Backdoorporgramm Problem!

DDDAlexDDD

hat ein bisschen länger gedauert

All processes killed
========== OTL ==========
Service XDva343 stopped successfully!
Service XDva343 deleted successfully!
File C:\Windows\System32\XDva343.sys File not found not found.
Service oflpydin stopped successfully!
Service oflpydin deleted successfully!
File C:\Users\ALEXUN~1\AppData\Local\Temp\oflpydin.sys File not found not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\StartPageCache| /E : value set successfully!
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{EEE6C35D-6118-11DC-9C72-001320C79847} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}\ deleted successfully.
C:\Programme\SweetIM\Toolbars\Internet Explorer\mgHelper.dll moved successfully.
Prefs.js: "ICQ Search" removed from browser.search.defaultenginename
Prefs.js: "2Shared Customized Web Search" removed from browser.search.defaultthis.engineName
Prefs.js: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2447621&SearchSource=3&q={searchTerms}" removed from browser.search.defaulturl
Prefs.js: "moz2-ytff-ffpro" removed from browser.search.param.yahoo-fr
Prefs.js: "moz2-ytff-ffpro" removed from browser.search.param.yahoo-fr-cjkt
Prefs.js: "ICQ Search" removed from browser.search.selectedEngine
Prefs.js: "hxxp://search.icq.com/search/afe_results.php?ch_id=skins7&tb_ver=2.0.0.2&q=" removed from keyword.URL
Prefs.js: "data:text/plain,keyword.URL=hxxp://de.search.yahoo.com/search?ei=UTF-8&fr=ffpro&type=moz35awe&p=" removed from sweetim.toolbar.previous.keyword.URL
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\fukkuukkkk.exe deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SpybotSD TeaTimer deleted successfully.
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe moved successfully.
C:\Windows\System32\Process.exe moved successfully.
C:\Users\Alex und Corinna\Desktop\Pro Evolution Soccer 2010 Trainer.exe moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Alex und Corinna
->Temp folder emptied: 13822461 bytes
->Temporary Internet Files folder emptied: 61444113 bytes
->Java cache emptied: 118005911 bytes
->FireFox cache emptied: 98724885 bytes
->Google Chrome cache emptied: 14829996 bytes
->Flash cache emptied: 55242 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6125589 bytes
RecycleBin emptied: 1630 bytes

Total Files Cleaned = 299,00 mb


OTL by OldTimer - Version 3.2.12.0 log created on 09162010_151434

Files\Folders moved on Reboot...
File\Folder C:\Windows\temp\kls4627.tmp not found!

Registry entries deleted on Reboot...