Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Google verlinkt mich falsch

Google verlinkt mich falsch


Plagegeister aller Art und deren Bekämpfung: Google verlinkt mich falsch

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 2 von 2 1 2
Alt 06.04.2011, 13:52   #16
Kronski
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


hier ist die datei:

PHP-Code:
2011/04/06 14:50:40.0276 2808    TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/04/06 14:50:40.0728 2808    ================================================================================
2011/04/06 14:50:40.0728 2808    SystemInfo:
2011/04/06 14:50:40.0728 2808    
2011/04/06 14:50:40.0728 2808    OS Version6.1.7601 ServicePack1.0
2011/04/06 14:50:40.0728 2808    Product typeWorkstation
2011/04/06 14:50:40.0728 2808    ComputerNameKORBINIAN-PC
2011/04/06 14:50:40.0728 2808    UserNameKobi
2011/04/06 14:50:40.0728 2808    Windows directoryC:\Windows
2011/04/06 14:50:40.0728 2808    System windows directoryC:\Windows
2011/04/06 14:50:40.0728 2808    Processor architectureIntel x86
2011/04/06 14:50:40.0728 2808    Number of processors4
2011/04/06 14:50:40.0728 2808    Page size0x1000
2011/04/06 14:50:40.0728 2808    Boot typeNormal boot
2011/04/06 14:50:40.0728 2808    ================================================================================
2011/04/06 14:50:40.0994 2808    Initialize success
2011/04/06 14:50:44.0909 3632    ================================================================================
2011/04/06 14:50:44.0909 3632    Scan started
2011/04/06 14:50:44.0909 3632    ModeManual
2011/04/06 14:50:44.0909 3632    ================================================================================
2011/04/06 14:50:46.0828 3632    1394ohci        (1b133875b8aa8ac48969bd3458afe9f5C:\Windows\system32\drivers\1394ohci.sys
2011/04/06 14:50:46.0953 3632    acedrv09        (bd4e8c841716d5f2804ce000cfe61524C:\Windows\system32\drivers\acedrv09.sys
2011/04/06 14:50:47.0078 3632    acedrv11        (a6fe70357a68ad1e279cd1012419cce6C:\Windows\system32\drivers\acedrv11.sys
2011/04/06 14:50:47.0187 3632    acehlp09        (7b19e528f2f40524e2c40f754a571eb8C:\Windows\system32\drivers\acehlp09.sys
2011/04/06 14:50:47.0312 3632    ACPI            (cea80c80bed809aa0da6febc04733349C:\Windows\system32\drivers\ACPI.sys
2011/04/06 14:50:47.0421 3632    AcpiPmi         (1efbc664abff416d1d07db115dcb264fC:\Windows\system32\drivers\acpipmi.sys
2011/04/06 14:50:47.0546 3632    adp94xx         (21e785ebd7dc90a06391141aac7892fbC:\Windows\system32\DRIVERS\adp94xx.sys
2011/04/06 14:50:47.0686 3632    adpahci         (0c676bc278d5b59ff5abd57bbe9123f2C:\Windows\system32\DRIVERS\adpahci.sys
2011/04/06 14:50:47.0795 3632    adpu320         (7c7b5ee4b7b822ec85321fe23a27db33C:\Windows\system32\DRIVERS\adpu320.sys
2011/04/06 14:50:47.0967 3632    AFD             (1151fd4fb0216cfed887bfde29ebd516C:\Windows\system32\drivers\afd.sys
2011/04/06 14:50:48.0014 3632    agp440          (507812c3054c21cef746b6ee3d04dd6eC:\Windows\system32\drivers\agp440.sys
2011/04/06 14:50:48.0060 3632    aic78xx         (8b30250d573a8f6b4bd23195160d8707C:\Windows\system32\DRIVERS\djsvs.sys
2011/04/06 14:50:48.0138 3632    aliide          (0d40bcf52ea90fc7df2aeab6503dea44C:\Windows\system32\drivers\aliide.sys
2011/04/06 14:50:48.0170 3632    amdagp          (3c6600a0696e90a463771c7422e23ab5C:\Windows\system32\drivers\amdagp.sys
2011/04/06 14:50:48.0185 3632    amdide          (cd5914170297126b6266860198d1d4f0C:\Windows\system32\drivers\amdide.sys
2011/04/06 14:50:48.0232 3632    AmdK8           (00dda200d71bac534bf56a9db5dfd666C:\Windows\system32\DRIVERS\amdk8.sys
2011/04/06 14:50:48.0248 3632    AmdPPM          (3cbf30f5370fda40dd3e87df38ea53b6C:\Windows\system32\DRIVERS\amdppm.sys
2011/04/06 14:50:48.0294 3632    amdsata         (e7f4d42d8076ec60e21715cd11743a0dC:\Windows\system32\drivers\amdsata.sys
2011/04/06 14:50:48.0326 3632    amdsbs          (ea43af0c423ff267355f74e7a53bdabaC:\Windows\system32\DRIVERS\amdsbs.sys
2011/04/06 14:50:48.0341 3632    amdxata         (146459d2b08bfdcbfa856d9947043c81C:\Windows\system32\drivers\amdxata.sys
2011/04/06 14:50:48.0419 3632    AppID           (aea177f783e20150ace5383ee368da19C:\Windows\system32\drivers\appid.sys
2011/04/06 14:50:48.0466 3632    arc             (2932004f49677bd84dbc72edb754ffb3C:\Windows\system32\DRIVERS\arc.sys
2011/04/06 14:50:48.0482 3632    arcsas          (5d6f36c46fd283ae1b57bd2e9feb0bc7C:\Windows\system32\DRIVERS\arcsas.sys
2011/04/06 14:50:48.0513 3632    AsyncMac        (add2ade1c2b285ab8378d2daaf991481C:\Windows\system32\DRIVERS\asyncmac.sys
2011/04/06 14:50:48.0544 3632    atapi           (338c86357871c167a96ab976519bf59eC:\Windows\system32\drivers\atapi.sys
2011/04/06 14:50:48.0591 3632    atksgt          (f0d933b42cd0594048e4d5200ae9e417C:\Windows\system32\DRIVERS\atksgt.sys
2011/04/06 14:50:48.0638 3632    avgntflt        (47b879406246ffdced59e18d331a0e7dC:\Windows\system32\DRIVERS\avgntflt.sys
2011/04/06 14:50:48.0669 3632    avipbb          (5fedef54757b34fb611b9ec8fb399364C:\Windows\system32\DRIVERS\avipbb.sys
2011/04/06 14:50:48.0700 3632    b06bdrv         (1a231abec60fd316ec54c66715543cecC:\Windows\system32\DRIVERS\bxvbdx.sys
2011/04/06 14:50:48.0731 3632    b57nd60x        (bd8869eb9cde6bbe4508d869929869eeC:\Windows\system32\DRIVERS\b57nd60x.sys
2011/04/06 14:50:48.0762 3632    Beep            (505506526a9d467307b3c393dedaf858C:\Windows\system32\drivers\Beep.sys
2011/04/06 14:50:48.0794 3632    blbdrive        (2287078ed48fcfc477b05b20cf38f36fC:\Windows\system32\DRIVERS\blbdrive.sys
2011/04/06 14:50:48.0809 3632    bowser          (fcafaef6798d7b51ff029f99a9898961C:\Windows\system32\DRIVERS\bowser.sys
2011/04/06 14:50:48.0840 3632    BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/04/06 14:50:48.0856 3632    BrFiltUp        (56801ad62213a41f6497f96dee83755aC:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/04/06 14:50:48.0887 3632    Brserid         (845b8ce732e67f3b4133164868c666eaC:\Windows\System32\Drivers\Brserid.sys
2011/04/06 14:50:48.0903 3632    BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6bC:\Windows\System32\Drivers\BrSerWdm.sys
2011/04/06 14:50:48.0918 3632    BrUsbMdm        (bd456606156ba17e60a04e18016ae54bC:\Windows\System32\Drivers\BrUsbMdm.sys
2011/04/06 14:50:48.0934 3632    BrUsbSer        (af72ed54503f717a43268b3cc5faec2eC:\Windows\System32\Drivers\BrUsbSer.sys
2011/04/06 14:50:48.0950 3632    BTHMODEM        (ed3df7c56ce0084eb2034432fc56565aC:\Windows\system32\DRIVERS\bthmodem.sys
2011/04/06 14:50:49.0090 3632    cdfs            (77ea11b065e0a8ab902d78145ca51e10C:\Windows\system32\DRIVERS\cdfs.sys
2011/04/06 14:50:49.0137 3632    cdrom           (be167ed0fdb9c1fa1133953c18d5a6c9C:\Windows\system32\drivers\cdrom.sys
2011/04/06 14:50:49.0184 3632    circlass        (3fe3fe94a34df6fb06e6418d0f6a0060C:\Windows\system32\DRIVERS\circlass.sys
2011/04/06 14:50:49.0230 3632    CLFS            (635181e0e9bbf16871bf5380d71db02dC:\Windows\system32\CLFS.sys
2011/04/06 14:50:49.0277 3632    CmBatt          (dea805815e587dad1dd2c502220b5616C:\Windows\system32\DRIVERS\CmBatt.sys
2011/04/06 14:50:49.0308 3632    cmdide          (c537b1db64d495b9b4717b4d6d9edbf2C:\Windows\system32\drivers\cmdide.sys
2011/04/06 14:50:49.0355 3632    CNG             (1b675691ed940766149c93e8f4488d68C:\Windows\system32\Drivers\cng.sys
2011/04/06 14:50:49.0371 3632    Compbatt        (a6023d3823c37043986713f118a89beeC:\Windows\system32\DRIVERS\compbatt.sys
2011/04/06 14:50:49.0402 3632    CompositeBus    (cbe8c58a8579cfe5fccf809e6f114e89C:\Windows\system32\drivers\CompositeBus.sys
2011/04/06 14:50:49.0433 3632    crcdisk         (2c4ebcfc84a9b44f209dff6c6e6c61d1C:\Windows\system32\DRIVERS\crcdisk.sys
2011/04/06 14:50:49.0496 3632    dc3d            (484ffbcec4091ff617494b6b0cb04eb3C:\Windows\system32\DRIVERS\dc3d.sys
2011/04/06 14:50:49.0542 3632    DfsC            (f024449c97ec1e464aaffda18593db88C:\Windows\system32\Drivers\dfsc.sys
2011/04/06 14:50:49.0574 3632    discache        (1a050b0274bfb3890703d490f330c0daC:\Windows\system32\drivers\discache.sys
2011/04/06 14:50:49.0605 3632    Disk            (565003f326f99802e68ca78f2a68e9ffC:\Windows\system32\DRIVERS\disk.sys
2011/04/06 14:50:49.0683 3632    drmkaud         (b918e7c5f9bf77202f89e1a9539f2eb4C:\Windows\system32\drivers\drmkaud.sys
