Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert!

Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert!


Log-Analyse und Auswertung: Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert!

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 14.09.2010, 20:20   #5
Wurstbrod
 
Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert! - Standard

Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert!


hi,

hier nochmal der volle scan und OTL:

Code:
ATTFilter
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4610

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

14.09.2010 21:11:23
mbam-log-2010-09-14 (21-11-23).txt

Scan type: Full scan (C:\|E:\|)
Objects scanned: 221116
Time elapsed: 54 minute(s), 11 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 4
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 38
Files Infected: 284

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\funshion (Adware.Funshion) -> No action taken.
HKEY_CLASSES_ROOT\fsp (Adware.Funshion) -> No action taken.
HKEY_CLASSES_ROOT\Funshion Task (Adware.Funshion) -> No action taken.
HKEY_CURRENT_USER\Software\SogouExplorer (Adware.Sogou) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Documents and Settings\vvjj\Application Data\SogouExplorer (Adware.Sogou) -> No action taken.
C:\Program Files\Funshion Online (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\control (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\control (Adware.Funshion) -> Files: 473 -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\XPSP2Patch (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Programs\Funshion (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\Baiduflash (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\Baiduflash\subflash (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flash (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\historyTorrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\Media (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\Funshion\Media\??-001(100302) (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\Funshion\Media\??-002(100302) (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\seed (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\update (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\Baiduflash (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\Baiduflash\subflash (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\Cacheflash (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flash (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashStamp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\historyTorrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\media (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\media\???? (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\media\??? (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\media\?????? (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\media\????? (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\media\????(090518) (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\Seed (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update (Adware.Funshion) -> No action taken.

