| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: bProtector for Windows searchpluginsWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
31.07.2012, 14:17
| #1 |
| |  bProtector for Windows searchplugins All processes killed ========== OTL ========== Service bProtector stopped successfully! Service bProtector deleted successfully! File move failed. C:\ProgramData\bProtectorForWindows\2.2.463.83\bProtect.exe scheduled to be moved on reboot. Service NwlnkFwd stopped successfully! Service NwlnkFwd deleted successfully! File system32\DRIVERS\nwlnkfwd.sys File not found not found. Service NwlnkFlt stopped successfully! Service NwlnkFlt deleted successfully! File system32\DRIVERS\nwlnkflt.sys File not found not found. Service IpInIp stopped successfully! Service IpInIp deleted successfully! File system32\DRIVERS\ipinip.sys File not found not found. Service blbdrive stopped successfully! Service blbdrive deleted successfully! File C:\Windows\system32\drivers\blbdrive.sys File not found not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{57BCA5FA-5DBB-45a2-B558-1755C3F6253B} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}\ deleted successfully. C:\Programme\Winamp Toolbar\winamptb.dll moved successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully! Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}\ not found. HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully! HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully! HKU\S-1-5-21-3763147448-2540374928-1796028379-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\bProtector Start Page| /E : value set successfully! HKU\S-1-5-21-3763147448-2540374928-1796028379-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Registry value HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{57BCA5FA-5DBB-45a2-B558-1755C3F6253B} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}\ not found. File C:\Programme\Winamp Toolbar\winamptb.dll not found. HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully! HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully! Registry key HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found. Registry key HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found. Registry key HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}\ deleted successfully. Registry key HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\{379378E5-2813-4E77-81D1-880619D81CB6}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{379378E5-2813-4E77-81D1-880619D81CB6}\ not found. Registry key HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found. Registry key HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}\ not found. HKU\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable|dword:0 /E : value set successfully! Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully. C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully. File C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll not found. File HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\bProtectorForWindows\2.2.463.83\FirefoxExtension not found. File C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\ not found. File move failed. C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll scheduled to be moved on reboot. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1E8A6170-7264-4D0F-BEAE-D42A53123C75}\ deleted successfully. C:\Programme\Common Files\Symantec Shared\coShared\Browser\1.0\NppBHO.dll moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{90222687-F593-4738-B738-FBEE9C7B26DF} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{90222687-F593-4738-B738-FBEE9C7B26DF}\ deleted successfully. C:\Programme\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll moved successfully. Registry value HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ deleted successfully. c:\Programme\Google\GoogleToolbar1.dll moved successfully. Registry value HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}\ not found. C:\Programme\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll moved successfully. Registry value HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}\ deleted successfully. File C:\Programme\Winamp Toolbar\winamptb.