2011/04/06 14:50:49.0745 3632    DXGKrnl         (23f5d28378a160352ba8f817bd8c71cbC:\Windows\System32\drivers\dxgkrnl.sys
2011/04/06 14:50:49.0808 3632    ebdrv           (024e1b5cac09731e4d868e64dbfb4ab0C:\Windows\system32\DRIVERS\evbdx.sys
2011/04/06 14:50:49.0886 3632    elxstor         (0ed67910c8c326796faa00b2bf6d9d3cC:\Windows\system32\DRIVERS\elxstor.sys
2011/04/06 14:50:49.0932 3632    ErrDev          (8fc3208352dd3912c94367a206ab3f11C:\Windows\system32\drivers\errdev.sys
2011/04/06 14:50:49.0979 3632    exfat           (2dc9108d74081149cc8b651d3a26207fC:\Windows\system32\drivers\exfat.sys
2011/04/06 14:50:49.0995 3632    fastfat         (7e0ab74553476622fb6ae36f73d97d35C:\Windows\system32\drivers\fastfat.sys
2011/04/06 14:50:50.0026 3632    fdc             (e817a017f82df2a1f8cfdbda29388b29C:\Windows\system32\DRIVERS\fdc.sys
2011/04/06 14:50:50.0057 3632    FileInfo        (6cf00369c97f3cf563be99be983d13d8C:\Windows\system32\drivers\fileinfo.sys
2011/04/06 14:50:50.0073 3632    Filetrace       (42c51dc94c91da21cb9196eb64c45db9C:\Windows\system32\drivers\filetrace.sys
2011/04/06 14:50:50.0104 3632    flpydisk        (87907aa70cb3c56600f1c2fb8841579bC:\Windows\system32\DRIVERS\flpydisk.sys
2011/04/06 14:50:50.0120 3632    FltMgr          (7520ec808e0c35e0ee6f841294316653C:\Windows\system32\drivers\fltmgr.sys
2011/04/06 14:50:50.0166 3632    FsDepends       (1a16b57943853e598cff37fe2b8cbf1dC:\Windows\system32\drivers\FsDepends.sys
2011/04/06 14:50:50.0182 3632    Fs_Rec          (a574b4360e438977038aae4bf60d79a2C:\Windows\system32\drivers\Fs_Rec.sys
2011/04/06 14:50:50.0244 3632    fvevol          (8a73e79089b282100b9393b644cb853bC:\Windows\system32\DRIVERS\fvevol.sys
2011/04/06 14:50:50.0276 3632    gagp30kx        (65ee0c7a58b65e74ae05637418153938C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/04/06 14:50:50.0322 3632    GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564eC:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/04/06 14:50:50.0369 3632    hcw85cir        (c44e3c2bab6837db337ddee7544736dbC:\Windows\system32\drivers\hcw85cir.sys
2011/04/06 14:50:50.0416 3632    HdAudAddService (3530cad25deba7dc7de8bb51632cbc5fC:\Windows\system32\drivers\HdAudio.sys
2011/04/06 14:50:50.0463 3632    HDAudBus        (9036377b8a6c15dc2eec53e489d159b5C:\Windows\system32\drivers\HDAudBus.sys
2011/04/06 14:50:50.0494 3632    HidBatt         (1d58a7f3e11a9731d0eaaaa8405acc36C:\Windows\system32\DRIVERS\HidBatt.sys
2011/04/06 14:50:50.0510 3632    HidBth          (89448f40e6df260c206a193a4683ba78C:\Windows\system32\DRIVERS\hidbth.sys
2011/04/06 14:50:50.0541 3632    HidIr           (cf50b4cf4a4f229b9f3c08351f99ca5eC:\Windows\system32\DRIVERS\hidir.sys
2011/04/06 14:50:50.0588 3632    HidUsb          (10c19f8290891af023eaec0832e1eb4dC:\Windows\system32\drivers\hidusb.sys
2011/04/06 14:50:50.0619 3632    HpSAMD          (295fdc419039090eb8b49ffdbb374549C:\Windows\system32\drivers\HpSAMD.sys
2011/04/06 14:50:50.0650 3632    HTTP            (871917b07a141bff43d76d8844d48106C:\Windows\system32\drivers\HTTP.sys
2011/04/06 14:50:50.0697 3632    hwpolicy        (0c4e035c7f105f1299258c90886c64c5C:\Windows\system32\drivers\hwpolicy.sys
2011/04/06 14:50:50.0728 3632    i8042prt        (f151f0bdc47f4a28b1b20a0818ea36d6C:\Windows\system32\drivers\i8042prt.sys
2011/04/06 14:50:50.0775 3632    iaStor          (d5edb998656e6ecf1a17c78dab019a3cC:\Windows\system32\DRIVERS\iaStor.sys
2011/04/06 14:50:50.0806 3632    iaStorV         (a3cae5d281db4cff7cff8233507ee5adC:\Windows\system32\drivers\iaStorV.sys
2011/04/06 14:50:50.0822 3632    iirsp           (4173ff5708f3236cf25195fecd742915C:\Windows\system32\DRIVERS\iirsp.sys
2011/04/06 14:50:50.0915 3632    IntcAzAudAddService (3914ea9111dbeffaf1c68200817768adC:\Windows\system32\drivers\RTKVHDA.sys
2011/04/06 14:50:50.0962 3632    intelide        (a0f12f2c9ba6c72f3987ce780e77c130C:\Windows\system32\drivers\intelide.sys
2011/04/06 14:50:50.0993 3632    intelppm        (3b514d27bfc4accb4037bc6685f766e0C:\Windows\system32\DRIVERS\intelppm.sys
2011/04/06 14:50:51.0009 3632    IpFilterDriver  (709d1761d3b19a932ff0238ea6d50200C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/04/06 14:50:51.0040 3632    IPMIDRV         (4bd7134618c1d2a27466a099062547bfC:\Windows\system32\drivers\IPMIDrv.sys
2011/04/06 14:50:51.0071 3632    IPNAT           (a5fa468d67abcdaa36264e463a7bb0cdC:\Windows\system32\drivers\ipnat.sys
2011/04/06 14:50:51.0102 3632    IRENUM          (42996cff20a3084a56017b7902307e9fC:\Windows\system32\drivers\irenum.sys
2011/04/06 14:50:51.0134 3632    isapnp          (1f32bb6b38f62f7df1a7ab7292638a35C:\Windows\system32\drivers\isapnp.sys
2011/04/06 14:50:51.0165 3632    iScsiPrt        (cb7a9abb12b8415bce5d74994c7ba3aeC:\Windows\system32\drivers\msiscsi.sys
2011/04/06 14:50:51.0180 3632    kbdclass        (adef52ca1aeae82b50df86b56413107eC:\Windows\system32\drivers\kbdclass.sys
2011/04/06 14:50:51.0212 3632    kbdhid          (9e3ced91863e6ee98c24794d05e27a71C:\Windows\system32\drivers\kbdhid.sys
2011/04/06 14:50:51.0258 3632    KSecDD          (412cea1aa78cc02a447f5c9e62b32ff1C:\Windows\system32\Drivers\ksecdd.sys
2011/04/06 14:50:51.0274 3632    KSecPkg         (26c046977e85b95036453d7b88ba1820C:\Windows\system32\Drivers\ksecpkg.sys
2011/04/06 14:50:51.0336 3632    lirsgt          (f8a7212d0864ef5e9185fb95e6623f4dC:\Windows\system32\DRIVERS\lirsgt.sys
2011/04/06 14:50:51.0383 3632    lltdio          (f7611ec07349979da9b0ae1f18ccc7a6C:\Windows\system32\DRIVERS\lltdio.sys
2011/04/06 14:50:51.0414 3632    LSI_FC          (eb119a53ccf2acc000ac71b065b78fefC:\Windows\system32\DRIVERS\lsi_fc.sys
2011/04/06 14:50:51.0446 3632    LSI_SAS         (8ade1c877256a22e49b75d1cc9161f9cC:\Windows\system32\DRIVERS\lsi_sas.sys
2011/04/06 14:50:51.0461 3632    LSI_SAS2        (dc9dc3d3daa0e276fd2ec262e38b11e9C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/04/06 14:50:51.0492 3632    LSI_SCSI        (0a036c7d7cab643a7f07135ac47e0524C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/04/06 14:50:51.0508 3632    luafv           (6703e366cc18d3b6e534f5cf7df39ceeC:\Windows\system32\drivers\luafv.sys
2011/04/06 14:50:51.0539 3632    megasas         (0fff5b045293002ab38eb1fd1fc2fb74C:\Windows\system32\DRIVERS\megasas.sys
2011/04/06 14:50:51.0555 3632    MegaSR          (dcbab2920c75f390caf1d29f675d03d6C:\Windows\system32\DRIVERS\MegaSR.sys
2011/04/06 14:50:51.0570 3632    Modem           (f001861e5700ee84e2d4e52c712f4964C:\Windows\system32\drivers\modem.sys
2011/04/06 14:50:51.0602 3632    monitor         (79d10964de86b292320e9dfe02282a23C:\Windows\system32\DRIVERS\monitor.sys
2011/04/06 14:50:51.0617 3632    mouclass        (fb18cc1d4c2e716b6b903b0ac0cc0609C:\Windows\system32\drivers\mouclass.sys
2011/04/06 14:50:51.0633 3632    mouhid          (2c388d2cd01c9042596cf3c8f3c7b24dC:\Windows\system32\DRIVERS\mouhid.sys
2011/04/06 14:50:51.0648 3632    mountmgr        (fc8771f45ecccfd89684e38842539b9bC:\Windows\system32\drivers\mountmgr.sys
2011/04/06 14:50:51.0695 3632    mpio            (2d699fb6e89ce0d8da14ecc03b3edfe0C:\Windows\system32\drivers\mpio.sys
2011/04/06 14:50:51.0726 3632    mpsdrv          (ad2723a7b53dd1aacae6ad8c0bfbf4d0C:\Windows\system32\drivers\mpsdrv.sys
2011/04/06 14:50:51.0789 3632    MRxDAV          (ceb46ab7c01c9f825f8cc6babc18166aC:\Windows\system32\drivers\mrxdav.sys
2011/04/06 14:50:51.0836 3632    mrxsmb          (b272b4c3e085ea860c12f2e4faf2ffa2C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/04/06 14:50:51.0867 3632    mrxsmb10        (9ac33ef26c8a3ad0f117d00eb7301d03C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/04/06 14:50:51.0898 3632    mrxsmb20        (e0abdb5ed7e199e242a7d028e76c1d3aC:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/04/06 14:50:51.0945 3632    msahci          (012c5f4e9349e711e11e0f19a8589f0aC:\Windows\system32\drivers\msahci.sys
2011/04/06 14:50:51.0976 3632    msdsm           (55055f8ad8be27a64c831322a780a228C:\Windows\system32\drivers\msdsm.sys
2011/04/06 14:50:52.0007 3632    Msfs            (daefb28e3af5a76abcc2c3078c07327fC:\Windows\system32\drivers\Msfs.sys
2011/04/06 14:50:52.0023 3632    mshidkmdf       (3e1e5767043c5af9367f0056295e9f84C:\Windows\System32\drivers\mshidkmdf.sys
2011/04/06 14:50:52.0038 3632    msisadrv        (0a4e5757ae09fa9622e3158cc1aef114C:\Windows\system32\drivers\msisadrv.sys
2011/04/06 14:50:52.0085 3632    MSKSSRV         (8c0860d6366aaffb6c5bb9df9448e631C:\Windows\system32\drivers\MSKSSRV.sys
