Reader\plug_ins\EScript.DEU ()
MOD - C:\Program Files\Adobe\Reader 9.0\Reader\plug_ins\Updater.DEU ()
MOD - C:\Windows\System32\msjetoledb40.dll ()
MOD - C:\Program Files\Adobe\Reader 9.0\Reader\plug_ins\Annots.DEU ()
MOD - C:\Program Files\Adobe\Reader 9.0\Reader\sqlite.dll ()


========== Win32 Services (SafeList) ==========

SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (Windows7FirewallService) -- C:\Program Files\Windows7FirewallControl\Windows7FirewallService.exe (Sphinx Software)
SRV - (UI Assistant Service) -- C:\Program Files\1&1 Surf-Stick\AssistantServices.exe ()
SRV - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV - (AsusService) -- C:\Windows\System32\AsusService.exe ()
SRV - (IAANTMON) Intel(R) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe (Intel Corporation)


========== Driver Services (SafeList) ==========

DRV - (pwdrvio) -- File not found
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH)
DRV - (pwdspio) -- C:\Windows\System32\pwdspio.sys ()
DRV - (L1C) -- C:\Windows\System32\drivers\L1C62x86.sys (Atheros Communications, Inc.)
DRV - (AsUpIO) -- C:\Windows\System32\drivers\AsUpIO.sys ()
DRV - (ZTEusbser6k) -- C:\Windows\System32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\Windows\System32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\Windows\System32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (kbfiltr) -- C:\Windows\System32\drivers\kbfiltr.sys ( )
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{F089BAD8-D575-4D14-877D-7584A6DBFBF6}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://eeepc.asus.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://startsear.ch/?aff=1&src=sp&cf=10a7bced-07c2-11e1-8350-74f06dbf8626&q={searchTerms}
IE - HKCU\..\SearchScopes\{F089BAD8-D575-4D14-877D-7584A6DBFBF6}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=5.0: C:\Program Files\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Dominik\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Dominik\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\msntoolbar@msn.com: C:\Program Files\MSN Toolbar\Platform\6.0.2282.0\Firefox [2010.11.09 02:03:34 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2010.11.09 02:03:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2010.11.09 02:03:43 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{googleriginalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFiel dTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Dominik\AppData\Local\Google\Chrome\Application\17.0.963.78\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Dominik\AppData\Local\Google\Chrome\Application\17.0.963.78\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Dominik\AppData\Local\Google\Chrome\Application\17.0.963.78\pdf.dll
CHR - plugin: vShare.tv plug-in (Enabled) = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.220.4 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U22 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Bing Bar (Enabled) = C:\Program Files\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Dominik\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google-Suche = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\
CHR - Extension: vshare plugin = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\
CHR - Extension: Skype Click to Call = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\
CHR - Extension: Google Mail = C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

Hosts file not found
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe (ASUS)
O4 - HKLM..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Boingo Wi-Fi] C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk ()
O4 - HKLM..\Run: [CapsHook] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe ()
O4 - HKLM..\Run: [EeeSplendidAgent] C:\Program Files\ASUS\EPC\EeeSplendid\AsAgent.exe File not found
O4 - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4 - HKLM..\Run: [HotkeyMon] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [HotkeyService] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [LiveUpdate] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [OOBESetup] C:\Program Files\asus\OOBERegBackup\OOBERegBackup.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [SuperHybridEngine] C:\windows\System32\AsusSender.exe (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKLM..\Run: [UIExec] C:\Program Files\1&1 Surf-Stick\UIExec.exe ()
O4 - HKLM..\Run: [Windows7FirewallControl] C:\Program Files\Windows7FirewallControl\Windows7FirewallControl.exe (Sphinx Software)
O4 - HKCU..\Run: [Blzmzn] C:\Users\Dominik\AppData\Roaming\Blzmzn.exe ()
O4 - HKCU..\Run: [PService] C:\Users\Dominik\AppData\Roaming\2612.exe ()
O4 - HKCU..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
O4 - Startup: C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 253
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - %SystemRoot%\system32\wshbth.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - %SystemRoot%\system32\wshbth.dll File not found
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{188F7883-8D21-4FF3-A2A1-C510AA1E6128}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9A837123-1ADB-4442-B621-3D5BEA4158D9}: NameServer = 139.7.30.126 139.7.30.125
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found