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NDSTray.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\WinampAgent deleted successfully. C:\Programme\Winamp\winampa.exe moved successfully. Registry value HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ICQ deleted successfully. Registry value HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\Software\Microsoft\Windows\CurrentVersion\Run\\TOSCDSPD deleted successfully. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\ConsentPromptBehaviorAdmin deleted successfully. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\EnableLUA deleted successfully. Registry value HKEY_USERS\S-1-5-21-3763147448-2540374928-1796028379-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B863453A-26C3-4e1f-A54D-A2CD196348E9}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{C08CAF1D-C0A3-40D5-9970-06D067EAC017}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C08CAF1D-C0A3-40D5-9970-06D067EAC017}\ not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~2\bprote~1\22463~1.83\protec~1.dll deleted successfully. File move failed. c:\ProgramData\bProtectorForWindows\2.2.463.83\protector.dll scheduled to be moved on reboot. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully! C:\autoexec.bat moved successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{15e5c95e-2107-11df-a9b2-00a0d16c74bb}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{15e5c95e-2107-11df-a9b2-00a0d16c74bb}\ not found. File C:\RECYCLER\autorun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{15e5c95e-2107-11df-a9b2-00a0d16c74bb}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{15e5c95e-2107-11df-a9b2-00a0d16c74bb}\ not found. File C:\RECYCLER\autorun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3bc04713-b6a9-11dc-843e-00a0d16c74bb}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3bc04713-b6a9-11dc-843e-00a0d16c74bb}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3bc04713-b6a9-11dc-843e-00a0d16c74bb}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3bc04713-b6a9-11dc-843e-00a0d16c74bb}\ not found. File D:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3bc0472d-b6a9-11dc-843e-00a0d16c74bb}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3bc0472d-b6a9-11dc-843e-00a0d16c74bb}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3bc0472d-b6a9-11dc-843e-00a0d16c74bb}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3bc0472d-b6a9-11dc-843e-00a0d16c74bb}\ not found. File G:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8423d886-ec3c-11dd-9a8e-00a0d16c74bb}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8423d886-ec3c-11dd-9a8e-00a0d16c74bb}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8423d886-ec3c-11dd-9a8e-00a0d16c74bb}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8423d886-ec3c-11dd-9a8e-00a0d16c74bb}\ not found. File D:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c276349d-b95b-11dc-b533-00a0d16c74bb}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c276349d-b95b-11dc-b533-00a0d16c74bb}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c276349d-b95b-11dc-b533-00a0d16c74bb}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c276349d-b95b-11dc-b533-00a0d16c74bb}\ not found. File D:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c86227dd-128b-11dd-8f2e-806e6f6e6963}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c86227dd-128b-11dd-8f2e-806e6f6e6963}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c86227dd-128b-11dd-8f2e-806e6f6e6963}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c86227dd-128b-11dd-8f2e-806e6f6e6963}\ not found. File D:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ce76eadd-1230-11dd-91e7-806e6f6e6963}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ce76eadd-1230-11dd-91e7-806e6f6e6963}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ce76eadd-1230-11dd-91e7-806e6f6e6963}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ce76eadd-1230-11dd-91e7-806e6f6e6963}\ not found. File D:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ce76ec36-1230-11dd-91e7-00a0d16c74bb}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ce76ec36-1230-11dd-91e7-00a0d16c74bb}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ce76ec36-1230-11dd-91e7-00a0d16c74bb}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ce76ec36-1230-11dd-91e7-00a0d16c74bb}\ not found. File D:\AutoRun.