2011/04/06 14:50:52.0132 3632    MSPCLOCK        (3ea8b949f963562cedbb549eac0c11ceC:\Windows\system32\drivers\MSPCLOCK.sys
2011/04/06 14:50:52.0163 3632    MSPQM           (f456e973590d663b1073e9c463b40932C:\Windows\system32\drivers\MSPQM.sys
2011/04/06 14:50:52.0179 3632    MsRPC           (0e008fc4819d238c51d7c93e7b41e560C:\Windows\system32\drivers\MsRPC.sys
2011/04/06 14:50:52.0210 3632    mssmbios        (fc6b9ff600cc585ea38b12589bd4e246C:\Windows\system32\drivers\mssmbios.sys
2011/04/06 14:50:52.0226 3632    MSTEE           (b42c6b921f61a6e55159b8be6cd54a36C:\Windows\system32\drivers\MSTEE.sys
2011/04/06 14:50:52.0257 3632    MTConfig        (33599130f44e1f34631cea241de8ac84C:\Windows\system32\DRIVERS\MTConfig.sys
2011/04/06 14:50:52.0272 3632    Mup             (159fad02f64e6381758c990f753bcc80C:\Windows\system32\Drivers\mup.sys
2011/04/06 14:50:52.0304 3632    NativeWifiP     (26384429fcd85d83746f63e798ab1480C:\Windows\system32\DRIVERS\nwifi.sys
2011/04/06 14:50:52.0335 3632    NDIS            (e7c54812a2aaf43316eb6930c1ffa108C:\Windows\system32\drivers\ndis.sys
2011/04/06 14:50:52.0366 3632    NdisCap         (0e1787aa6c9191d3d319e8bafe86f80cC:\Windows\system32\DRIVERS\ndiscap.sys
2011/04/06 14:50:52.0397 3632    NdisTapi        (e4a8aec125a2e43a9e32afeea7c9c888C:\Windows\system32\DRIVERS\ndistapi.sys
2011/04/06 14:50:52.0444 3632    Ndisuio         (d8a65dafb3eb41cbb622745676fcd072C:\Windows\system32\DRIVERS\ndisuio.sys
2011/04/06 14:50:52.0475 3632    NdisWan         (38fbe267e7e6983311179230facb1017C:\Windows\system32\DRIVERS\ndiswan.sys
2011/04/06 14:50:52.0506 3632    NDProxy         (a4bdc541e69674fbff1a8ff00be913f2C:\Windows\system32\drivers\NDProxy.sys
2011/04/06 14:50:52.0538 3632    NetBIOS         (80b275b1ce3b0e79909db7b39af74d51C:\Windows\system32\DRIVERS\netbios.sys
2011/04/06 14:50:52.0553 3632    NetBT           (280122ddcf04b378edd1ad54d71c1e54C:\Windows\system32\DRIVERS\netbt.sys
2011/04/06 14:50:52.0616 3632    nfrd960         (1d85c4b390b0ee09c7a46b91efb2c097C:\Windows\system32\DRIVERS\nfrd960.sys
2011/04/06 14:50:52.0647 3632    Npfs            (1db262a9f8c087e8153d89bef3d2235fC:\Windows\system32\drivers\Npfs.sys
2011/04/06 14:50:52.0678 3632    nsiproxy        (e9a0a4d07e53d8fea2bb8387a3293c58C:\Windows\system32\drivers\nsiproxy.sys
2011/04/06 14:50:52.0740 3632    Ntfs            (33c3093d09017cfe2e219f2472bff6ebC:\Windows\system32\drivers\Ntfs.sys
2011/04/06 14:50:52.0772 3632    Null            (f9756a98d69098dca8945d62858a812cC:\Windows\system32\drivers\Null.sys
2011/04/06 14:50:52.0834 3632    NVHDA           (8571011b62ce0207fa1dc95d88308f1dC:\Windows\system32\drivers\nvhda32v.sys
2011/04/06 14:50:53.0037 3632    nvlddmkm        (19f5c4949b2e4cbd2e95b8ecdfc84d25C:\Windows\system32\DRIVERS\nvlddmkm.sys
2011/04/06 14:50:53.0162 3632    nvraid          (af2eec9580c1d32fb7eaf105d9784061C:\Windows\system32\drivers\nvraid.sys
2011/04/06 14:50:53.0208 3632    nvstor          (9283c58ebaa2618f93482eb5dabcec82C:\Windows\system32\drivers\nvstor.sys
2011/04/06 14:50:53.0255 3632    nv_agp          (5a0983915f02bae73267cc2a041f717dC:\Windows\system32\drivers\nv_agp.sys
2011/04/06 14:50:53.0302 3632    ohci1394        (08a70a1f2cdde9bb49b885cb817a66ebC:\Windows\system32\drivers\ohci1394.sys
2011/04/06 14:50:53.0349 3632    Parport         (2ea877ed5dd9713c5ac74e8ea7348d14C:\Windows\system32\DRIVERS\parport.sys
2011/04/06 14:50:53.0364 3632    partmgr         (bf8f6af06da75b336f07e23aef97d93bC:\Windows\system32\drivers\partmgr.sys
2011/04/06 14:50:53.0396 3632    Parvdm          (eb0a59f29c19b86479d36b35983daadcC:\Windows\system32\DRIVERS\parvdm.sys
2011/04/06 14:50:53.0427 3632    pci             (673e55c3498eb970088e812ea820aa8fC:\Windows\system32\drivers\pci.sys
2011/04/06 14:50:53.0474 3632    pciide          (afe86f419014db4e5593f69ffe26ce0aC:\Windows\system32\drivers\pciide.sys
2011/04/06 14:50:53.0520 3632    pcmcia          (f396431b31693e71e8a80687ef523506C:\Windows\system32\DRIVERS\pcmcia.sys
2011/04/06 14:50:53.0536 3632    pcw             (250f6b43d2b613172035c6747aeeb19fC:\Windows\system32\drivers\pcw.sys
2011/04/06 14:50:53.0567 3632    PEAUTH          (9e0104ba49f4e6973749a02bf41344edC:\Windows\system32\drivers\peauth.sys
2011/04/06 14:50:53.0661 3632    Point32         (420336f91eb745811cf130c80ede0653C:\Windows\system32\DRIVERS\point32.sys
2011/04/06 14:50:53.0692 3632    PptpMiniport    (631e3e205ad6d86f2aed6a4a8e69f2dbC:\Windows\system32\DRIVERS\raspptp.sys
2011/04/06 14:50:53.0723 3632    Processor       (85b1e3a0c7585bc4aae6899ec6fcf011C:\Windows\system32\DRIVERS\processr.sys
2011/04/06 14:50:53.0754 3632    Psched          (6270ccae2a86de6d146529fe55b3246aC:\Windows\system32\DRIVERS\pacer.sys
2011/04/06 14:50:53.0801 3632    PxHelp20        (40fedd328f98245ad201cf5f9f311724C:\Windows\system32\Drivers\PxHelp20.sys
2011/04/06 14:50:53.0848 3632    ql2300          (ab95ecf1f6659a60ddc166d8315b0751C:\Windows\system32\DRIVERS\ql2300.sys
2011/04/06 14:50:53.0879 3632    ql40xx          (b4dd51dd25182244b86737dc51af2270C:\Windows\system32\DRIVERS\ql40xx.sys
2011/04/06 14:50:53.0910 3632    QWAVEdrv        (584078ca1b95ca72df2a27c336f9719dC:\Windows\system32\drivers\qwavedrv.sys
2011/04/06 14:50:53.0926 3632    RasAcd          (30a81b53c766d0133bb86d234e5556abC:\Windows\system32\DRIVERS\rasacd.sys
2011/04/06 14:50:53.0973 3632    RasAgileVpn     (57ec4aef73660166074d8f7f31c0d4fdC:\Windows\system32\DRIVERS\AgileVpn.sys
2011/04/06 14:50:53.0988 3632    Rasl2tp         (d9f91eafec2815365cbe6d167e4e332aC:\Windows\system32\DRIVERS\rasl2tp.sys
2011/04/06 14:50:54.0004 3632    RasPppoe        (0fe8b15916307a6ac12bfb6a63e45507C:\Windows\system32\DRIVERS\raspppoe.sys
2011/04/06 14:50:54.0035 3632    RasSstp         (44101f495a83ea6401d886e7fd70096bC:\Windows\system32\DRIVERS\rassstp.sys
2011/04/06 14:50:54.0082 3632    rdbss           (d528bc58a489409ba40334ebf96a311bC:\Windows\system32\DRIVERS\rdbss.sys
2011/04/06 14:50:54.0098 3632    rdpbus          (0d8f05481cb76e70e1da06ee9f0da9dfC:\Windows\system32\DRIVERS\rdpbus.sys
2011/04/06 14:50:54.0144 3632    RDPCDD          (23dae03f29d253ae74c44f99e515f9a1C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/04/06 14:50:54.0176 3632    RDPENCDD        (5a53ca1598dd4156d44196d200c94b8aC:\Windows\system32\drivers\rdpencdd.sys
2011/04/06 14:50:54.0191 3632    RDPREFMP        (44b0a53cd4f27d50ed461dae0c0b4e1fC:\Windows\system32\drivers\rdprefmp.sys
2011/04/06 14:50:54.0238 3632    RDPWD           (288b06960d78428ff89e811632684e20C:\Windows\system32\drivers\RDPWD.sys
2011/04/06 14:50:54.0285 3632    rdyboost        (518395321dc96fe2c9f0e96ac743b656C:\Windows\system32\drivers\rdyboost.sys
2011/04/06 14:50:54.0347 3632    rspndr          (032b0d36ad92b582d869879f5af5b928C:\Windows\system32\DRIVERS\rspndr.sys
2011/04/06 14:50:54.0410 3632    RTL8167         (94a48c15d32d69867f03894a4e70a87aC:\Windows\system32\DRIVERS\Rt86win7.sys
2011/04/06 14:50:54.0456 3632    RTL8192su       (9ce8deffaffccbf473015d76ae8ee514C:\Windows\system32\DRIVERS\RTL8192su.sys
2011/04/06 14:50:54.0503 3632    s217bus         (0266151de3f36429f6ac3c4b28085061C:\Windows\system32\DRIVERS\s217bus.sys
2011/04/06 14:50:54.0550 3632    s217mdfl        (a43c0af0e46be7ef0c7e8ccf0f058600C:\Windows\system32\DRIVERS\s217mdfl.sys
2011/04/06 14:50:54.0597 3632    s217mdm         (005f5ded1ed8f8a9d2399d765ead20f1C:\Windows\system32\DRIVERS\s217mdm.sys
2011/04/06 14:50:54.0612 3632    s217mgmt        (de9562ad0c91e1857d11f65a91ee1a47C:\Windows\system32\DRIVERS\s217mgmt.sys
2011/04/06 14:50:54.0644 3632    s217nd5         (11cc5d7f992799e7e75d018e9c018563C:\Windows\system32\DRIVERS\s217nd5.sys
2011/04/06 14:50:54.0659 3632    s217obex        (0f9f4045799afb66b85eef999d0609ecC:\Windows\system32\DRIVERS\s217obex.sys
2011/04/06 14:50:54.0690 3632    s217unic        (1c91e1023f07b6407d84b5a43537d984C:\Windows\system32\DRIVERS\s217unic.sys
2011/04/06 14:50:54.0722 3632    sbp2port        (05d860da1040f111503ac416ccef2bcaC:\Windows\system32\drivers\sbp2port.sys
2011/04/06 14:50:54.0753 3632    scfilter        (0693b5ec673e34dc147e195779a4dcf6C:\Windows\system32\DRIVERS\scfilter.sys
2011/04/06 14:50:54.0784 3632    secdrv          (90a3935d05b494a5a39d37e71f09a677C:\Windows\system32\drivers\secdrv.sys
2011/04/06 14:50:54.0800 3632    seehcri         (e5b56569a9f79b70314fede6c953641eC:\Windows\system32\DRIVERS\seehcri.sys