========== Files/Folders - Created Within 30 Days ==========

[2030.01.01 12:09:47 | 000,000,000 | -HSD | C] -- C:\Boot
[2012.03.13 10:38:41 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\ElevatedDiagnostics
[2012.03.13 10:28:23 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{E23F04F7-0A55-4EFE-8B17-A6C399FD2FB0}
[2012.03.13 10:26:47 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{2883FD88-50AD-4803-824E-50E174ACE455}
[2012.03.12 21:14:39 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{3ECBC019-8834-4975-B12E-8B0E61271BBE}
[2012.03.12 21:14:15 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{A32A6A4D-800E-4680-A267-FDEC41289838}
[2012.03.12 21:08:04 | 000,000,000 | ---D | C] -- C:\_OTL
[2012.03.12 20:45:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012.03.12 20:45:21 | 000,594,944 | ---- | C] (OldTimer Tools) -- C:\Users\Dominik\Desktop\OTL.exe
[2012.03.12 20:44:41 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012.03.12 20:35:30 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Desktop\backups
[2012.03.12 20:31:17 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Dominik\Desktop\HiJackThis204.exe
[2012.03.12 20:27:52 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{1C4F9865-DCB4-4877-A5D1-8FA0B7FC5A7E}
[2012.03.12 20:27:20 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{5A831F0D-F984-4FBB-9A6A-826D6D861EB5}
[2012.03.12 20:06:44 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{42C16CD1-ABAC-4AF4-9F6A-4A0A68DF6879}
[2012.03.12 20:06:24 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{B4EE0195-07C3-41DE-B8B4-0B907719A58F}
[2012.03.12 20:02:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows7FirewallControl
[2012.03.12 20:02:14 | 000,000,000 | ---D | C] -- C:\Program Files\Windows7FirewallControl
[2012.03.12 19:57:24 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{C7A2F3AD-C9AD-4985-AFDF-FC8B24721206}
[2012.03.12 19:57:11 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{F4E57BB0-B2DC-4C97-B48B-C82E1BF17ABF}
[2012.03.12 19:38:18 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012.03.12 19:10:22 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{D9B7EF07-B216-4707-92B0-66429D49677A}
[2012.03.12 19:10:07 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{2C8E932C-0F3F-4E3A-B596-EFCC2EE84007}
[2012.03.12 16:00:34 | 003,628,016 | ---- | C] (Piriform Ltd) -- C:\Users\Dominik\Desktop\ccsetup316.exe
[2012.03.12 10:24:55 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{4480294D-974F-45F0-819A-209392DA1C0E}
[2012.03.12 10:23:21 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{EB74A99B-A827-46F0-926B-BCD0FC301247}
[2012.03.12 06:37:31 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{9DEE38E9-F577-4B77-B064-838584366C3F}
[2012.03.12 06:37:08 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{54F56599-41C9-4269-9B56-18317EBAF013}
[2012.03.11 14:13:51 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Documents\konto
[2012.03.10 20:21:37 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{2C0CCB91-0141-41C2-A94A-15B6C8B11879}
[2012.03.10 20:21:22 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{713A634A-8BE0-4E06-919D-B88122C5E451}
[2012.03.10 15:29:12 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{0065B429-37BF-49E5-804C-229D0A803203}
[2012.03.10 15:28:52 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{B1FA0013-E4B7-492E-8E5D-51BB6B00C4BA}
[2012.03.09 15:27:56 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Desktop\zertifikate
[2012.03.09 15:11:14 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{A88F2C89-40EC-46A3-8CCC-C97714EE184D}
[2012.03.09 15:10:10 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{BDE1F85D-CB2B-4039-850A-93A6C2EB6237}
[2012.03.09 12:21:06 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{4F73ED6C-D673-496C-BE92-7BAEBC1ED0B8}
[2012.03.09 12:20:02 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{ABCFF126-B41A-4591-975C-DAF44874F90E}
[2012.03.09 09:11:25 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{AE1A59FA-CE43-494B-8F55-B74F501073DE}
[2012.03.09 09:10:22 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{7D028FE1-2636-41D0-BF49-53430620F1C1}
[2012.03.09 07:44:23 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{391D1596-D361-44AB-B51F-9001683B1E31}
[2012.03.09 07:43:09 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{05AFBA20-539B-46D4-A7C8-6ED2088F0A86}
[2012.03.08 09:14:19 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{A0E8799A-93EC-4E21-B637-35874E99F506}
[2012.03.08 09:13:15 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{AACA5C9A-24D4-4D8F-87D2-2BA46773038E}
[2012.03.08 07:36:22 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{655AC55A-C5E9-45B8-B80F-58EE14F39FA4}