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found. File F:\setup.exe not found. C:\Windows\System32\roboot.exe moved successfully. C:\ProgramData\bProtectorForWindows\2.2.463.83\traking_settings folder moved successfully. C:\ProgramData\bProtectorForWindows\2.2.463.83\FirefoxExtension\searchplugins folder moved successfully. C:\ProgramData\bProtectorForWindows\2.2.463.83\FirefoxExtension\content folder moved successfully. C:\ProgramData\bProtectorForWindows\2.2.463.83\FirefoxExtension\components folder moved successfully. C:\ProgramData\bProtectorForWindows\2.2.463.83\FirefoxExtension folder moved successfully. C:\ProgramData\bProtectorForWindows\2.2.463.83\crashReports folder moved successfully. Folder move failed. C:\ProgramData\bProtectorForWindows\2.2.463.83 scheduled to be moved on reboot. Folder move failed. C:\ProgramData\bProtectorForWindows scheduled to be moved on reboot. C:\Windows\System32\zch1095.tmp deleted successfully. C:\Windows\System32\zch10E.tmp deleted successfully. C:\Windows\System32\zch1129.tmp deleted successfully. C:\Windows\System32\zch127.tmp deleted successfully. C:\Windows\System32\zch144E.tmp deleted successfully. C:\Windows\System32\zch14D.tmp deleted successfully. C:\Windows\System32\zch14FC.tmp deleted successfully. C:\Windows\System32\zch153E.tmp deleted successfully. C:\Windows\System32\zch1560.tmp deleted successfully. C:\Windows\System32\zch1600.tmp deleted successfully. C:\Windows\System32\zch1630.tmp deleted successfully. C:\Windows\System32\zch17C9.tmp deleted successfully. C:\Windows\System32\zch19AB.tmp deleted successfully. C:\Windows\System32\zch1A5C.tmp deleted successfully. C:\Windows\System32\zch1C61.tmp deleted successfully. C:\Windows\System32\zch1D10.tmp deleted successfully. C:\Windows\System32\zch1EAA.tmp deleted successfully. C:\Windows\System32\zch1ECA.tmp deleted successfully. C:\Windows\System32\zch2386.tmp deleted successfully. C:\Windows\System32\zch2609.tmp deleted successfully. C:\Windows\System32\zch2CEF.tmp deleted successfully. C:\Windows\System32\zch2D2.tmp deleted successfully. C:\Windows\System32\zch2F4.tmp deleted successfully. C:\Windows\System32\zch31DD.tmp deleted successfully. C:\Windows\System32\zch324C.tmp deleted successfully. C:\Windows\System32\zch391.tmp deleted successfully. C:\Windows\System32\zch3A64.tmp deleted successfully. C:\Windows\System32\zch3E4B.tmp deleted successfully. C:\Windows\System32\zch433.tmp deleted successfully. C:\Windows\System32\zch445C.tmp deleted successfully. C:\Windows\System32\zch452A.tmp deleted successfully. C:\Windows\System32\zch45EB.tmp deleted successfully. C:\Windows\System32\zch474A.tmp deleted successfully. C:\Windows\System32\zch47BA.tmp deleted successfully. C:\Windows\System32\zch47DD.tmp deleted successfully. C:\Windows\System32\zch489A.tmp deleted successfully. C:\Windows\System32\zch492.tmp deleted successfully. C:\Windows\System32\zch4A1.tmp deleted successfully. C:\Windows\System32\zch4D69.tmp deleted successfully. C:\Windows\System32\zch4E8C.tmp deleted successfully. C:\Windows\System32\zch500.tmp deleted successfully. C:\Windows\System32\zch5092.tmp deleted successfully. C:\Windows\System32\zch51AE.tmp deleted successfully. C:\Windows\System32\zch51EF.tmp deleted successfully. C:\Windows\System32\zch5280.tmp deleted successfully. C:\Windows\System32\zch5472.tmp deleted successfully. C:\Windows\System32\zch55EC.tmp deleted successfully. C:\Windows\System32\zch5777.tmp deleted successfully. C:\Windows\System32\zch5A79.tmp deleted successfully. C:\Windows\System32\zch5A8C.tmp deleted successfully. C:\Windows\System32\zch5A9B.tmp deleted