| |
| |||||||
Log-Analyse und Auswertung: Google: unerwünschte WeiterleitungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
07.12.2011, 20:30
| #5 |
 |  Google: unerwünschte Weiterleitung Ups  Hoffentlich stimmts etz All processes killed ========== OTL ========== Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\Users\Andi\AppData\Local\b7ef4de3\X deleted successfully. File \Users\Andi\AppData\Local\b7ef4de3\X) -C:\Users\Andi\AppData\Local\b7ef4de3\X not found. ========== FILES ========== File\Folder C:\Users\Andi\AppData\Local\b7ef4de3 not found. ========== COMMANDS ========== [EMPTYFLASH] User: All Users User: Andi ->Flash cache emptied: 589 bytes User: Default User: Default User User: Eva ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0,00 mb [EMPTYTEMP] User: All Users User: Andi ->Temp folder emptied: 146107 bytes ->Temporary Internet Files folder emptied: 11829451 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Eva ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 4066 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 22968552 bytes RecycleBin emptied: 85635 bytes Total Files Cleaned = 33,00 mb OTL by OldTimer - Version 3.2.31.0 log created on 12072011_202101 Files\Folders moved on Reboot... C:\Users\Andi\AppData\Local\Temp\Low\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb moved successfully. C:\Users\Andi\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. C:\Users\Andi\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb moved successfully. C:\Users\Andi\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D12}.tlb moved successfully. File\Folder C:\Users\Andi\AppData\Local\Temp\~DF0ADCCAA4370DCE00.TMP not found! File\Folder C:\Users\Andi\AppData\Local\Temp\~DF32876079D9A3869A.TMP not found! File\Folder C:\Users\Andi\AppData\Local\Temp\~DFD2D5B323D1BF2793.TMP not found! File\Folder C:\Users\Andi\AppData\Local\Temp\~DFF81073F099AA307B.TMP not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QCAOURFF\ads[2].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QCAOURFF\ads[3].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QCAOURFF\blank[1].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\JTM11Y3S\cm[1].htm not found! C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\JTM11Y3S\index[1].htm moved successfully. File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\JTM11Y3S\lesen[1].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\JTM11Y3S\refresh_session[1].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\JTM11Y3S\site=webde&special=icons&category=mail&pp=D__93413&pa=22&pg=m[2].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\17SDY7YA\105881-google-unerwuenschte-weiterleitung[2].htm not found! C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\17SDY7YA\client[2].htm moved successfully. File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\17SDY7YA\frame[1].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\17SDY7YA\menu[1].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\17SDY7YA\NGHourCount[1].htm not found! File\Folder C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\17SDY7YA\y=mail&special=top&adsize=468x60&content=webde&pageview=ng_outer&adsize=728x90&pageview=loggedin&pageview=no_tprof&pg=m &pa=22&pp=D__93413&pn=3B&bd=0&Params[1].htm not found! C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully. C:\Users\Andi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully. Registry entries deleted on Reboot... |
| Themen zu Google: unerwünschte Weiterleitung |
| adobe, bho, bingbar, bonjour, browser, c:\windows\system32\rundll32.exe, document, firefox, format, frage, google, helper, hijack, home, igdpmd64.sys, intrusion prevention, langsam, launch, logfile, plug-in, problem, realtek, refresh, registry, required, rundll, safer networking, scan, security, security scan, senden, services.exe, software, suchmaschine, symantec, unerwünscht, usb, usb 3.0, webcheck, weiterleitung, wildtangent games, windows |
Baum-Darstellung