[2012.03.08 07:35:14 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{DBE3AE9B-4476-4A8D-9B7A-825A98AE10B0}
[2012.03.07 22:41:59 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{63C01420-CD78-47D4-97DB-952C0A8A4E22}
[2012.03.07 22:41:45 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{4FFCB3BC-16D3-4050-A137-D5FE398F56DD}
[2012.03.07 19:59:15 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{AF4A1A60-1E4A-4DDC-84E4-BB17D53AAB98}
[2012.03.07 19:59:02 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{BA298A25-4041-463B-8693-A666DFB014F4}
[2012.03.07 13:15:41 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{1F0BF10F-5063-4C47-AA31-14D42D2107DA}
[2012.03.07 13:14:38 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{559B06CB-D456-4638-89D9-96D4D95C0E51}
[2012.03.07 10:28:17 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{F59CCE18-AA1E-41AD-BAF9-9709D316231C}
[2012.03.07 10:27:12 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{0175BF27-4DD3-4F6C-AA28-60F4E5DD4731}
[2012.03.07 08:21:41 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Desktop\Neuer Ordner
[2012.03.07 08:21:26 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{826A6B6E-D2C4-41BC-A824-0F3E13665ED5}
[2012.03.07 08:19:22 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{A5359E2A-FFDA-4B05-9669-6401F13D1EFA}
[2012.03.06 20:45:14 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\iLinc
[2012.03.06 20:45:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLinc 10
[2012.03.06 20:45:05 | 000,000,000 | ---D | C] -- C:\Program Files\iLinc
[2012.03.06 19:47:50 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{E100C892-0314-484D-A5AB-8366033462C0}
[2012.03.06 19:47:37 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{FCCAE813-BE04-464A-9DA6-B71A30885986}
[2012.03.06 15:05:42 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{8F8E915C-4AD1-4EF2-A43E-C694F3150001}
[2012.03.06 15:05:05 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{8296C824-580E-4B12-904F-C5DC5C36AC3E}
[2012.03.06 13:26:51 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{49D0F78E-F80F-4940-909D-C759467E5FE9}
[2012.03.06 10:35:04 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{5608C7F0-F69E-4511-8807-C507D999E37B}
[2012.03.06 08:58:36 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{606C78C9-1168-4710-983D-B63FE5557668}
[2012.03.06 08:57:30 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{0DB323CF-964B-4F8B-A1D9-B707ECA3A15C}
[2012.03.06 07:37:45 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{B7C1B2CE-93E8-4CA8-87EB-BD669A395705}
[2012.03.06 07:36:41 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{34B22A9D-9EC8-410A-9F02-2EAD77CC7AF8}
[2012.03.05 19:01:27 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2012.03.05 18:54:33 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Documents\Simply Super Software
[2012.03.05 18:54:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
[2012.03.05 18:54:11 | 000,000,000 | ---D | C] -- C:\Program Files\Trojan Remover
[2012.03.05 18:54:11 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Roaming\Simply Super Software
[2012.03.05 18:54:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Simply Super Software
[2012.03.05 18:53:53 | 010,488,608 | ---- | C] (Simply Super Software ) -- C:\Users\Dominik\Desktop\trjsetup682.exe
[2012.03.05 15:12:01 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{B99E9155-CB50-4DDD-A20A-48AE0C72608C}
[2012.03.05 15:10:57 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{F3B838D0-4E38-45F6-84BE-619CCC62A964}
[2012.03.05 13:21:36 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{10B06798-8132-471D-83C0-0618D3CE6AB1}
[2012.03.05 13:19:33 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{E1A28C52-20D7-48C9-A7D6-184213717DFD}
[2012.03.05 10:31:57 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{AD5B3C35-FA92-4C63-BB99-E8543B011827}
[2012.03.05 07:43:46 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{4F7872F1-00C3-4F28-88F4-F24F0C4C15D3}
[2012.03.04 21:51:02 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{7B6D3698-3CCF-442A-A9A8-35B2342F7DD4}
[2012.03.04 21:50:48 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{6560D229-E59B-4556-BE7A-95662D5CF9A3}
[2012.03.04 21:33:05 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{060F13B7-59B3-4E6C-A7F9-E5A7AFF1B0B2}
[2012.03.04 21:32:53 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{CEDC83A5-2E17-46E2-8137-8C267D2C8F1F}
[2012.03.04 21:32:15 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Documents\Meine empfangenen Dateien
[2012.03.04 21:10:49 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{F53DFFF0-3ECB-4931-B061-549F89C1D423}