Files Infected:
C:\Documents and Settings\vvjj\Application Data\SogouExplorer\sogou_explorer_silent_2.0.0.898_2180.exe (Adware.Sogou) -> No action taken.
C:\Program Files\Funshion Online\Funshion\Uninstall.exe (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Application Data\SogouExplorer\se_setup.ini (Adware.Sogou) -> No action taken.
C:\Program Files\Funshion Online\Funshion\cook.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\coreavc.ax (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\CrashReport.exe (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\dbghelp.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\detector.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\drvc.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\Dump.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\Encrypt.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\fpsrv.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\fptassrv.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\Funshion-install.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\Funshion.exe (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\funshion.ini (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\FunshionGame2.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\funshionplugin2.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\FunshionService.exe (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\FunshionUpgrade.exe (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\Funshop2.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\GetMACAddress.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\LangResEnAmerican.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\nicdescr.dat (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\pncrt.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\pndx5032.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\quality.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\rmoc3260.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\RouterSetting.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\upnp.dll (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\Buffering.gif (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionCloseBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionMaxBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionMenuBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionMenuBtnEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionMinBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionNormalBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionText.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CaptionTextEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CheckBox_Box.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\CheckBox_Check.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\DiskWarnning.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\DragCorner.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarBack.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarBackEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarForward.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarForwardEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarHomePage.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarHomePageEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarRefresh.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\IeToolBarRefreshEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ListHeaderBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ListHeaderSplid.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcFrameBtm.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcFrameLeft.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcFrameRight.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcFrameTop.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcLeftBtmCorner.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcLeftTopCorner.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcRightBtmCorner.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\MainNcRightTopCorner.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PauseAdCloseBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PauseFlickerBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBarSplidRgn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBarVolumeBarBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBarVolumeBarBkgndRight.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBarVolumeBarBkgndRightSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBarVolumeBarBkgndSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBarVolumeBarThumb.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBarVolumeBarThumbSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBufferInfoWndBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBufferInfoWndLeft.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayBufferInfoWndRight.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnFullView.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnMute.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnMuteSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnNext.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnNextSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnNonTop.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnNormal.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnPause.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnPauseSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnPlay.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnPlayList.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnPlaySmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnPre.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnPreSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnSetting.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnSimple.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnStop.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnTop.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnVolume.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarBtnVolumeSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerBarSplid.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerHideBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayerTipCloseBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayFlickerBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayInfoBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayInfoBkgndSel.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayInfoBtmBar.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayInfoBtnMenu.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayInfoCurPlay.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayInfoHeaderBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayInfoTitleBk.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayListAddBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlayListRemove.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarBefore.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarBeforeSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarBkgndSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarDownload.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarDownloadSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarHead.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarHeadSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarThumb.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarThumbSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarTrail.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\PlaySplidBarTrailSmall.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\RadioBtnBox.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\RadioBtnPt.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\RpcLoading.gif (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\RpcStartDlgBk.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarDownArrow.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarDownArrowRound.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarUpArrow.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarUpArrowRound.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetBkgndHover.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetHead.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetHeadHover.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetMid.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetMidHover.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetTrail.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollBarVerWidgetTrailHover.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollLinkBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\ScrollLinkFrm.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\SettingDlgIcon.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\SplidBarBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\SplidBarMark.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\StatusBarBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\StatusBarLeft.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\StatusBarRight.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\StatusBarSplid.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskBarBtnIcon.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskBarBtnMenu.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskBarBtnOpenLcl.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskBarBtnShowPlayer.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskBarTipDownArrow.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\taskdown.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskListStatIcons.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskListStatSelIcon.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskManagerCloseBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskManagerCloseTxtBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnBarBk.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnBarItem.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnBarList.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnBarLScrollBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnBarRScrollBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnTitleBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnTitleLeft.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskMgnTitleRight.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\taskpause.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\taskplaying.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\taskstop.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskTabBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarDelete.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarDeleteEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarDownload.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarDownloadEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarPlay.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarRestore.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarRestoreEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarStop.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TaskToolBarStopEn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\taskupload.ico (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TextBtnBk.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TipBottomArrow.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TipRightArrow.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\TipTopArrow.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateBtmBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateBtmCloseBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateBtmIgoreBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateBtmUpdateBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateCapBkgnd.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateCapCloseBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateCaption.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateIconFail.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateIconInit.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\UpdateIconSuc.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\WebCloseBtn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\skin\WebCloseBtnRgn.bmp (Adware.Funshion) -> No action taken.
C:\Program Files\Funshion Online\Funshion\XPSP2Patch\evid4226-vc80-mt.exe (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Programs\Funshion\FunPromo Shop Corpora.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Programs\Funshion\Funshion Use Help.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Programs\Funshion\Funshion.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Programs\Funshion\Pop Game.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Programs\Funshion\Uninstall Funshion.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Programs\Funshion\Update History.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\fsdxdiag.txt (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\fstracert.txt (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\Baiduflash\fxPlayer2.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flash\FunshionAD20091027.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\00C759D9_1662_7AB4_A641_7537C39DF390.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\0AA17966_50E5_2DF6_B0FE_C023879D67A9.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\0D05AFA7_5DD7_F5B2_47AE_3B908F3D1938.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\1B8A2215_F102_DB0F_EF19_0D7BF3B6FB2A.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\28DCBEBA_2348_A0F3_6659_36EC2441A59F.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\354B5DD3_F7DD_1B34_E03B_D95725D652AE.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\5E25FA28_40FB_90E1_7122_072F36C8746F.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\9A948496_AB75_59AF_F6B8_4A3E03C1AB6A.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\AD9A6BC6_DACD_0E98_A20B_56F85B1256FD.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\BB6DD6A7_1DD5_901B_7905_9746F5FECA1E.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\C58D19A6_4C0D_7971_2451_D3FA4B146FD9.flv (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\flashNew\D30D5D77_97D0_A369_004D_31EEA289C7AE.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\Funshion\historyTorrent\??-001(100302).fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\Funshion\historyTorrent\??-002(100302).fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\ini\httpfile.ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\ini\temp_config.ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\update\AdLinkParamFile.fax (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\update\ad_define.fai (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\update\ad_material.fax (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\update\flashParam.txt (Adware.Funshion) -> No action taken.
C:\Documents and Settings\Superjinchi\funshion\update\FunshionInstall2.1.0.20Beta.exe.torrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\flash-1.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\fsdxdiag.txt (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\fstracert.txt (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\install.ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\JINGE-KONSTANZ_info.ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\Baiduflash\fxPlayer2.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\Cacheflash\blankFs.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\Cacheflash\donghuanew_18.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flash\FunshionAD20100531.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\0F78EAFE_E0B6_3A5F_88C3_8F09D2F32E07.date1283460065.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\136FBFEE_570B_2B48_3E9C_7C8597F43FDB.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\338E3300_675D_E0D7_3FDB_7FBDEFCE3AF2.date1283460065.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\40931B43_81A1_D499_AF89_8AED9251DE70.date1283881489.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\411A37FA_AF50_0B5C_C95F_EA44F508C7BB.date1283460065.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\4261ECEC_54E6_E46D_3642_1156EDB81796.date1282560456.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\53A562F2_FB4E_C3A7_AB7F_193C5DA34970.date1282560456.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\666D662A_830F_D2CE_94AD_6D4EE0261CE6.date1282560456.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\6EDDBF99_2AFF_DFB6_18FC_97D682A089E3.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\7411FADC_ABBB_EAB7_FAAC_6A0E125B151D.date1282560456.flv (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\806FD83C_FD3D_C821_E901_4573CB4AC56C.date1282560456.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\87B0D1D6_95D4_3E78_6BD5_A2FE29753A3A.date1282560456.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\8F692FFE_255D_50BF_6EAA_CEBEAED415EC.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\95FE6CF0_D4FA_A82F_408A_1B6D7B6EA36F.date1283460064.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\9695251C_846F_628E_F7B2_9913BE1C982F.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\B7215BB9_AB64_8F99_7F3C_FCD6D83FB755.date1283460064.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\B980DFA5_9056_35DE_367B_F8DBE737729E.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\CCE75FFB_60CD_90E2_D0E3_4B9575DB1BD8.date1282560456.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\cache\flashNew\FA1E2857_5133_3DF0_2143_9FB20529DBF8.swf (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\historyTorrent\????????-MP4.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\historyTorrent\???2-MP4.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\historyTorrent\???3-MP4.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Funshion\historyTorrent\????3-MP4.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\ini\httpfile.ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\ini\temp_config.ini (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\Seed\12771583_1235712901_130.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\Seed\1451101_1242537830_767.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\Seed\17218048_1263967110_66.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\Seed\18524595_1273559130_737.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\Seed\2111662_1253939104_721.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\Seed\4629932_1198809482_969.fsp (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\AdLinkParamFile.fax (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\ad_define.fai (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\ad_material.fax (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\flashParam.txt (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\FunshionInstall2.0.0.29Beta.exe.torrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\FunshionInstall2.1.0.20Beta.exe.torrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\FunshionInstall2.1.0.26Beta.exe.torrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\FunshionInstall2.1.0.27Beta.exe.torrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\FunshionInstall2.1.0.28.exe.torrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\FunshionInstall2.2.0.17.exe.fc! (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\FunshionInstall2.2.0.17.exe.torrent (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\funshion\update\localad.fax (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Desktop\Funshion.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\Funshion.lnk (Adware.Funshion) -> No action taken.
C:\Documents and Settings\All Users\Start Menu\Funshion.lnk (Adware.Funshion) -> No action taken.
C:\WINDOWS\system32\funshion.ini (Adware.Funshion) -> No action taken.
OTL:
OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 14.09.2010 21:14:06 - Run 2
OTL by OldTimer - Version 3.2.12.0     Folder = C:\Documents and Settings\vvjj\My Documents
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000407 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy
 