successfully. C:\Windows\System32\zch5ADA.tmp deleted successfully. C:\Windows\System32\zch5B4C.tmp deleted successfully. C:\Windows\System32\zch5B69.tmp deleted successfully. C:\Windows\System32\zch5B8B.tmp deleted successfully. C:\Windows\System32\zch5BAD.tmp deleted successfully. C:\Windows\System32\zch5BC.tmp deleted successfully. C:\Windows\System32\zch5CEF.tmp deleted successfully. C:\Windows\System32\zch5D29.tmp deleted successfully. C:\Windows\System32\zch5D50.tmp deleted successfully. C:\Windows\System32\zch5D5E.tmp deleted successfully. C:\Windows\System32\zch5D91.tmp deleted successfully. C:\Windows\System32\zch5F56.tmp deleted successfully. C:\Windows\System32\zch5FC8.tmp deleted successfully. C:\Windows\System32\zch60D.tmp deleted successfully. C:\Windows\System32\zch6582.tmp deleted successfully. C:\Windows\System32\zch65A.tmp deleted successfully. C:\Windows\System32\zch65D3.tmp deleted successfully. C:\Windows\System32\zch6605.tmp deleted successfully. C:\Windows\System32\zch6627.tmp deleted successfully. C:\Windows\System32\zch6726.tmp deleted successfully. C:\Windows\System32\zch67F4.tmp deleted successfully. C:\Windows\System32\zch6893.tmp deleted successfully. C:\Windows\System32\zch6AC9.tmp deleted successfully. C:\Windows\System32\zch6C04.tmp deleted successfully. C:\Windows\System32\zch6F31.tmp deleted successfully. C:\Windows\System32\zch6F70.tmp deleted successfully. C:\Windows\System32\zch709.tmp deleted successfully. C:\Windows\System32\zch70E.tmp deleted successfully. C:\Windows\System32\zch73D3.tmp deleted successfully. C:\Windows\System32\zch74D.tmp deleted successfully. C:\Windows\System32\zch74D1.tmp deleted successfully. C:\Windows\System32\zch780F.tmp deleted successfully. C:\Windows\System32\zch79D6.tmp deleted successfully. C:\Windows\System32\zch7A65.tmp deleted successfully. C:\Windows\System32\zch7C7D.tmp deleted successfully. C:\Windows\System32\zch844.tmp deleted successfully. C:\Windows\System32\zch85E.tmp deleted successfully. C:\Windows\System32\zch875.tmp deleted successfully. C:\Windows\System32\zch87B9.tmp deleted successfully. C:\Windows\System32\zch8874.tmp deleted successfully. C:\Windows\System32\zch8E.tmp deleted successfully. C:\Windows\System32\zch90B9.tmp deleted successfully. C:\Windows\System32\zch91A6.tmp deleted successfully. C:\Windows\System32\zch940F.tmp deleted successfully. C:\Windows\System32\zch9410.tmp deleted successfully. C:\Windows\System32\zch9543.tmp deleted successfully. C:\Windows\System32\zch960.tmp deleted successfully. C:\Windows\System32\zch985.tmp deleted successfully. C:\Windows\System32\zch9A98.tmp deleted successfully. C:\Windows\System32\zch9D2E.tmp deleted successfully. C:\Windows\System32\zch9F13.tmp deleted successfully. C:\Windows\System32\zchA2DB.tmp deleted successfully. C:\Windows\System32\zchA2EB.tmp deleted successfully. C:\Windows\System32\zchA31D.tmp deleted successfully. C:\Windows\System32\zchA598.tmp deleted successfully. C:\Windows\System32\zchA5B.tmp deleted successfully. C:\Windows\System32\zchA72C.tmp deleted successfully. C:\Windows\System32\zchA749.tmp deleted successfully. C:\Windows\System32\zchA97E.tmp deleted successfully. C:\Windows\System32\zchAA1D.tmp deleted successfully. C:\Windows\System32\zchB21D.tmp deleted successfully. C:\Windows\System32\zchB34A.tmp deleted successfully. C:\Windows\System32\zchB399.tmp deleted successfully. C:\Windows\System32\zchB3C1.tmp deleted successfully. C:\Windows\System32\zchB421.tmp deleted successfully. C:\Windows\System32\zchB5AC.tmp deleted successfully. C:\Windows\System32\zchB68D.tmp deleted successfully. C:\Windows\System32\zchBA0A.tmp deleted successfully. C:\Windows\System32\zchBA59.tmp deleted successfully. C:\Windows\System32\zchBAE3.tmp deleted successfully. C:\Windows\System32\zchBBC2.tmp deleted successfully. C:\Windows\System32\zchBC03.tmp deleted successfully. C:\Windows\System32\zchBD40.tmp deleted successfully. C:\Windows\System32\zchBD82.tmp deleted successfully. C:\Windows\System32\zchBDC1.tmp deleted successfully. C:\Windows\System32\zchBDF1.tmp deleted