2011/04/06 14:50:54.0831 3632    Serenum         (9ad8b8b515e3df6acd4212ef465de2d1C:\Windows\system32\DRIVERS\serenum.sys
2011/04/06 14:50:54.0893 3632    Serial          (5fb7fcea0490d821f26f39cc5ea3d1e2C:\Windows\system32\DRIVERS\serial.sys
2011/04/06 14:50:54.0987 3632    sermouse        (79bffb520327ff916a582dfea17aa813C:\Windows\system32\DRIVERS\sermouse.sys
2011/04/06 14:50:55.0018 3632    sffdisk         (9f976e1eb233df46fce808d9dea3eb9cC:\Windows\system32\drivers\sffdisk.sys
2011/04/06 14:50:55.0049 3632    sffp_mmc        (932a68ee27833cfd57c1639d375f2731C:\Windows\system32\drivers\sffp_mmc.sys
2011/04/06 14:50:55.0065 3632    sffp_sd         (6d4ccaedc018f1cf52866bbbaa235982C:\Windows\system32\drivers\sffp_sd.sys
2011/04/06 14:50:55.0080 3632    sfloppy         (db96666cc8312ebc45032f30b007a547C:\Windows\system32\DRIVERS\sfloppy.sys
2011/04/06 14:50:55.0190 3632    sisagp          (2565cac0dc9fe0371bdce60832582b2eC:\Windows\system32\drivers\sisagp.sys
2011/04/06 14:50:55.0221 3632    SiSRaid2        (a9f0486851becb6dda1d89d381e71055C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/04/06 14:50:55.0252 3632    SiSRaid4        (3727097b55738e2f554972c3be5bc1aaC:\Windows\system32\DRIVERS\sisraid4.sys
2011/04/06 14:50:55.0299 3632    Smb             (3e21c083b8a01cb70ba1f09303010fceC:\Windows\system32\DRIVERS\smb.sys
2011/04/06 14:50:55.0330 3632    spldr           (95cf1ae7527fb70f7816563cbc09d942C:\Windows\system32\drivers\spldr.sys
2011/04/06 14:50:55.0392 3632    srv             (112127c3b2e64d7680cc39cd0a39dd7eC:\Windows\system32\DRIVERS\srv.sys
2011/04/06 14:50:55.0424 3632    srv2            (e5dd784a4ee5ebc72a86c677c988fcdbC:\Windows\system32\DRIVERS\srv2.sys
2011/04/06 14:50:55.0470 3632    srvnet          (cdbe627e16cc9e98f343d73f8e81d258C:\Windows\system32\DRIVERS\srvnet.sys
2011/04/06 14:50:55.0517 3632    ssmdrv          (a36ee93698802cd899f98bfd553d8185C:\Windows\system32\DRIVERS\ssmdrv.sys
2011/04/06 14:50:55.0533 3632    stexstor        (db32d325c192b801df274bfd12a7e72bC:\Windows\system32\DRIVERS\stexstor.sys
2011/04/06 14:50:55.0564 3632    swenum          (e58c78a848add9610a4db6d214af5224C:\Windows\system32\drivers\swenum.sys
2011/04/06 14:50:55.0642 3632    Tcpip           (37e8fa3779668837ca9e2c36d2415949C:\Windows\system32\drivers\tcpip.sys
2011/04/06 14:50:55.0689 3632    TCPIP6          (37e8fa3779668837ca9e2c36d2415949C:\Windows\system32\DRIVERS\tcpip.sys
2011/04/06 14:50:55.0736 3632    tcpipreg        (cca24162e055c3714ce5a88b100c64edC:\Windows\system32\drivers\tcpipreg.sys
2011/04/06 14:50:55.0751 3632    TDPIPE          (1cb91b2bd8f6dd367dfc2ef26fd751b2C:\Windows\system32\drivers\tdpipe.sys
2011/04/06 14:50:55.0782 3632    TDTCP           (2c10395baa4847f83042813c515cc289C:\Windows\system32\drivers\tdtcp.sys
2011/04/06 14:50:55.0829 3632    tdx             (b459575348c20e8121d6039da063c704C:\Windows\system32\DRIVERS\tdx.sys
2011/04/06 14:50:55.0876 3632    TermDD          (04dbf4b01ea4bf25a9a3e84affac9b20C:\Windows\system32\drivers\termdd.sys
2011/04/06 14:50:55.0970 3632    tssecsrv        (254bb140eee3c59d6114c1a86b636877C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/04/06 14:50:56.0032 3632    TsUsbFlt        (fd1d6c73e6333be727cbcc6054247654C:\Windows\system32\drivers\tsusbflt.sys
2011/04/06 14:50:56.0079 3632    tunnel          (b2fa25d9b17a68bb93d58b0556e8c90dC:\Windows\system32\DRIVERS\tunnel.sys
2011/04/06 14:50:56.0094 3632    uagp35          (750fbcb269f4d7dd2e420c56b795db6dC:\Windows\system32\DRIVERS\uagp35.sys
2011/04/06 14:50:56.0126 3632    udfs            (ee43346c7e4b5e63e54f927babbb32ffC:\Windows\system32\DRIVERS\udfs.sys
2011/04/06 14:50:56.0157 3632    uliagpkx        (44e8048ace47befbfdc2e9be4cbc8880C:\Windows\system32\drivers\uliagpkx.sys
2011/04/06 14:50:56.0204 3632    umbus           (d295bed4b898f0fd999fcfa9b32b071bC:\Windows\system32\drivers\umbus.sys
2011/04/06 14:50:56.0235 3632    UmPass          (7550ad0c6998ba1cb4843e920ee0feacC:\Windows\system32\DRIVERS\umpass.sys
2011/04/06 14:50:56.0266 3632    usbccgp         (7e72e7d7e0757d59481d530fd2b0bfaeC:\Windows\system32\drivers\usbccgp.sys
2011/04/06 14:50:56.0297 3632    usbcir          (04ec7cec62ec3b6d9354eee93327fc82C:\Windows\system32\drivers\usbcir.sys
2011/04/06 14:50:56.0328 3632    usbehci         (1c333bfd60f2fed2c7ad5daf533cb742C:\Windows\system32\DRIVERS\usbehci.sys
2011/04/06 14:50:56.0344 3632    usbhub          (9d22aad9ac6a07c691a1113e5f860868C:\Windows\system32\drivers\usbhub.sys
2011/04/06 14:50:56.0375 3632    usbohci         (a6fb7957ea7afb1165991e54ce934b74C:\Windows\system32\DRIVERS\usbohci.sys
2011/04/06 14:50:56.0391 3632    usbprint        (797d862fe0875e75c7cc4c1ad7b30252C:\Windows\system32\DRIVERS\usbprint.sys
2011/04/06 14:50:56.0406 3632    USBSTOR         (bf63ebfc6979fefb2bc03df7989a0c1aC:\Windows\system32\drivers\USBSTOR.SYS
2011/04/06 14:50:56.0438 3632    usbuhci         (78780c3ebce17405b1ccd07a3a8a7d72C:\Windows\system32\DRIVERS\usbuhci.sys
2011/04/06 14:50:56.0469 3632    vdrvroot        (a059c4c3edb09e07d21a8e5c0aabd3cbC:\Windows\system32\drivers\vdrvroot.sys
2011/04/06 14:50:56.0500 3632    vga             (17c408214ea61696cec9c66e388b14f3C:\Windows\system32\DRIVERS\vgapnp.sys
2011/04/06 14:50:56.0516 3632    VgaSave         (8e38096ad5c8570a6f1570a61e251561C:\Windows\System32\drivers\vga.sys
2011/04/06 14:50:56.0547 3632    vhdmp           (5461686cca2fda57b024547733ab42e3C:\Windows\system32\drivers\vhdmp.sys
2011/04/06 14:50:56.0562 3632    viaagp          (c829317a37b4bea8f39735d4b076e923C:\Windows\system32\drivers\viaagp.sys
2011/04/06 14:50:56.0594 3632    ViaC7           (e02f079a6aa107f06b16549c6e5c7b74C:\Windows\system32\DRIVERS\viac7.sys
2011/04/06 14:50:56.0609 3632    viaide          (e43574f6a56a0ee11809b48c09e4fd3cC:\Windows\system32\drivers\viaide.sys
2011/04/06 14:50:56.0625 3632    volmgr          (4c63e00f2f4b5f86ab48a58cd990f212C:\Windows\system32\drivers\volmgr.sys
2011/04/06 14:50:56.0656 3632    volmgrx         (b5bb72067ddddbbfb04b2f89ff8c3c87C:\Windows\system32\drivers\volmgrx.sys
2011/04/06 14:50:56.0687 3632    volsnap         (f497f67932c6fa693d7de2780631cfe7C:\Windows\system32\drivers\volsnap.sys
2011/04/06 14:50:56.0734 3632    vsmraid         (9dfa0cc2f8855a04816729651175b631C:\Windows\system32\DRIVERS\vsmraid.sys
2011/04/06 14:50:56.0750 3632    vwifibus        (90567b1e658001e79d7c8bbd3dde5aa6C:\Windows\system32\DRIVERS\vwifibus.sys
2011/04/06 14:50:56.0796 3632    vwififlt        (7090d3436eeb4e7da3373090a23448f7C:\Windows\system32\DRIVERS\vwififlt.sys
2011/04/06 14:50:56.0812 3632    vwifimp         (a3f04cbea6c2a10e6cb01f8b47611882C:\Windows\system32\DRIVERS\vwifimp.sys
2011/04/06 14:50:56.0859 3632    WacomPen        (de3721e89c653aa281428c8a69745d90C:\Windows\system32\DRIVERS\wacompen.sys
2011/04/06 14:50:56.0906 3632    WANARP          (3c3c78515f5ab448b022bdf5b8ffdd2eC:\Windows\system32\DRIVERS\wanarp.sys
2011/04/06 14:50:56.0921 3632    Wanarpv6        (3c3c78515f5ab448b022bdf5b8ffdd2eC:\Windows\system32\DRIVERS\wanarp.sys
2011/04/06 14:50:56.0952 3632    Wd              (1112a9badacb47b7c0bb0392e3158dffC:\Windows\system32\DRIVERS\wd.sys
2011/04/06 14:50:56.0984 3632    Wdf01000        (9950e3d0f08141c7e89e64456ae7dc73C:\Windows\system32\drivers\Wdf01000.sys
2011/04/06 14:50:57.0030 3632    WfpLwf          (8b9a943f3b53861f2bfaf6c186168f79C:\Windows\system32\DRIVERS\wfplwf.sys
2011/04/06 14:50:57.0046 3632    WIMMount        (5cf95b35e59e2a38023836fff31be64cC:\Windows\system32\drivers\wimmount.sys
2011/04/06 14:50:57.0108 3632    WinUsb          (a67e5f9a400f3bd1be3d80613b45f708C:\Windows\system32\DRIVERS\WinUsb.sys
2011/04/06 14:50:57.0140 3632    WmiAcpi         (0217679b8fca58714c3bf2726d2ca84eC:\Windows\system32\drivers\wmiacpi.sys
2011/04/06 14:50:57.0186 3632    ws2ifsl         (6db3276587b853bf886b69528fdb048cC:\Windows\system32\drivers\ws2ifsl.sys
2011/04/06 14:50:57.0233 3632    WudfPf          (e714a1c0354636837e20ccbf00888ee7C:\Windows\system32\drivers\WudfPf.sys
2011/04/06 14:50:57.0296 3632    WUDFRd          (1023ee888c9b47178c5293ed5336ab69C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/04/06 14:50:57.0342 3632    ================================================================================
2011/04/06 14:50:57.0342 3632    Scan finished
2011/04/06 14:50:57.0342 3632    ================================================================================ 