953,00 Mb Total Physical Memory | 296,00 Mb Available Physical Memory | 31,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 72,00% Paging File free
Paging file location(s): C:\pagefile.sys 1428 2856 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 1,42 Gb Free Space | 7,27% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 129,51 Gb Total Space | 28,50 Gb Free Space | 22,01% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: XXXXXKONSTANZ
Current User Name: vvjj
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
========== Processes (SafeList) ==========
 
PRC - C:\Documents and Settings\vvjj\My Documents\OTL.exe (OldTimer Tools)
PRC - C:\Documents and Settings\vvjj\Local Settings\temp\RtkBtMnt.exe (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Program Files\Java\jre6\bin\jucheck.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files\Citrix\ICA Client\ssonsvr.exe (Citrix Systems, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe (PostgreSQL Global Development Group)
PRC - C:\Program Files\PostgreSQL\8.3\bin\postgres.exe (PostgreSQL Global Development Group)
PRC - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)
PRC - C:\WINDOWS\system32\BRSVC01A.EXE (brother Industries Ltd)
PRC - C:\WINDOWS\system32\BRSS01A.EXE (brother Industries Ltd)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Documents and Settings\vvjj\My Documents\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV - (HidServ) -- C:\WINDOWS\System32\hidserv.dll File not found
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (ASKUpgrade) -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe ()
SRV - (pgsql-8.3) -- C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe (PostgreSQL Global Development Group)
SRV - (o2flash) -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)
SRV - (Brother XP spl Service) -- C:\WINDOWS\system32\BRSVC01A.EXE (brother Industries Ltd)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (sptd) -- C:\WINDOWS\system32\drivers\sptd.sys (Duplex Secure Ltd.)
DRV - (MBAMSwissArmy) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys (Malwarebytes Corporation)
DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (epmntdrv) -- C:\WINDOWS\system32\epmntdrv.sys ()
DRV - (EuGdiDrv) -- C:\WINDOWS\system32\EuGdiDrv.sys ()
DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira GmbH)
DRV - (USB28xxOEM) -- C:\WINDOWS\system32\drivers\emOEM.sys (eMPIA Technology, Inc.)
DRV - (USB28xxBGA) -- C:\WINDOWS\system32\drivers\emBDA.sys (eMPIA Technology, Inc.)
DRV - (avgio) -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (O2SDRDR) -- C:\WINDOWS\system32\drivers\o2sd.sys (O2Micro )
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (O2MDRDR) -- C:\WINDOWS\system32\drivers\o2media.sys (O2Micro )
DRV - (IntcHdmiAddService) Intel(R) -- C:\WINDOWS\system32\drivers\IntcHdmi.sys (Intel(R) Corporation)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (NwlnkIpx) -- C:\WINDOWS\system32\drivers\nwlnkipx.sys (Microsoft Corporation)
DRV - (NwlnkNb) -- C:\WINDOWS\system32\drivers\nwlnknb.sys (Microsoft Corporation)
DRV - (NwlnkSpx) -- C:\WINDOWS\system32\drivers\nwlnkspx.sys (Microsoft Corporation)
DRV - (MPE) -- C:\WINDOWS\system32\drivers\MPE.sys (Microsoft Corporation)
DRV - (usbaudio) USB Audio Driver (WDM) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (AR5416) -- C:\WINDOWS\system32\drivers\athw.sys (Atheros Communications, Inc.)
DRV - (b57w2k) -- C:\WINDOWS\system32\drivers\b57xp32.sys (Broadcom Corporation)
DRV - (PQNTDrv) -- C:\WINDOWS\System32\drivers\PQNTDRV.sys (PowerQuest Corporation)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13925&gct=&gc=1&q=
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ask.com/?o=13928&l=dis
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {7b13ec3e-999a-4b70-b9cb-2617b8323822}:2.5.6.0
FF - prefs.js..network.proxy.backup.ftp: "128.151.65.101"
FF - prefs.js..network.proxy.backup.ftp_port: 3128
FF - prefs.js..network.proxy.backup.gopher: "128.151.65.101"
FF - prefs.js..network.proxy.backup.gopher_port: 3128
FF - prefs.js..network.proxy.backup.socks: "128.151.65.101"
FF - prefs.js..network.proxy.backup.socks_port: 3128
FF - prefs.js..network.proxy.backup.ssl: "128.151.65.101"
FF - prefs.js..network.proxy.backup.ssl_port: 3128
FF - prefs.js..network.proxy.ftp: "128.151.65.101"
FF - prefs.js..network.proxy.ftp_port: 3128
FF - prefs.js..network.proxy.gopher: "128.151.65.101"
FF - prefs.js..network.proxy.gopher_port: 3128
FF - prefs.js..network.proxy.http: "128.151.65.101"
FF - prefs.js..network.proxy.http_port: 3128
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "128.151.65.101"
FF - prefs.js..network.proxy.socks_port: 3128
FF - prefs.js..network.proxy.ssl: "128.151.65.101"
FF - prefs.js..network.proxy.ssl_port: 3128
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.09.09 19:34:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.09.09 19:34:04 | 000,000,000 | ---D | M]
 