successfully. C:\Windows\System32\zchBFD6.tmp deleted successfully. C:\Windows\System32\zchC0E2.tmp deleted successfully. C:\Windows\System32\zchC161.tmp deleted successfully. C:\Windows\System32\zchC16F.tmp deleted successfully. C:\Windows\System32\zchC1C2.tmp deleted successfully. C:\Windows\System32\zchC1F4.tmp deleted successfully. C:\Windows\System32\zchC275.tmp deleted successfully. C:\Windows\System32\zchC27B.tmp deleted successfully. C:\Windows\System32\zchC2E3.tmp deleted successfully. C:\Windows\System32\zchC508.tmp deleted successfully. C:\Windows\System32\zchC57C.tmp deleted successfully. C:\Windows\System32\zchC692.tmp deleted successfully. C:\Windows\System32\zchCABE.tmp deleted successfully. C:\Windows\System32\zchCC35.tmp deleted successfully. C:\Windows\System32\zchCC52.tmp deleted successfully. C:\Windows\System32\zchCE16.tmp deleted successfully. C:\Windows\System32\zchCF5E.tmp deleted successfully. C:\Windows\System32\zchD02C.tmp deleted successfully. C:\Windows\System32\zchD05E.tmp deleted successfully. C:\Windows\System32\zchD0AA.tmp deleted successfully. C:\Windows\System32\zchD0CA.tmp deleted successfully. C:\Windows\System32\zchD255.tmp deleted successfully. C:\Windows\System32\zchD2E1.tmp deleted successfully. C:\Windows\System32\zchD646.tmp deleted successfully. C:\Windows\System32\zchD9CF.tmp deleted successfully. C:\Windows\System32\zchDA96.tmp deleted successfully. C:\Windows\System32\zchDA9C.tmp deleted successfully. C:\Windows\System32\zchDB82.tmp deleted successfully. C:\Windows\System32\zchDBBA.tmp deleted successfully. C:\Windows\System32\zchDBF0.tmp deleted successfully. C:\Windows\System32\zchDC01.tmp deleted successfully. C:\Windows\System32\zchDF7E.tmp deleted successfully. C:\Windows\System32\zchE154.tmp deleted successfully. C:\Windows\System32\zchE6B3.tmp deleted successfully. C:\Windows\System32\zchE762.tmp deleted successfully. C:\Windows\System32\zchEB7C.tmp deleted successfully. C:\Windows\System32\zchEB96.tmp deleted successfully. C:\Windows\System32\zchEBE7.tmp deleted successfully. C:\Windows\System32\zchEE1D.tmp deleted successfully. C:\Windows\System32\zchEF66.tmp deleted successfully. C:\Windows\System32\zchEFA0.tmp deleted successfully. C:\Windows\System32\zchF0E9.tmp deleted successfully. C:\Windows\System32\zchF3D9.tmp deleted successfully. C:\Windows\System32\zchF855.tmp deleted successfully. C:\Windows\System32\zchF8A4.tmp deleted successfully. C:\Windows\System32\zchF8F0.tmp deleted successfully. C:\Windows\System32\zchF9BE.tmp deleted successfully. C:\Windows\System32\zchF9C6.tmp deleted successfully. C:\Windows\System32\zchFB.tmp deleted successfully. C:\Windows\System32\zchFBF0.tmp deleted successfully. C:\Windows\System32\zchFD1B.tmp deleted successfully. C:\Windows\System32\zchFD31.tmp deleted successfully. C:\Windows\System32\zchFD4D.tmp deleted successfully. C:\Windows\System32\zchFE1D.tmp deleted successfully. C:\Windows\System32\zchFEF1.tmp deleted successfully. C:\Users\Hannes\AppData\Roaming\nvModes.001 moved successfully. C:\Users\Hannes\AppData\Roaming\nvModes.dat moved successfully. ADS C:\ProgramData\TEMP:24051EFF deleted successfully. C:\Users\Hannes\Desktop\bProtectorForWindows\2.2.463.83 folder moved successfully. C:\Users\Hannes\Desktop\bProtectorForWindows folder moved successfully. C:\Users\Hannes\Desktop\searchplugins folder moved successfully. C:\Program Files\Common Files\searchplugins folder moved successfully. C:\Program Files\Common Files\bProtectorForWindows\2.2.463.83 folder moved successfully. C:\Program Files\Common Files\bProtectorForWindows folder moved successfully. C:\Users\Hannes\bProtectorForWindows\2.2.463.83 folder moved successfully. C:\Users\Hannes\bProtectorForWindows folder moved successfully. C:\Users\Hannes\AppData\Roaming\PerformerSoft folder moved successfully. C:\Program Files\PC Performer\searchplugins folder moved successfully. C:\Program Files\PC Performer\bProtectorForWindows\2.2.463.83 folder moved successfully. C:\Program Files\PC Performer\bProtectorForWindows folder moved successfully. C:\Program