Alt 06.04.2011, 14:29   #17
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


Zitat:
da ist nur ein tool von norman und ein anderes.
Ich hab doch extra KASPERSKY geschrieben

Ok. Bitte nun Logs mit GMER und OSAM erstellen und posten.
GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen.
Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst.


Downloade Dir danach bitte MBRCheck (by a_d_13) und speichere die Datei auf dem Desktop.
  • Doppelklick auf die MBRCheck.exe.
    Vista und Win7 User mit Rechtsklick "als Administrator starten"
  • Das Tool braucht nur wenige Sekunden.
  • Danach solltest du eine MBRCheck_<Datum>_<Uhrzeit>.txt auf dem Desktop finden.
Poste mir bitte den Inhalt des .txt Dokumentes
__________________

__________________
Alt 06.04.2011, 16:05   #18
Kronski
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


Google verlinkt mich jetzt aber richtig.
soll ich jetzt immer noch die sachen durchführen.
vor kurzen habe ich mein Passwort geendert.
nach nem neustart nach der Passwort enderung hat auf einmal der svchost den Prozessor auf hundert Prozent gebracht.
ist das besorgniss erregend?
__________________
Alt 06.04.2011, 16:16   #19
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


Bitte poste die Logs! Wir sind fertig wenn es soweit ist!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 06.04.2011, 19:46   #20
Kronski
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


hier ist das GMER logfile

GMER Logfile:
Code:
ATTFilter
GMER 1.0.15.15570 - hxxp://www.gmer.net
Rootkit scan 2011-04-06 20:44:57
Windows 6.1.7601 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD10 rev.80.0
Running: sy72r0s3.exe; Driver: C:\Users\Kobi\AppData\Local\Temp\pglyiuob.sys


---- Kernel code sections - GMER 1.0.15 ----

.text           ntkrnlpa.exe!ZwSaveKey + 13C1                                                                      83059339 1 Byte  [06]
.text           ntkrnlpa.exe!KiDispatchInterrupt + 5A2                                                             83092D52 19 Bytes  [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.reloc          C:\Windows\system32\drivers\acehlp09.sys                                                           section is executable [0x91319780, 0x28F7A, 0xE0000060]
.reloc          C:\Windows\system32\drivers\acedrv09.sys                                                           section is executable [0x9DB82000, 0x4E05A, 0xE0000060]
.reloc          C:\Windows\system32\drivers\acedrv11.sys                                                           section is executable [0xA141F300, 0x25D4C, 0xE0000060]
.text           C:\Windows\system32\DRIVERS\atksgt.sys                                                             section is writeable [0xA1446300, 0x3B6D8, 0xE8000020]
.text           C:\Windows\system32\DRIVERS\lirsgt.sys                                                             section is writeable [0xA1489300, 0x1BEE, 0xE8000020]

---- User IAT/EAT - GMER 1.0.15 ----

IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc]                    [73B72437] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup]               [73B55600] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown]              [73B556BE] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree]                     [73B724B2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics]           [73B68514] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage]             [73B64CC8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth]            [73B6506F] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight]           [73B65144] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromHBITMAP]  [73B66671] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC]            [73B6826B] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode]       [73B687BA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode]     [73B6901B] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI]           [73B6E1BE] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\Windows\Explorer.EXE[3184] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage]               [73B64BFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume1                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume2                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume3                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume4                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume5                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume6                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume7                                                             fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device          \Driver\ACPI_HAL \Device\0000004a                                                                  halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System                                              
Reg             HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System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

---- EOF - GMER 1.0.15 ----
--- --- ---
Alt 06.04.2011, 19:49   #21
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


Das ist unauffällig. Poste bitte auch noch die anderen.
__________________
--> Google verlinkt mich falsch

Alt 06.04.2011, 19:55   #22
Kronski
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


hier ist das osam logfile:

OSAM Logfile:
Code:
ATTFilter
Report of OSAM: Autorun Manager v5.0.11926.0
hxxp://www.online-solutions.ru/en/
Saved at 20:54:30 on 06.04.2011

OS: Windows 7 Home Premium Edition Service Pack 1 (Build 7601), 32-bit
Default Browser: Mozilla Corporation Firefox 4.0

Scanner Settings
[x] Rootkits detection (hidden registry)
[x] Rootkits detection (hidden files)
[x] Retrieve files information
[x] Check Microsoft signatures

Filters
[ ] Trusted entries
[ ] Empty entries
[x] Hidden registry entries (rootkit activity)
[x] Exclusively opened files
[x] Not found files
[x] Files without detailed information
[x] Existing files
[ ] Non-startable services
[ ] Non-startable drivers
[x] Active entries
[x] Disabled entries


[Common]
-----( %SystemRoot%\Tasks )-----
"GoogleUpdateTaskMachineCore.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"GoogleUpdateTaskMachineUA.job" - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe

[Control Panel Objects]
-----( %SystemRoot%\system32 )-----
"DivXControlPanelApplet.cpl" - "DivX, Inc." - C:\Windows\system32\DivXControlPanelApplet.cpl
"ISUSPM.cpl" - "Macrovision Corporation" - C:\Windows\system32\ISUSPM.cpl
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls )-----
"mlcfg32.cpl" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\MLCFG32.CPL
"QuickTime" - "Apple Inc." - C:\Program Files\QuickTime\QTSystem\QuickTime.cpl

[Drivers]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"acedrv09" (acedrv09) - "Protect Software GmbH" - C:\Windows\system32\drivers\acedrv09.sys
"acedrv11" (acedrv11) - "Protect Software GmbH" - C:\Windows\system32\drivers\acedrv11.sys
"acehlp09" (acehlp09) - "Protect Software GmbH" - C:\Windows\system32\drivers\acehlp09.sys
"atksgt" (atksgt) - ? - C:\Windows\System32\DRIVERS\atksgt.sys  (File found, but it contains no detailed information)
"avgntflt" (avgntflt) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avgntflt.sys
"avipbb" (avipbb) - "Avira GmbH" - C:\Windows\System32\DRIVERS\avipbb.sys
"catchme" (catchme) - ? - C:\Users\Kobi\AppData\Local\Temp\catchme.sys  (File not found)
"lirsgt" (lirsgt) - ? - C:\Windows\System32\DRIVERS\lirsgt.sys  (File found, but it contains no detailed information)
"pglyiuob" (pglyiuob) - ? - C:\Users\Kobi\AppData\Local\Temp\pglyiuob.sys  (Hidden registry entry, rootkit activity | File not found)
"sptd" (sptd) - ? - C:\Windows\system32\drivers\sptd.sys  (File not found)
"ssmdrv" (ssmdrv) - "Avira GmbH" - C:\Windows\System32\DRIVERS\ssmdrv.sys