[2009.06.11 11:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\vvjj\Application Data\Mozilla\Extensions
[2009.06.11 11:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\vvjj\Application Data\Mozilla\Firefox\extensions
[2009.06.11 11:00:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\vvjj\Application Data\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2010.09.13 22:30:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\vvjj\Application Data\Mozilla\Firefox\Profiles\opx683lu.default\extensions
[2009.09.02 13:59:34 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\vvjj\Application Data\Mozilla\Firefox\Profiles\opx683lu.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010.02.26 08:10:58 | 000,000,000 | ---D | M] (Zynga Toolbar) -- C:\Documents and Settings\vvjj\Application Data\Mozilla\Firefox\Profiles\opx683lu.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2010.09.13 22:30:47 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.08.29 09:08:05 | 000,001,392 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.08.29 09:08:05 | 000,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.08.29 09:08:05 | 000,006,805 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.08.29 09:08:05 | 000,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.08.29 09:08:06 | 000,001,105 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2010.09.03 18:03:39 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKCU\..\Toolbar\ShellBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\InstallShield\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [Stormtray] C:\Program Files\StormII\Stormtray.exe File not found
O4 - HKLM..\Run: [UpdatePPShortCut] C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: 添加到QQ表情 - C:\Program Files\Tencent\QQ\Bin\AddEmotion.htm ()
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe ()
O9 - Extra 'Tools' menuitem : Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe ()
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe ()
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {3D8F74EE-8692-4F8F-B8D2-7522E732519E} hxxp://game-web.qq.com/client/QQGame2.cab (WebActivater Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {A4110378-789B-455F-AE86-3A1BFC402853} hxxp://zone.msn.com/bingame/zpagames/zpa_shvl.cab55579.cab (ZPA_SHVL Object)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} hxxp://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab (MSN Games - Installer)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\vvjj\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\vvjj\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.05.19 18:54:47 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010.09.14 21:13:31 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\vvjj\My Documents\OTL.exe
[2010.09.14 21:11:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\vvjj\Desktop\15
[2010.09.13 22:52:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\vvjj\Application Data\Malwarebytes
[2010.09.13 22:52:09 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.09.13 22:52:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.09.13 22:52:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.09.13 22:45:12 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.09.13 22:44:56 | 006,153,648 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\vvjj\My Documents\mbam-setup.exe
[2010.09.05 21:19:57 | 000,000,000 | ---D | C] -- C:\Program Files\Flip Video
[2010.09.05 21:04:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Flip Video
[2010.09.05 20:49:10 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010.09.03 20:00:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\vvjj\Application Data\vlc
[2010.09.03 19:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010.08.30 21:52:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\rplsp
[2010.08.30 21:26:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\vvjj\Desktop\mplayerc_20100214
[2010.08.30 20:47:21 | 000,000,000 | ---D | C] -- C:\Program Files\eMule
[2010.08.29 09:14:26 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF7975.exe
[2010.08.29 09:10:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\Documents and Settings\vvjj\My Documents\*.tmp files -> C:\Documents and Settings\vvjj\My Documents\*.tmp -> ]
[2 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2010.09.14 21:13:32 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\vvjj\My Documents\OTL.exe
[2010.09.14 18:58:09 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.09.14 18:58:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.09.14 18:57:23 | 004,718,592 | -H-- | M] () -- C:\Documents and Settings\vvjj\NTUSER.DAT
[2010.09.14 18:57:23 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\vvjj\ntuser.ini
[2010.09.14 08:24:14 | 000,109,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.09.13 22:52:12 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.13 22:44:56 | 006,153,648 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\vvjj\My Documents\mbam-setup.exe