[2012.03.04 21:10:36 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{D08791E1-2489-4A0A-9E76-D8DEBE47E1EF}
[2012.03.04 19:54:13 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Tracing
[2012.03.04 10:44:02 | 000,000,000 | ---D | C] -- C:\Users\Dominik\Desktop\PBU
[2012.02.29 22:26:37 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{838A4896-7412-4C72-A912-4C063BD516E1}
[2012.02.29 22:26:14 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{8FF7EB06-D887-4072-85C8-638D61DB9FF6}
[2012.02.12 16:05:14 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{B54E588E-ADED-42DE-9A85-10C5A5E1B8D1}
[2012.02.12 16:04:53 | 000,000,000 | ---D | C] -- C:\Users\Dominik\AppData\Local\{3EEA4F1A-1891-4DF1-87EE-85531EABA00A}
[2 C:\Users\Dominik\AppData\Roaming\*.tmp files -> C:\Users\Dominik\AppData\Roaming\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.03.13 10:32:48 | 000,009,696 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.03.13 10:32:48 | 000,009,696 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.03.13 10:32:24 | 000,654,166 | ---- | M] () -- C:\windows\System32\perfh007.dat
[2012.03.13 10:32:24 | 000,616,008 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2012.03.13 10:32:24 | 000,130,006 | ---- | M] () -- C:\windows\System32\perfc007.dat
[2012.03.13 10:32:24 | 000,106,388 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2012.03.13 10:29:08 | 000,112,128 | ---- | M] () -- C:\Users\Dominik\AppData\Roaming\Blzmzn.exe
[2012.03.13 10:24:49 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012.03.13 10:24:05 | 1602,838,528 | -HS- | M] () -- C:\hiberfil.sys
[2012.03.13 08:31:56 | 000,001,128 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1393613015-230667738-747458024-1000UA.job
[2012.03.13 07:45:01 | 000,001,076 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1393613015-230667738-747458024-1000Core.job
[2012.03.13 07:35:25 | 000,282,624 | ---- | M] () -- C:\Users\Dominik\AppData\Roaming\2612.exe
[2012.03.12 23:28:07 | 000,204,365 | ---- | M] () -- C:\Users\Dominik\DSC_0341.jpg
[2012.03.12 22:23:32 | 000,184,502 | ---- | M] () -- C:\Users\Dominik\DSC_0330.jpg
[2012.03.12 20:45:21 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\Users\Dominik\Desktop\OTL.exe
[2012.03.12 20:31:17 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Dominik\Desktop\HiJackThis204.exe
[2012.03.12 19:59:31 | 003,090,804 | ---- | M] () -- C:\Users\Dominik\Documents\win7_41.zip
[2012.03.12 19:38:21 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.03.12 19:23:27 | 000,002,369 | ---- | M] () -- C:\Users\Dominik\Desktop\Google Chrome.lnk
[2012.03.12 16:01:02 | 003,628,016 | ---- | M] (Piriform Ltd) -- C:\Users\Dominik\Desktop\ccsetup316.exe
[2012.03.12 10:31:43 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
[2012.03.11 19:55:12 | 001,227,958 | ---- | M] () -- C:\Users\Dominik\IMG_1116.JPG
[2012.03.11 19:22:13 | 000,123,749 | ---- | M] () -- C:\Users\Dominik\DSC001.jpg
[2012.03.11 16:43:43 | 000,012,333 | ---- | M] () -- C:\Users\Dominik\Desktop\silvester.ods
[2012.03.10 00:12:13 | 000,091,390 | ---- | M] () -- C:\Users\Dominik\DSC_0259.jpg
[2012.03.09 23:40:18 | 000,282,480 | ---- | M] () -- C:\Users\Dominik\DSC00125.JPG
[2012.03.09 23:28:01 | 002,521,784 | ---- | M] () -- C:\Users\Dominik\DSC02744.JPG
[2012.03.09 23:27:43 | 000,294,239 | ---- | M] () -- C:\Users\Dominik\20.JPG
[2012.03.09 23:25:02 | 002,154,519 | ---- | M] () -- C:\Users\Dominik\P1020181.JPG
[2012.03.09 23:24:55 | 002,077,605 | ---- | M] () -- C:\Users\Dominik\P1020186.JPG
[2012.03.07 15:34:15 | 000,030,523 | ---- | M] () -- C:\Users\Dominik\Desktop\Unbenannt 1.odt
[2012.03.06 23:00:23 | 003,331,151 | ---- | M] () -- C:\Users\Dominik\Desktop\2012-03-07_stapel_-_pflanzenschutzrechtpbu12.pdf
[2012.03.06 19:57:03 | 007,064,771 | ---- | M] () -- C:\Users\Dominik\Desktop\P3050120.JPG
[2012.03.06 19:54:06 | 013,345,324 | ---- | M] () -- C:\Users\Dominik\Desktop\100OLYMP.rar
[2012.03.05 18:51:26 | 010,488,608 | ---- | M] (Simply Super Software ) -- C:\Users\Dominik\Desktop\trjsetup682.exe
[2012.03.05 13:22:46 | 000,000,154 | ---- | M] () -- C:\Users\Dominik\Desktop\noautoplay.reg
[2012.02.27 22:53:29 | 000,245,818 | ---- | M] () -- C:\Users\Dominik\104_0419.JPG
[2012.02.27 22:53:28 | 000,273,224 | ---- | M] () -- C:\Users\Dominik\IMG_0810.jpg
[2012.02.27 22:53:27 | 000,280,894 | ---- | M] () -- C:\Users\Dominik\104_0401.JPG
[2012.02.20 10:58:03 | 000,001,984 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012.02.20 03:02:55 | 000,072,822 | ---- | M] () -- C:\windows\System32\ieuinit.inf
[2012.02.18 10:58:22 | 000,284,936 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2 C:\Users\Dominik\AppData\Roaming\*.tmp files -> C:\Users\Dominik\AppData\Roaming\*.tmp -> ]