[Explorer]
-----( HKLM\Software\Classes\Folder\shellex\ColumnHandlers )-----
{F9DB5320-233E-11D1-9F84-707F02C10627} "PDF Shell Extension" - "Adobe Systems, Inc." - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
-----( HKLM\Software\Classes\Protocols\Filter )-----
{807563E5-5146-11D5-A672-00B0D022E945} "Microsoft Office InfoPath XML Mime Filter" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
-----( HKLM\Software\Classes\Protocols\Handler )-----
{314111c7-a502-11d2-bbca-00c04f8ec294} "HxProtocol Class" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
{88FED34C-F0CA-4636-A375-3CB6248B04CD} "Local Groove Web Services Protocol" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
{0A9007C0-4076-11D3-8789-0000F8105754} "Microsoft Infotech Storage Protocol for IE 4.0" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
{03C514A3-1EFB-4856-9F99-10D7BE1653C0} "Windows Live Mail HTML Asynchronous Pluggable Protocol Handler" - "Microsoft Corporation" - C:\Program Files\Windows Live\Mail\mailcomm.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks )-----
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{AEB6717E-7E19-11d0-97EE-00C04FD91972} "{AEB6717E-7E19-11d0-97EE-00C04FD91972}" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved )-----
{23170F69-40C1-278A-1000-000100020000} "7-Zip Shell Extension" - "Igor Pavlov" - C:\Program Files\7-Zip\7-zip.dll
{653DCCC2-13DB-45B2-A389-427885776CFE} "Activities Property Page" - "Microsoft Corporation" - c:\Program Files\Microsoft IntelliPoint\ipcplact.dll
{6230EF55-8E71-4F40-861A-DBA282584FF5} "AVSVideoConverter Object" - "Online Media Technologies Ltd." - C:\PROGRA~1\AVS4YOU\AVSVID~1\AVSVID~1.DLL
{124597D8-850A-41AE-849C-017A4FA99CA2} "Buttons Property Page" - "Microsoft Corporation" - c:\Program Files\Microsoft IntelliPoint\ipcplbtn.dll
{0563DB41-F538-4B37-A92D-4659049B7766} "CLSID_WLMCMimeFilter" - "Microsoft Corporation" - C:\Program Files\Windows Live\Mail\mailcomm.dll
{A70C977A-BF00-412C-90B7-034C51DA2439} "DesktopContext Class" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll
{D8D1CE8C-B1EB-4E95-B63B-1531BA60E992} "DivX Property Handler" - "DivX, Inc." - C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXPropertyHandler.dll
{83238FAE-D346-4E12-8734-D42F7554B3E6} "DivX Thumbnail Provider" - "DivX, Inc." - C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXThumbnailProvider.dll
{99FD978C-D287-4F50-827F-B2C658EDA8E7} "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} "Groove Explorer Icon Overlay 2 (GFS Stub)" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{920E6DB1-9907-4370-B3A0-BAFC03D81399} "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{16F3DD56-1AF5-4347-846D-7C10C4192619} "Groove Explorer Icon Overlay 3 (GFS Folder)" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{2916C86E-86A6-43FE-8112-43ABE6BF8DCC} "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{2A541AE1-5BF6-4665-A8A3-CFA9672E4291} "Groove Folder Synchronization" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{6C467336-8281-4E60-8204-430CED96822D} "Groove GFS Context Menu Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} "Groove GFS Stub Execution Hook" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{A449600E-1DC6-4232-B948-9BD794D62056} "Groove GFS Stub Icon Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{387E725D-DC16-4D76-B310-2C93ED4752A0} "Groove XML Icon Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{3BEABCC1-BF31-42df-88D9-A2955D6B8528} "IntelliPoint Sensitivity Property Page" - "Microsoft Corporation" - c:\Program Files\Microsoft IntelliPoint\ipcplsens.dll
{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} "iTunes" - "Apple Inc." - C:\Program Files\iTunes\iTunesMiniPlayer.dll
{42042206-2D85-11D3-8CFF-005004838597} "Microsoft Office HTML Icon Handler" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\msohevi.dll
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} "Microsoft Office Metadata Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{5858A72C-C2B4-4dd7-B2BF-B76DB1BD9F6C} "Microsoft Office OneNote Namespace Extension for Windows Desktop Search" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\ONFILTER.DLL
{00020D75-0000-0000-C000-000000000046} "Microsoft Office Outlook" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\MLSHEXT.DLL
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} "Microsoft Office Thumbnail Handler" - "Microsoft Corporation" - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
{3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} "NVIDIA CPL Context Menu Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvshext.dll
{FFB699E0-306A-11d3-8BD1-00104B6F7516} "NVIDIA CPL Extension" - "NVIDIA Corporation" - C:\Windows\system32\nvcpl.dll
{0006F045-0000-0000-C000-000000000046} "Outlook File Icon Extension" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\OLKFSTUB.DLL
{45AC2688-0253-4ED8-97DE-B5370FA7D48A} "Shell Extension for Malware scanning" - ? -   (File not found | COM-object registry key not found)
{1184D0ED-DBCE-4170-8DBB-4D0C3905DA85} "Touch Property Page" - "Microsoft Corporation" - c:\Program Files\Microsoft IntelliPoint\ipcpltouch.dll
{AF90F543-6A3A-4C1B-8B16-ECEC073E69BE} "Wheel Property Page" - "Microsoft Corporation" - c:\Program Files\Microsoft IntelliPoint\ipcplwhl.dll
{2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} "Windows Live Photo Gallery Autoplay Drop Target" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} "Windows Live Photo Gallery Editor Drop Target" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} "Windows Live Photo Gallery Editor Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F30F90-3E96-453B-AFCD-D71989ECC2C7} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F33137-EE26-412F-8D71-F84E4C2C6625} "Windows Live Photo Gallery Viewer Autoplay Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{00F374B7-B390-4884-B372-2FC349F2172B} "Windows Live Photo Gallery Viewer Drop Target" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe
{00F346CB-35A4-465B-8B8F-65A29DBAB1F6} "Windows Live Photo Gallery Viewer Shim" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
{20082881-FC36-4E47-9A7A-644C95FF749F} "Wireless Property Page" - "Microsoft Corporation" - c:\Program Files\Microsoft IntelliPoint\ipcplwir.dll
{06A2568A-CED6-4187-BB20-400B8C02BE5A} "{06A2568A-CED6-4187-BB20-400B8C02BE5A}" - "Microsoft Corporation" - C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe
GameJackalShlExt extension "{D1AE07A0-C0E1-11DE-B1EB-070556D89593}" - ? -   (File not found | COM-object registry key not found)

[Internet Explorer]
-----( HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser )-----
<binary data> "&Windows Live Toolbar" - "Microsoft Corporation" - C:\Program Files\Windows Live\Toolbar\wltcore.dll
<binary data> "ITBar7Layout" - ? -   (File not found | COM-object registry key not found)
<binary data> "{32099AAC-C132-4136-9E9A-4E364A424E17}" - ? -   (File not found | COM-object registry key not found)
<binary data> "{DFEFCDEE-CF1A-4FC8-88AD-48514E463B27}" - ? -   (File not found | COM-object registry key not found)
-----( HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units )-----
{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} "Java Plug-in 1.6.0_16" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
{8AD9C840-044E-11D1-B3E9-00805F499D93} "Java Plug-in 1.6.0_23" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} "Java Plug-in 1.6.0_23" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2iexp.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} "Java Plug-in 1.6.0_23" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\npjpi160_23.dll / hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
{1E3F1348-4370-4BBE-A67A-CC7ED824CA85} "Microsoft Genuine Advantage Self Support Tool" - "Microsoft Corporation" - C:\Windows\system32\SelfHelpControl.DLL / hxxp://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
{233C1507-6A77-46A4-9443-F871F945D258} "Shockwave ActiveX Control" - "Adobe Systems, Inc." - C:\Windows\system32\Adobe\Director\SwDir.dll / hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
{17492023-C23A-453E-A040-C7C580BBF700} "Windows Genuine Advantage Validation Tool" - "Microsoft Corporation" - C:\Windows\system32\LegitCheckControl.DLL / hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions )-----
{48E73304-E1D6-4330-914C-F5F514E3486C} "An OneNote senden" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
{5F7B1267-94A9-47F5-98DB-E99415F33AEC} "In Blog veröffentlichen" - "Microsoft Corporation" - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
{FF059E31-CC5A-4E2E-BF3B-96E929D65503} "Research" - "Microsoft Corporation" - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
-----( HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar )-----
<binary data> "&Windows Live Toolbar" - "Microsoft Corporation" - C:\Program Files\Windows Live\Toolbar\wltcore.dll
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects )-----
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} "Adobe PDF Link Helper" - "Adobe Systems Incorporated" - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
{593DDEC6-7468-4cdd-90E1-42DADAA222E9} "DivX HiQ" - "DivX, LLC" - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
{326E768D-4182-46FD-9C16-1449A49795F4} "DivX Plus Web Player HTML5 <video>" - "DivX, LLC" - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} "Groove GFS Browser Helper" - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
{DBC80044-A445-435b-BC74-9C25C1C588A9} "Java(tm) Plug-In 2 SSV Helper" - "Sun Microsystems, Inc." - C:\Program Files\Java\jre6\bin\jp2ssv.dll
{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} "Search Helper" - "Microsoft Corporation" - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
{9030D464-4C02-4ABF-8ECC-5164760863C6} "Windows Live ID-Anmelde-Hilfsprogramm" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} "Windows Live Toolbar Helper" - "Microsoft Corporation" - C:\Program Files\Windows Live\Toolbar\wltcore.dll

[LSA Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Lsa )-----
"Security Packages" - "Microsoft Corporation" - C:\Windows\system32\livessp.dll

[Logon]
-----( %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\Users\Kobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( %AllUsersProfile%\Microsoft\Windows\Start Menu\Programs\Startup )-----
"desktop.ini" - ? - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-----( HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd )-----
"StartupPrograms" - ? - rdpclip  (File not found)
-----( HKLM\Software\Microsoft\Windows\CurrentVersion\Run )-----
"avgnt" - "Avira GmbH" - "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
"GrooveMonitor" - "Microsoft Corporation" - "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
"IntelliPoint" - "Microsoft Corporation" - "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"

[Print Monitors]
-----( HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors )-----
"PDFCreator" - ? - C:\Windows\system32\pdfcmnnt.dll  (File found, but it contains no detailed information)
"Send To Microsoft OneNote Monitor" - "Microsoft Corporation" - C:\Windows\system32\msonpmon.dll

[Services]
-----( HKLM\SYSTEM\CurrentControlSet\Services )-----
"Akamai NetSession Interface" (Akamai) - ? - c:\program files\common files\akamai\netsession_win_a35e6b9.dll  (File found, but it contains no detailed information)
"Apple Mobile Device" (Apple Mobile Device) - "Apple Inc." - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
"Avira AntiVir Guard" (AntiVirService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
"Avira AntiVir Planer" (AntiVirSchedulerService) - "Avira GmbH" - C:\Program Files\Avira\AntiVir Desktop\sched.exe
"Dienst "Bonjour"" (Bonjour Service) - "Apple Inc." - C:\Program Files\Bonjour\mDNSResponder.exe
"Google Update Service (gupdate)" (gupdate) - "Google Inc." - C:\Program Files\Google\Update\GoogleUpdate.exe
"InstallDriver Table Manager" (IDriverT) - "Macrovision Corporation" - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
"Intel(R) Rapid Storage Technology" (IAStorDataMgrSvc) - "Intel Corporation" - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
"iPod Service" (iPod Service) - "Apple Inc." - C:\Program Files\iPod\bin\iPodService.exe
"Microsoft .NET Framework NGEN v4.0.30319_X86" (clr_optimization_v4.0.30319_32) - "Microsoft Corporation" - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"Microsoft Office Diagnostics Service" (odserv) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
"Microsoft Office Groove Audit Service" (Microsoft Office Groove Audit Service) - "Microsoft Corporation" - C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
"NVIDIA Display Driver Service" (nvsvc) - "NVIDIA Corporation" - C:\Windows\system32\nvvsvc.exe
"Office Source Engine" (ose) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
"ProtexisLicensing" (ProtexisLicensing) - ? - C:\Windows\system32\PSIService.exe
"SeaPort" (SeaPort) - "Microsoft Corporation" - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
"Sony Ericsson OMSI download service" (OMSI download service) - ? - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe  (File found, but it contains no detailed information)
"Windows Live ID Sign-in Assistant" (wlidsvc) - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

[Winsock Providers]
-----( HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries )-----
"mdnsNSP" - "Apple Inc." - C:\Program Files\Bonjour\mdnsNSP.dll
"WindowsLive Local NSP" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
"WindowsLive NSP" - "Microsoft Corporation" - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

===[ Logfile end ]=========================================[ Logfile end ]===
--- --- ---

If You have questions or want to get some help, You can visit hxxp://forum.online-solutions.ru[/PHP]

Alt 06.04.2011, 20:23   #23
Kronski
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


zu letzt ist hier das logfile von MBRCheck:

PHP-Code:
MBRCheckversion 1.2.3
(c2010AD

Command-line:            
Windows Version:        Windows 7 Home Premium Edition
Windows Information:        Service Pack 1 (build 7601), 32-bit
Base Board Manufacturer:    MEDIONPC
BIOS Manufacturer:        American Megatrends Inc.
System Manufacturer:        MEDIONPC
System Product Name:        MS-7616
Logical Drives Mask:        0x000000fc

Kernel Drivers (total 188):
  0x83037000 \SystemRoot\system32\ntkrnlpa.exe
  0x83000000 \SystemRoot\system32\halmacpi.dll
  0x80B96000 \SystemRoot\system32\kdcom.dll
  0x83601000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
  0x83686000 \SystemRoot\system32\PSHED.dll
  0x83697000 \SystemRoot\system32\BOOTVID.dll
  0x8369F000 \SystemRoot\system32\CLFS.SYS
  0x836E1000 \SystemRoot\system32\CI.dll
  0x8378C000 \SystemRoot\system32\drivers\Wdf01000.sys
  0x8B413000 \SystemRoot\system32\drivers\WDFLDR.SYS
  0x8B421000 \SystemRoot\system32\drivers\ACPI.sys
  0x8B469000 \SystemRoot\system32\drivers\WMILIB.SYS
  0x8B472000 \SystemRoot\system32\drivers\msisadrv.sys
  0x8B47A000 \SystemRoot\system32\drivers\vdrvroot.sys
  0x8B485000 \SystemRoot\system32\drivers\pci.sys
  0x8B4AF000 \SystemRoot\System32\drivers\partmgr.sys
  0x8B4C0000 \SystemRoot\system32\drivers\volmgr.sys
  0x8B4D0000 \SystemRoot\System32\drivers\volmgrx.sys
  0x8B51B000 \SystemRoot\System32\drivers\mountmgr.sys
  0x8B62D000 \SystemRoot\system32\DRIVERS\iaStor.sys
  0x8B7E0000 \SystemRoot\system32\drivers\amdxata.sys
  0x8B531000 \SystemRoot\system32\drivers\fltmgr.sys
  0x8B7E9000 \SystemRoot\system32\drivers\fileinfo.sys
  0x8B600000 \SystemRoot\System32\Drivers\PxHelp20.sys
  0x8B812000 \SystemRoot\System32\Drivers\Ntfs.sys
  0x8B941000 \SystemRoot\System32\Drivers\msrpc.sys
  0x8B96C000 \SystemRoot\System32\Drivers\ksecdd.sys
  0x8B97F000 \SystemRoot\System32\Drivers\cng.sys
  0x8B9DC000 \SystemRoot\System32\drivers\pcw.sys
  0x8B9EA000 \SystemRoot\System32\Drivers\Fs_Rec.sys
  0x8BA31000 \SystemRoot\system32\drivers\ndis.sys
  0x8BAE8000 \SystemRoot\system32\drivers\NETIO.SYS
  0x8BB26000 \SystemRoot\System32\Drivers\ksecpkg.sys
  0x8BC37000 \SystemRoot\System32\drivers\tcpip.sys
  0x8BD81000 \SystemRoot\System32\drivers\fwpkclnt.sys
  0x8BDB2000 \SystemRoot\system32\drivers\volsnap.sys
  0x8BDF1000 \SystemRoot\System32\Drivers\spldr.sys
  0x8BC00000 \SystemRoot\System32\drivers\rdyboost.sys
  0x8BB4B000 \SystemRoot\System32\Drivers\mup.sys
  0x8BC2D000 \SystemRoot\System32\drivers\hwpolicy.sys
  0x8BB5B000 \SystemRoot\System32\DRIVERS\fvevol.sys
  0x8BB8D000 \SystemRoot\system32\DRIVERS\disk.sys
  0x8BB9E000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
  0x90611000 \SystemRoot\system32\drivers\cdrom.sys
  0x90630000 \SystemRoot\System32\Drivers\Null.SYS
  0x90637000 \SystemRoot\System32\Drivers\Beep.SYS
  0x907F2000 \SystemRoot\System32\drivers\vga.sys
  0x8BBD0000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
  0x8BBF1000 \SystemRoot\System32\drivers\watchdog.sys
  0x8BA00000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
  0x8BA08000 \SystemRoot\system32\drivers\rdpencdd.sys
  0x8BA10000 \SystemRoot\system32\drivers\rdprefmp.sys
  0x8BA18000 \SystemRoot\System32\Drivers\Msfs.SYS
  0x8BA23000 \SystemRoot\System32\Drivers\Npfs.SYS
  0x8B60A000 \SystemRoot\system32\DRIVERS\tdx.sys
  0x8B9F3000 \SystemRoot\system32\DRIVERS\TDI.SYS
  0x8B565000 \SystemRoot\system32\drivers\afd.sys
  0x8B5BF000 \SystemRoot\System32\DRIVERS\netbt.sys
  0x8BDF9000 \SystemRoot\system32\DRIVERS\wfplwf.sys
  0x90A23000 \SystemRoot\system32\DRIVERS\pacer.sys
  0x90A42000 \SystemRoot\system32\DRIVERS\vwififlt.sys
  0x90A53000 \SystemRoot\system32\DRIVERS\netbios.sys
  0x90A61000 \SystemRoot\system32\DRIVERS\wanarp.sys
  0x90A74000 \SystemRoot\system32\drivers\termdd.sys
  0x90A85000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
  0x90A8B000 \SystemRoot\system32\DRIVERS\rdbss.sys
  0x90ACC000 \SystemRoot\system32\drivers\nsiproxy.sys
  0x90AD6000 \SystemRoot\system32\drivers\mssmbios.sys
  0x90AE0000 \SystemRoot\System32\drivers\discache.sys
  0x90AEC000 \SystemRoot\System32\Drivers\dfsc.sys
  0x90B04000 \SystemRoot\system32\DRIVERS\blbdrive.sys
  0x90B12000 \SystemRoot\system32\DRIVERS\avipbb.sys
  0x90B38000 \SystemRoot\system32\DRIVERS\tunnel.sys
  0x90B59000 \SystemRoot\system32\DRIVERS\intelppm.sys
  0x9382C000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
  0x94326000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
  0x94328000 \SystemRoot\System32\drivers\dxgkrnl.sys
  0x90B6B000 \SystemRoot\System32\drivers\dxgmms1.sys
  0x943DF000 \SystemRoot\system32\DRIVERS\usbehci.sys
  0x90BA4000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
  0x93800000 \SystemRoot\system32\drivers\HDAudBus.sys
  0x9222C000 \SystemRoot\system32\DRIVERS\Rt86win7.sys
  0x9227E000 \SystemRoot\system32\drivers\1394ohci.sys
  0x922AB000 \SystemRoot\system32\drivers\i8042prt.sys
  0x922C3000 \SystemRoot\system32\drivers\kbdclass.sys
  0x922D0000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
  0x922D6000 \SystemRoot\system32\drivers\CompositeBus.sys
  0x922E3000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
  0x922F5000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
  0x9230D000 \SystemRoot\system32\DRIVERS\ndistapi.sys
  0x92318000 \SystemRoot\system32\DRIVERS\ndiswan.sys
  0x9233A000 \SystemRoot\system32\DRIVERS\raspppoe.sys
  0x92352000 \SystemRoot\system32\DRIVERS\raspptp.sys
  0x92369000 \SystemRoot\system32\DRIVERS\rassstp.sys
  0x92380000 \SystemRoot\system32\drivers\mouclass.sys
  0x9238D000 \SystemRoot\system32\DRIVERS\seehcri.sys
  0x92393000 \SystemRoot\system32\drivers\swenum.sys
  0x92395000 \SystemRoot\system32\drivers\ks.sys
  0x923C9000 \SystemRoot\system32\drivers\umbus.sys
  0x92005000 \SystemRoot\system32\drivers\usbhub.sys
  0x92049000 \SystemRoot\System32\Drivers\NDProxy.SYS
  0x9481F000 \SystemRoot\system32\drivers\RTKVHDA.sys
  0x94ABC000 \SystemRoot\system32\drivers\portcls.sys
  0x94AEB000 \SystemRoot\system32\drivers\drmk.sys
  0x95C30000 \SystemRoot\System32\win32k.sys
  0x94B04000 \SystemRoot\System32\drivers\Dxapi.sys
  0x94B0E000 \SystemRoot\System32\Drivers\crashdmp.sys
  0x9063E000 \SystemRoot\System32\Drivers\dump_iaStor.sys
  0x94B1B000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
  0x94B2C000 \SystemRoot\system32\DRIVERS\monitor.sys
  0x94B37000 \SystemRoot\system32\drivers\hidusb.sys
  0x94B42000 \SystemRoot\system32\drivers\HIDCLASS.SYS
  0x94B55000 \SystemRoot\system32\drivers\HIDPARSE.SYS
  0x94B5C000 \SystemRoot\system32\drivers\USBD.SYS
  0x95E90000 \SystemRoot\System32\TSDDD.dll
  0x95EC0000 \SystemRoot\System32\cdd.dll
  0x95EE0000 \SystemRoot\System32\ATMFD.DLL
  0x94B5E000 \SystemRoot\system32\drivers\usbccgp.sys
  0x94B75000 \SystemRoot\system32\DRIVERS\dc3d.sys
  0x94B7F000 \SystemRoot\system32\drivers\kbdhid.sys
  0x94B8B000 \SystemRoot\system32\DRIVERS\mouhid.sys
  0x94B96000 \SystemRoot\system32\DRIVERS\point32.sys
  0x94B9F000 \SystemRoot\system32\drivers\luafv.sys
  0x94BBA000 \SystemRoot\system32\DRIVERS\avgntflt.sys
  0x94BCF000 \SystemRoot\system32\drivers\WudfPf.sys
  0x94BE9000 \SystemRoot\system32\drivers\USBSTOR.SYS
  0x9205A000 \SystemRoot\system32\DRIVERS\RTL8192su.sys
  0x94800000 \SystemRoot\system32\DRIVERS\vwifibus.sys
  0x9480A000 \SystemRoot\system32\DRIVERS\lltdio.sys
  0x92103000 \SystemRoot\system32\DRIVERS\nwifi.sys
  0x92149000 \SystemRoot\system32\DRIVERS\ndisuio.sys
  0x92159000 \SystemRoot\system32\DRIVERS\rspndr.sys
  0x9216C000 \SystemRoot\system32\DRIVERS\vwifimp.sys
  0x92175000 \SystemRoot\system32\drivers\HTTP.sys
  0x923D7000 \SystemRoot\system32\DRIVERS\bowser.sys
  0x92200000 \SystemRoot\System32\drivers\mpsdrv.sys
  0x90A00000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
  0x9F61C000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
  0x9F657000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
  0x9F68A000 \SystemRoot\system32\DRIVERS\atksgt.sys
  0x9F6CD000 \SystemRoot\system32\DRIVERS\lirsgt.sys
  0x9F6D2000 \SystemRoot\system32\drivers\peauth.sys
  0x9F769000 \SystemRoot\System32\Drivers\secdrv.SYS
  0x9F773000 \SystemRoot\System32\DRIVERS\srvnet.sys
  0x9F794000 \SystemRoot\System32\drivers\tcpipreg.sys
  0x9F7A1000 \SystemRoot\System32\DRIVERS\srv2.sys
  0xA1434000 \SystemRoot\System32\DRIVERS\srv.sys
  0xA1485000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
  0xA14A6000 \SystemRoot\system32\drivers\spsys.sys
  0x77A40000 \Windows\System32\ntdll.dll
  0x482B0000 \Windows\System32\smss.exe
  0x77C80000 \Windows\System32\apisetschema.dll
  0x007D0000 \Windows\System32\autochk.exe
  0x77BA0000 \Windows\System32\msctf.dll
  0x778A0000 \Windows\System32\setupapi.dll
  0x77850000 \Windows\System32\gdi32.dll
  0x777A0000 \Windows\System32\msvcrt.dll
  0x77B90000 \Windows\System32\nsi.dll
  0x77B80000 \Windows\System32\lpk.dll
  0x77740000 \Windows\System32\shlwapi.dll
  0x77660000 \Windows\System32\kernel32.dll
  0x77500000 \Windows\System32\ole32.dll
  0x77450000 \Windows\System32\rpcrt4.dll
  0x77410000 \Windows\System32\ws2_32.dll
  0x773C0000 \Windows\System32\Wldap32.dll
  0x772B0000 \Windows\System32\urlmon.dll
  0x77220000 \Windows\System32\oleaut32.dll
  0x771A0000 \Windows\System32\comdlg32.dll
  0x77180000 \Windows\System32\sechost.dll
  0x77120000 \Windows\System32\difxapi.dll
  0x76F60000 \Windows\System32\iertutil.dll
  0x76E90000 \Windows\System32\user32.dll
  0x76E70000 \Windows\System32\imm32.dll
  0x76D50000 \Windows\System32\wininet.dll
  0x76CB0000 \Windows\System32\usp10.dll
  0x76C10000 \Windows\System32\advapi32.dll
  0x76B80000 \Windows\System32\clbcatq.dll
  0x76B70000 \Windows\System32\psapi.dll
  0x76B40000 \Windows\System32\imagehlp.dll
  0x76B30000 \Windows\System32\normaliz.dll
  0x75EE0000 \Windows\System32\shell32.dll
  0x75EB0000 \Windows\System32\cfgmgr32.dll
  0x75E90000 \Windows\System32\devobj.dll
  0x75E40000 \Windows\System32\KernelBase.dll
  0x75D20000 \Windows\System32\crypt32.dll
  0x75C90000 \Windows\System32\comctl32.dll
  0x75C60000 \Windows\System32\wintrust.dll
  0x75C50000 \Windows\System32\msasn1.dll

