TR/ATRAPS.Gen und Combofix

DBDDHKP · 31.08.2012, 15:46

Danke für Deine Geduld - im abgesicherten Modus hat's geklappt - hier der Log:

Code:

ATTFilter

All processes killed
========== OTL ==========
Service kncafmsugixo stopped successfully!
Service kncafmsugixo deleted successfully!
File C:\DOKUME~1\Compi\LOKALE~1\Temp\DATB.tmp.exe not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveAutoRun deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDrives deleted successfully.
Registry key HKEY_USERS\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry value HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun deleted successfully.
Registry value HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveAutoRun deleted successfully.
Registry key HKEY_USERS\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry value HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun not found.
Registry value HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveAutoRun not found.
Registry key HKEY_USERS\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry value HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun deleted successfully.
Registry key HKEY_USERS\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry value HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun deleted successfully.
Registry key HKEY_USERS\S-1-5-21-448539723-1417001333-1801674531-1004\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.
Registry key HKEY_USERS\S-1-5-21-448539723-1417001333-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer not found.
Registry key HKEY_USERS\S-1-5-21-448539723-1417001333-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer not found.
Registry key HKEY_USERS\S-1-5-21-448539723-1417001333-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer not found.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
C:\AUTOEXEC.BAT moved successfully.
========== FILES ==========
File\Folder C:\Dokumente und Einstellungen\Compi\Lokale Einstellungen\Anwendungsdaten\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\n not found.
File\Folder C:\Dokumente und Einstellungen\Compi\Lokale Einstellungen\Anwendungsdaten\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\U not found.
File\Folder C:\Dokumente und Einstellungen\Compi\Lokale Einstellungen\Anwendungsdaten\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\L not found.
File\Folder C:\Dokumente und Einstellungen\Compi\Lokale Einstellungen\Anwendungsdaten\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\@ not found.
File\Folder C:\WINDOWS\Installer\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\n not found.
File\Folder C:\WINDOWS\Installer\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\u not found.
File\Folder C:\WINDOWS\Installer\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\l not found.
File\Folder C:\WINDOWS\Installer\{1343b2cc-805a-0459-8dc6-c7f2931a6a03}\@ not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 6884189 bytes
 
User: All Users
 
User: Compi
->Temp folder emptied: 1043947 bytes
->Temporary Internet Files folder emptied: 416455 bytes
->Java cache emptied: 1786319 bytes
->FireFox cache emptied: 61488382 bytes
->Flash cache emptied: 827 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2371771 bytes
%systemroot%\System32 .tmp files removed: 2951 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2545000 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 73,00 mb
 
 
[EMPTYFLASH]
 
User: Administrator
 
User: All Users
 
User: Compi
->Flash cache emptied: 0 bytes
 
User: Default User
 
User: LocalService
 
User: NetworkService
 
Total Flash Files Cleaned = 0,00 mb
 
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.59.1 log created on 08312012_164023

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

TR/ATRAPS.Gen und Combofix

Plagegeister aller Art und deren Bekämpfung: TR/ATRAPS.Gen und Combofix

TR/ATRAPS.Gen und Combofix

Ähnliche Themen: TR/ATRAPS.Gen und Combofix