========== Files Created - No Company Name ==========

[2030.01.01 12:09:48 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2012.03.13 10:29:08 | 000,112,128 | ---- | C] () -- C:\Users\Dominik\AppData\Roaming\Blzmzn.exe
[2012.03.13 07:35:25 | 000,282,624 | ---- | C] () -- C:\Users\Dominik\AppData\Roaming\2612.exe
[2012.03.12 23:28:06 | 000,204,365 | ---- | C] () -- C:\Users\Dominik\DSC_0341.jpg
[2012.03.12 22:23:31 | 000,184,502 | ---- | C] () -- C:\Users\Dominik\DSC_0330.jpg
[2012.03.12 19:59:25 | 003,090,804 | ---- | C] () -- C:\Users\Dominik\Documents\win7_41.zip
[2012.03.12 19:38:21 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012.03.11 19:54:55 | 001,227,958 | ---- | C] () -- C:\Users\Dominik\IMG_1116.JPG
[2012.03.11 19:22:12 | 000,123,749 | ---- | C] () -- C:\Users\Dominik\DSC001.jpg
[2012.03.10 00:12:13 | 000,091,390 | ---- | C] () -- C:\Users\Dominik\DSC_0259.jpg
[2012.03.09 23:40:13 | 000,282,480 | ---- | C] () -- C:\Users\Dominik\DSC00125.JPG
[2012.03.09 23:27:39 | 002,521,784 | ---- | C] () -- C:\Users\Dominik\DSC02744.JPG
[2012.03.09 23:27:39 | 000,294,239 | ---- | C] () -- C:\Users\Dominik\20.JPG
[2012.03.09 23:24:33 | 002,154,519 | ---- | C] () -- C:\Users\Dominik\P1020181.JPG
[2012.03.09 23:24:27 | 002,077,605 | ---- | C] () -- C:\Users\Dominik\P1020186.JPG
[2012.03.07 14:36:00 | 000,030,523 | ---- | C] () -- C:\Users\Dominik\Desktop\Unbenannt 1.odt
[2012.03.06 23:00:22 | 003,331,151 | ---- | C] () -- C:\Users\Dominik\Desktop\2012-03-07_stapel_-_pflanzenschutzrechtpbu12.pdf
[2012.03.06 19:54:14 | 007,064,771 | ---- | C] () -- C:\Users\Dominik\Desktop\P3050120.JPG
[2012.03.06 19:53:57 | 013,345,324 | ---- | C] () -- C:\Users\Dominik\Desktop\100OLYMP.rar
[2012.03.05 18:54:20 | 000,077,312 | ---- | C] () -- C:\windows\System32\ztvunace26.dll
[2012.03.05 18:54:19 | 000,162,304 | ---- | C] () -- C:\windows\System32\ztvunrar36.dll
[2012.03.05 18:54:19 | 000,153,088 | ---- | C] () -- C:\windows\System32\UNRAR3.dll
[2012.03.05 18:54:19 | 000,075,264 | ---- | C] () -- C:\windows\System32\unacev2.dll
[2012.03.05 13:57:36 | 000,000,154 | ---- | C] () -- C:\Users\Dominik\Desktop\noautoplay.reg
[2012.02.27 22:53:17 | 000,280,894 | ---- | C] () -- C:\Users\Dominik\104_0401.JPG
[2012.02.27 22:53:17 | 000,273,224 | ---- | C] () -- C:\Users\Dominik\IMG_0810.jpg
[2012.02.27 22:53:17 | 000,245,818 | ---- | C] () -- C:\Users\Dominik\104_0419.JPG