Files\PC Performer folder moved successfully. C:\Program Files\Conduit\Community Alerts folder moved successfully. C:\Program Files\Conduit folder moved successfully. C:\Users\Hannes\AppData\Local\Conduit folder moved successfully. C:\Users\Hannes\searchplugins folder moved successfully. C:\Windows\System32\Extensions folder moved successfully. C:\Windows\System32\searchplugins folder moved successfully. C:\Windows\System32\bProtectorForWindows\2.2.463.83 folder moved successfully. C:\Windows\System32\bProtectorForWindows folder moved successfully. C:\END moved successfully. C:\Windows\Tasks\User_Feed_Synchronization-{D9B30BB4-63C0-47D4-A444-A174F9308500}.job moved successfully. C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully. File move failed. C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 scheduled to be moved on reboot. File move failed. C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 scheduled to be moved on reboot. C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully. ========== FILES ========== < ipconfig /flushdns /c > Windows-IP-Konfiguration Der DNS-Aufl”sungscache wurde geleert. C:\Users\Hannes\Desktop\cmd.bat deleted successfully. C:\Users\Hannes\Desktop\cmd.txt deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Christina ->Temp folder emptied: 161370 bytes ->Temporary Internet Files folder emptied: 455626 bytes ->Java cache emptied: 25544425 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Hannes ->Temp folder emptied: 101410550 bytes ->Temporary Internet Files folder emptied: 249140506 bytes ->Java cache emptied: 270845547 bytes ->Google Chrome cache emptied: 242289088 bytes ->Flash cache emptied: 2061938 bytes User: Neuer Ordner User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 81162047 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 928,00 mb [EMPTYFLASH] User: All Users User: Christina User: Default User: Default User User: Hannes ->Flash cache emptied: 0 bytes User: Neuer Ordner User: Public Total Flash Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.55.0 log created on 07312012_143431 Files\Folders moved on Reboot... C:\ProgramData\bProtectorForWindows\2.2.463.83\bProtect.exe moved successfully. File move failed. C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll scheduled to be moved on reboot. File move failed. c:\ProgramData\bProtectorForWindows\2.2.463.83\protector.dll scheduled to be moved on reboot. C:\ProgramData\bProtectorForWindows\2.2.463.83\traking_settings folder moved successfully. Folder move failed. C:\ProgramData\bProtectorForWindows\2.2.463.83 scheduled to be moved on reboot. Folder move failed. C:\ProgramData\bProtectorForWindows\2.2.463.83 scheduled to be moved on reboot. Folder move failed. C:\ProgramData\bProtectorForWindows scheduled to be moved on reboot. File move failed. C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 scheduled to be moved on reboot. File move failed. C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 scheduled to be moved on reboot. PendingFileRenameOperations files... File C:\ProgramData\bProtectorForWindows\2.2.463.83\bProtect.exe not found! [2006.10.22 23:08:42 | 000,062,080 | ---- | M] (Adobe Systems Incorporated) C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll : MD5=C11F6A1F61481E24BE3FDC06EA6F7D2A [2012.07.14 17:30:01 | 002,008,096 | ---- | M] () c:\ProgramData\bProtectorForWindows\2.2.463.83\protector.dll : Unable to obtain MD5 File C:\ProgramData\bProtectorForWindows\2.2.463.83 not found! File C:\ProgramData\bProtectorForWindows not found! [2012.07.31 14:57:43 | 000,003,168 | -H-- | M] () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 : Unable to obtain MD5 [2012.07.31 14:57:42 | 000,003,168 | -H-- | M] () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 : Unable to obtain MD5 Registry entries deleted on Reboot... |
|
| Themen zu bProtector for Windows searchplugins |
| anti-malware, bprotector, bprotector for windows, durchgeführt, externe, inter, interne, internen, malwarebytes, malwarebytes anti-malware, searchplugins, windows |
Hybrid-Darstellung