[2010.09.13 22:14:05 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.09.13 18:31:06 | 000,050,176 | ---- | M] () -- C:\Documents and Settings\vvjj\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.09.12 21:15:03 | 000,046,592 | -H-- | M] () -- C:\WINDOWS\System32\attrdsvr.dll
[2010.09.11 21:47:39 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.09.07 20:46:13 | 000,003,748 | ---- | M] () -- C:\Documents and Settings\vvjj\funshion.ini
[2010.09.05 16:00:00 | 000,000,346 | ---- | M] () -- C:\WINDOWS\tasks\SogouImeMgr.job
[2010.09.03 20:00:25 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010.09.03 18:03:39 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010.08.30 21:49:14 | 000,001,562 | ---- | M] () -- C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\Ãâ·ÑÓ°ÊÓ.lnk
[2010.08.30 21:49:14 | 000,001,544 | ---- | M] () -- C:\Documents and Settings\vvjj\Desktop\Ãâ·ÑÓ°ÊÓ.lnk
[2010.08.30 21:49:14 | 000,001,090 | ---- | M] () -- C:\Documents and Settings\vvjj\Desktop\±©·çÓÎÏ·.lnk
[2010.08.30 21:49:14 | 000,001,090 | ---- | M] () -- C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\±©·çÓÎÏ·.lnk
[2010.08.30 21:49:14 | 000,000,672 | ---- | M] () -- C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\±©·çÓ°Òô.lnk
[2010.08.30 21:49:14 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\vvjj\Desktop\±©·çÓ°Òô.lnk
[2010.08.30 20:46:45 | 003,389,035 | ---- | M] () -- C:\Documents and Settings\vvjj\My Documents\eMule0.50a-Installer.exe
[2010.08.30 20:44:24 | 004,973,610 | ---- | M] () -- C:\Documents and Settings\vvjj\My Documents\emule050a.exe
[2010.08.29 09:13:55 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF7975.exe
[2010.08.28 22:25:21 | 000,000,005 | ---- | M] () -- C:\zrpt.xml
[2010.08.23 09:14:59 | 000,002,012 | ---- | M] () -- C:\Documents and Settings\vvjj\My Documents\launch.ica
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\Documents and Settings\vvjj\My Documents\*.tmp files -> C:\Documents and Settings\vvjj\My Documents\*.tmp -> ]
[2 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2010.09.13 22:52:12 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.09.12 21:15:03 | 000,046,592 | -H-- | C] () -- C:\WINDOWS\System32\attrdsvr.dll
[2010.09.03 20:00:25 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk
[2010.09.01 22:21:41 | 000,011,946 | ---- | C] () -- C:\Documents and Settings\vvjj\hs_err_pid3116.log
[2010.08.30 21:49:14 | 000,001,544 | ---- | C] () -- C:\Documents and Settings\vvjj\Desktop\Ãâ·ÑÓ°ÊÓ.lnk
[2010.08.30 21:49:14 | 000,001,090 | ---- | C] () -- C:\Documents and Settings\vvjj\Desktop\±©·çÓÎÏ·.lnk
[2010.08.30 20:46:44 | 003,389,035 | ---- | C] () -- C:\Documents and Settings\vvjj\My Documents\eMule0.50a-Installer.exe
[2010.08.30 20:44:15 | 004,973,610 | ---- | C] () -- C:\Documents and Settings\vvjj\My Documents\emule050a.exe
[2010.08.28 22:24:58 | 000,000,005 | ---- | C] () -- C:\zrpt.xml
[2010.08.23 09:14:59 | 000,002,012 | ---- | C] () -- C:\Documents and Settings\vvjj\My Documents\launch.ica
[2010.07.11 14:41:43 | 000,000,915 | ---- | C] () -- C:\Documents and Settings\vvjj\Application Data\coreavc.ini
[2010.07.08 20:45:38 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\psfind.dll
[2010.06.26 23:20:19 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2010.06.23 18:53:57 | 000,066,936 | -HS- | C] () -- C:\WINDOWS\dlinfo_1.drv
[2010.06.20 22:37:25 | 000,066,936 | -HS- | C] () -- C:\WINDOWS\dlinfo_0.drv
[2010.05.06 21:35:30 | 000,025,713 | ---- | C] () -- C:\WINDOWS\CSTBox.INI
[2010.01.20 21:59:28 | 000,001,275 | ---- | C] () -- C:\WINDOWS\TVEpaDrv.ini
[2010.01.20 21:59:00 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2010.01.06 23:27:52 | 000,000,110 | ---- | C] () -- C:\WINDOWS\GMouse.ini
[2009.08.21 23:39:43 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2009.08.21 23:39:43 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2009.08.21 23:39:43 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2009.07.23 21:43:38 | 000,050,176 | ---- | C] () -- C:\Documents and Settings\vvjj\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.11 23:42:14 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009.06.11 23:42:14 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009.06.01 22:56:16 | 000,000,040 | ---- | C] () -- C:\WINDOWS\opt_1430.ini
[2009.06.01 22:54:46 | 000,000,030 | ---- | C] () -- C:\WINDOWS\System32\brss01a.ini
[2009.06.01 22:54:45 | 000,000,462 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2009.06.01 22:54:45 | 000,000,026 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI
[2009.05.25 20:04:54 | 000,000,028 | ---- | C] () -- C:\WINDOWS\funshionplugin2.INI
[2009.05.25 18:54:04 | 000,344,958 | R--- | C] () -- C:\WINDOWS\System32\imjp81k.dll
[2009.05.19 19:46:18 | 000,000,363 | ---- | C] () -- C:\Documents and Settings\vvjj\Local Settings\Application Data\postgresinstall.bat
[2009.05.19 19:01:59 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4957.dll
[2009.04.09 04:34:40 | 000,001,164 | ---- | C] () -- C:\WINDOWS\System32\funshion.ini
 