[2012.02.20 10:58:03 | 000,001,984 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012.02.20 03:02:55 | 000,072,822 | ---- | C] () -- C:\windows\System32\ieuinit.inf
[2012.01.17 23:16:25 | 000,007,007 | ---- | C] () -- C:\ProgramData\84e2a78c
[2012.01.17 23:16:25 | 000,006,958 | ---- | C] () -- C:\Users\Dominik\AppData\Roaming\50dcdbd3
[2012.01.17 23:16:25 | 000,006,851 | ---- | C] () -- C:\Users\Dominik\AppData\Local\a03271f
[2011.12.27 20:06:12 | 000,000,017 | ---- | C] () -- C:\Users\Dominik\AppData\Local\resmon.resmoncfg
[2011.07.18 12:10:49 | 000,434,176 | ---- | C] () -- C:\windows\System32\ZSHP1020.EXE
[2011.07.11 08:08:29 | 000,747,592 | ---- | C] () -- C:\windows\System32\pwNative.exe
[2011.07.11 08:08:17 | 000,011,104 | ---- | C] () -- C:\windows\System32\pwdspio.sys
[2011.07.10 18:42:54 | 000,006,144 | ---- | C] () -- C:\windows\System32\drivers\ASUSHWIO.SYS
[2011.07.10 13:13:04 | 000,005,576 | ---- | C] () -- C:\windows\Language.ini
[2011.07.10 13:08:35 | 000,004,692 | ---- | C] () -- C:\windows\System32\drivers\SamSfPa.dat
[2011.07.10 13:08:35 | 000,000,520 | ---- | C] () -- C:\windows\System32\drivers\RTEQEX0.dat
[2010.11.09 01:56:06 | 000,219,136 | ---- | C] () -- C:\windows\System32\AsusService.exe
[2010.11.09 01:56:05 | 000,025,616 | ---- | C] () -- C:\windows\AsAcpiSvrLang.ini
[2010.11.09 01:52:32 | 000,011,520 | ---- | C] () -- C:\windows\System32\drivers\AsUpIO.sys
[2010.11.09 01:51:52 | 000,000,702 | ---- | C] () -- C:\windows\Reboot.ini
[2010.11.09 01:47:43 | 000,014,051 | ---- | C] () -- C:\windows\System32\RaCoInst.dat
[2010.07.29 08:43:10 | 000,013,880 | ---- | C] ( ) -- C:\windows\System32\drivers\kbfiltr.sys

========== LOP Check ==========

[2011.07.11 09:03:19 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1
[2010.11.09 01:54:16 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\E-Cam
[2012.01.21 21:43:01 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\Foxit Software
[2011.07.11 08:42:22 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\OpenOffice.org
[2011.09.26 08:51:15 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\Opera
[2012.03.05 18:54:11 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\Simply Super Software
[2011.07.10 18:51:02 | 000,000,000 | ---D | M] -- C:\Users\Dominik\AppData\Roaming\Windows Live Writer
[2012.03.06 08:55:51 | 000,032,614 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 152 bytes -> C:\ProgramData\TEMP:CB0AACC9

< End of report >


Hm...wollte ich das schöner reinkopieren...