========== Files - Unicode (All) ==========
[2009.12.01 23:52:42 | 000,000,632 | ---- | M] ()(C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\????.lnk) -- C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\暴风影音.lnk
[2009.12.01 23:52:42 | 000,000,632 | ---- | C] ()(C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\????.lnk) -- C:\Documents and Settings\vvjj\Application Data\Microsoft\Internet Explorer\Quick Launch\暴风影音.lnk
[2009.12.01 23:52:42 | 000,000,614 | ---- | M] ()(C:\Documents and Settings\vvjj\Desktop\????.lnk) -- C:\Documents and Settings\vvjj\Desktop\暴风影音.lnk
[2009.12.01 23:52:42 | 000,000,614 | ---- | C] ()(C:\Documents and Settings\vvjj\Desktop\????.lnk) -- C:\Documents and Settings\vvjj\Desktop\暴风影音.lnk
< End of report >
--- --- ---
 

Themen zu Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert!
anfang, antivir, antivir guard, ask toolbar, avgnt, avira, bho, browser, combofix, components, desktop, firefox, gereinigt, google, helper, hijack, hijackthis, installation, internet explorer, jusched.exe, malware, mozilla, notepad.exe, phishing, plug-in, realtek, richtlinie, scan, server, sigcheck, software, sptd.sys, system, tencent, trojaner, werbesites, windows, windows xp


« Trojaner "Winserv.exe" eingefangen | JAVA/Agent.M.1 im Java Cache »


Ähnliche Themen: Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert!


  1. Windows 7: MWAB findet immer wieder PUP.Optional.Shopperz.A
    Log-Analyse und Auswertung - 11.02.2015 (43)
  2. Windows 7: Rechner sehr langsam, MBAM findet immer wieder verschiedene Trojaner wie PUP.Optional.SystemSpeedup, Mindspark, PriceGong etc.
    Log-Analyse und Auswertung - 07.09.2014 (10)
  3. Windows XP: Internet Explorer öffnet sich immer wieder selbstständig
    Log-Analyse und Auswertung - 29.08.2013 (7)
  4. Windows 7: Malwarebytes findet immer wieder PUP.Optional.Conduit.A
    Plagegeister aller Art und deren Bekämpfung - 21.08.2013 (9)
  5. Combofix händt sich immer wieder auf
    Plagegeister aller Art und deren Bekämpfung - 31.03.2013 (2)
  6. Avira findet versteckte Datei und immer wieder Trojaner TR/Rogue.kdv.
    Log-Analyse und Auswertung - 16.07.2012 (28)
  7. Windows Explorer stürzt bei pc start immer wieder ab und lädt sich neu
    Plagegeister aller Art und deren Bekämpfung - 12.04.2012 (1)
  8. Windows Explorer funktioniert nicht mehr / Startet immer wieder eu
    Log-Analyse und Auswertung - 07.03.2012 (28)
  9. Mailware findet immer wieder trojaner
    Log-Analyse und Auswertung - 02.03.2012 (19)
  10. Combofix - immer wieder Rootkit!
    Mülltonne - 13.12.2010 (1)
  11. Bitte um HiJack-Logfile Auswertung - AntiVir findet Trojaner der immer wieder kommt
    Log-Analyse und Auswertung - 23.07.2010 (1)
  12. Explorer Startet nicht und Spybot findet Right Media immer wieder
    Plagegeister aller Art und deren Bekämpfung - 24.05.2010 (23)
  13. Hkey/AGprotect kommt immer wieder (Combofix-log)
    Plagegeister aller Art und deren Bekämpfung - 29.04.2010 (2)
  14. Windows Explorer startet unter Vista immer wieder neu
    Alles rund um Windows - 23.03.2010 (1)
  15. Trotz system neu installation immer wieder WINDOWS explorer absturz
    Alles rund um Windows - 27.11.2009 (7)
  16. AntiVir Personal findet Trojaner immer wieder neu!
    Log-Analyse und Auswertung - 15.04.2009 (1)
  17. Antispy findet immer wieder IstBar Trojaner
    Plagegeister aller Art und deren Bekämpfung - 30.09.2005 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert! - hi, hier nochmal der volle scan und OTL: Code: Alles auswählen Aufklappen ATTFilter Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 4610 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 14.09.2010 21:11:23 - Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert!...
Archiv
Du betrachtest: Trojaner im Computer. Combofix findet immer wieder: c:\windows\explorer.exe . . . ist infiziert! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131