DANKE SCHONMAL!

 

Themen zu Firewall 0x80070424 - OTL Log im Anhang
0x8007042, 0x80070424, adobe, alternate, antivir, application/pdf, application/pdf:, avira, bho, browser, ccsetup, eeepc, error, explorer, firefox, firewall, format, hijack, hijackthis, host.exe, log, logfile, mbamservice.exe, opera, plug-in, problem, registry, scan, searchscopes, security, services.exe, software, taskhost.exe, temp, version=1.0, windows, ändern


« Trojaner: Bundespolizei Achtung!!! 100 € Strafe | Probleme mit Laptop, Verseuchter Link, Trojaner, Remote Control?, Abstürze von Firefox, dlls, Word.. »


Ähnliche Themen: Firewall 0x80070424 - OTL Log im Anhang


  1. Firewall-Probleme mit Fehler 0x80070433 und 0x80070424
    Lob, Kritik und Wünsche - 31.05.2015 (0)
  2. Firewall-Probleme mit Fehler 0x80070433 und 0x80070424
    Plagegeister aller Art und deren Bekämpfung - 31.05.2015 (23)
  3. Windows-Firewall Fehlercode 0x80070424
    Plagegeister aller Art und deren Bekämpfung - 07.10.2013 (11)
  4. Windows Firewall lässt sich nicht aktivieren fehlercode 0x80070424
    Plagegeister aller Art und deren Bekämpfung - 29.09.2013 (26)
  5. Trojan.Zaccess und Windows Firewall Fehlercode 0x80070424
    Plagegeister aller Art und deren Bekämpfung - 15.09.2013 (11)
  6. Firewall - Fehlercode 0x80070424, Windows Upadte und Rootkit
    Log-Analyse und Auswertung - 14.04.2013 (21)
  7. Windows 7 Firewall funktioniert nicht mehr Fehlercode 0x80070424
    Log-Analyse und Auswertung - 09.12.2012 (12)
  8. Firewall und MSE lassen sich nicht mehr aktivieren Fehlercode: ,,0x80070424,,
    Log-Analyse und Auswertung - 03.11.2012 (50)
  9. Windows Firewall/Defender reagieren nicht Fehlercode 0x80070424
    Plagegeister aller Art und deren Bekämpfung - 05.10.2012 (5)
  10. Firewall Fehlercode: 0x80070424, Win 7, 64bit
    Log-Analyse und Auswertung - 25.09.2012 (9)
  11. Fehlercode 0x80070424 - Fehlermeldung bei Windows-Firewall
    Netzwerk und Hardware - 26.08.2012 (7)
  12. Fehlercode 0x80070424 bei Windows Defender, Firewall. Sicherheitscenter inaktiv.
    Plagegeister aller Art und deren Bekämpfung - 30.07.2012 (1)
  13. Firewall Fehlercode 0x80070424 / Echzeitschutz von z.b. MSE funktioniert nicht mehr
    Plagegeister aller Art und deren Bekämpfung - 19.07.2012 (51)
  14. Windows-Firewall zeigt Fehlercode 0x80070424
    Antiviren-, Firewall- und andere Schutzprogramme - 12.05.2012 (14)
  15. Firewall - Fehlercode 0x80070424
    Plagegeister aller Art und deren Bekämpfung - 02.04.2012 (1)
  16. Windows Firewall funktionier nicht Fehlercode 0x80070424
    Log-Analyse und Auswertung - 10.02.2012 (5)
  17. Firewall lässt sich nicht aktivieren / Fehlercode 0x80070424
    Plagegeister aller Art und deren Bekämpfung - 25.01.2012 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Firewall 0x80070424 - OTL Log im Anhang - Hallo... Habe hier schon oft Hilfe gefunden und bisher immer alles alleine lösen können. Derzeit kann ich meine WIN7 Firewall nicht ändern und es kam bis gestern immer eine Virusmeldung - Firewall 0x80070424 - OTL Log im Anhang...

Alle Zeitangaben in WEZ +1. Es ist jetzt 04:04 Uhr.

Kontakt - Trojaner-Board - Archiv - Datenschutzerklärung - Nach oben

Copyright ©2000-2025, Trojaner-Board
Archiv
Du betrachtest: Firewall 0x80070424 - OTL Log im Anhang auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131