Processes (total 56):
       0 System Idle Process
       4 System
     284 C:\Windows\System32\smss.exe
     424 csrss.exe
     480 C:\Windows\System32\wininit.exe
     488 csrss.exe
     536 C:\Windows\System32\services.exe
     552 C:\Windows\System32\lsass.exe
     560 C:\Windows\System32\lsm.exe
     616 C:\Windows\System32\winlogon.exe
     708 C:\Windows\System32\svchost.exe
     804 C:\Windows\System32\nvvsvc.exe
     844 C:\Windows\System32\svchost.exe
     928 C:\Windows\System32\svchost.exe
     968 C:\Windows\System32\svchost.exe
     996 C:\Windows\System32\svchost.exe
    1072 C:\Windows\System32\audiodg.exe
    1132 C:\Windows\System32\svchost.exe
    1248 C:\Windows\System32\nvvsvc.exe
    1272 C:\Windows\System32\svchost.exe
    1544 C:\Windows\System32\spoolsv.exe
    1572 C:\Program Files\Avira\AntiVir Desktop\sched.exe
    1600 C:\Windows\System32\svchost.exe
    1724 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    1756 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    1764 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
    1772 C:\Windows\System32\conhost.exe
    1816 C:\Program Files\Bonjour\mDNSResponder.exe
    1856 C:\Windows\System32\svchost.exe
    1908 C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
    1992 C:\Windows\System32\PSIService.exe
    2012 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
     116 C:\Windows\System32\svchost.exe
     316 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
    1536 C:\Program Files\Intel\Intel(RRapid Storage Technology\IAStorDataMgrSvc.exe
     124 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
    2408 C:\Windows\System32\taskhost.exe
    2464 C:\Windows\System32\taskeng.exe
    2520 C:\Windows\System32\dwm.exe
    2644 C:\Windows\explorer.exe
    2824 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    2980 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    3004 C:\Program Files\Microsoft IntelliPoint\ipoint.exe
    3032 C:\Program Files\Windows Sidebar\sidebar.exe
    3088 WUDFHost.exe
    3228 C:\Windows\System32\svchost.exe
    3964 C:\Windows\System32\svchost.exe
    1080 dllhost.exe
    3588 C:\Program Files\Mozilla Firefox\firefox.exe
    3836 C:\Program Files\Google\Update\GoogleUpdate.exe
    1736 C:\Windows\System32\sppsvc.exe
    1928 C:\Windows\System32\svchost.exe
    3044 dllhost.exe
    2880 dllhost.exe
    2624 C:\Users\Kobi\Desktop\MBRCheck.exe
    2348 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000  (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x000000e3`a0b00000  (NTFS)

PhysicalDrive0 Model NumberWDCWD10EARS-00Y5B1Rev80.00A80

      Size  Device Name          MBR Status
  --------------------------------------------
    931 GB  \\.\PhysicalDrive0   Windows 7 MBR code detected
            SHA14379A3D43019B46FA357F7DD6A53B45A3CA8FB79


Done

Alt 06.04.2011, 22:45   #24
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs.
Denk dran beide Tools zu updaten vor dem Scan!!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 07.04.2011, 14:04   #25
Kronski
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


zuerst das logfile von SUPER:

PHP-Code:
SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com

Generated 04/07/2011 at 02:09 PM

Application Version 4.50.1002

Core Rules Database Version 6771
Trace Rules Database Version4583

Scan type       Complete Scan
Total Scan Time 00:26:45

Memory items scanned      710
Memory threats detected   0
Registry items scanned    11418
Registry threats detected 0
File items scanned        33966
File threats detected     1

Trojan.Agent/Gen-Falcomp[Cont]
    C:\WINDOWS\SYSTEM32\WAVEMSPB.DLL 
jetzt das von Malwarebytes:

PHP-Code:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Datenbank Version: 6298

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

07.04.2011 14:42:04
mbam-log-2011-04-07 (14-42-04).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Durchsuchte Objekte: 323854
Laufzeit: 32 Minute(n), 7 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden) 

Alt 07.04.2011, 14:42   #26
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


Nur ein Überrest, kannste löschen.
Rechner sonst wieder ok?
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 07.04.2011, 15:23   #27
Kronski
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


ich muss mich echt bedanken für die schnelle und kompetente Hilfe.
Alt 07.04.2011, 15:26   #28
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Google verlinkt mich falsch - Standard

Google verlinkt mich falsch


Dann wären wir durch!

Bitte abschließend die Updates prüfen, unten mein Leitfaden dazu.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.


Microsoftupdate

Windows XP: Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.

Windows Vista/7: Anleitung Windows-Update



PDF-Reader aktualisieren
Dein Adobe Reader ist nicht aktuell, was ein großes Sicherheitsrisiko darstellt. Du solltest daher besser die alte Version über Systemsteuerung => Software deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst.

Ich empfehle einen alternativen PDF-Reader wie SumatraPDF oder Foxit PDF Reader, beide sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers, hier der direkte Downloadlink:

Mozilla und andere Browser => http://filepony.de/?q=Flash+Player
Internet Explorer => http://fpdownload.adobe.com/get/flas..._player_ax.exe


Java-Update
Veraltete Java-Installationen sind ein Sicherheitsrisiko, daher solltest Du die alten Versionen löschen (falls vorhanden, am besten mit JavaRa) und auf die neuste aktualisieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.
__________________
Logfiles bitte immer in CODE-Tags posten

Antwort
Seite 2 von 2 1 2

Themen zu Google verlinkt mich falsch
andere, anhang, falsch, google, hijack, intrusion prevention, link, logfile, plug-in, seite, suche, verlinkt, wähle


« schon wieder Trojaner TR/Crypt.XPACK.Gen | Probleme mit Antimalware Doctor - Wie entfernen? »


Ähnliche Themen: Google verlinkt mich falsch


  1. Google verlinkt sich falsch
    Log-Analyse und Auswertung - 23.10.2012 (23)
  2. Google verlinkt falsch - Lösung?
    Log-Analyse und Auswertung - 29.04.2011 (19)
  3. Google verlinkt falsch
    Log-Analyse und Auswertung - 27.04.2011 (1)
  4. Browser verlinkt mich falsch u.a. Pornoseiten
    Log-Analyse und Auswertung - 23.01.2011 (1)
  5. Google verlinkt falsch / gomeo
    Log-Analyse und Auswertung - 08.12.2010 (4)
  6. Google verlinkt falsch bzw. andere links leiten falsch weiter!
    Log-Analyse und Auswertung - 01.02.2010 (17)
  7. Google verlinkt falsch im FF und IE
    Log-Analyse und Auswertung - 09.08.2009 (3)
  8. Google verlinkt falsch
    Log-Analyse und Auswertung - 07.06.2009 (35)
  9. Google verlinkt falsch
    Plagegeister aller Art und deren Bekämpfung - 20.12.2008 (0)
  10. google macht nicht das, was ich will - verlinkt mich falsch!!!
    Plagegeister aller Art und deren Bekämpfung - 26.09.2008 (1)
  11. Google verlinkt falsch - Laienlösung !!!
    Plagegeister aller Art und deren Bekämpfung - 14.09.2008 (25)
  12. Google verlinkt falsch
    Log-Analyse und Auswertung - 11.10.2007 (9)
  13. Google verlinkt auch bei mir falsch
    Plagegeister aller Art und deren Bekämpfung - 23.07.2007 (7)
  14. Google verlinkt falsch
    Plagegeister aller Art und deren Bekämpfung - 09.05.2007 (4)
  15. Google verlinkt falsch und ist automatisch Startseite
    Plagegeister aller Art und deren Bekämpfung - 10.02.2007 (6)
  16. Google Suchergebnisse falsch verlinkt
    Plagegeister aller Art und deren Bekämpfung - 27.09.2006 (1)
  17. Google verlinkt immer zuerst 2 mal falsch
    Log-Analyse und Auswertung - 11.08.2006 (12)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Google verlinkt mich falsch - hier ist die datei: PHP-Code: 2011 / 04 / 06 14 : 50 : 40.0276 2808    TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12 : 26 : 28 2011 / 04 / 06 14 : 50 : 40.0728 2808     ================================================================================ 2011 / - Google verlinkt mich falsch...
Archiv
Du betrachtest: Google verlinkt mich falsch auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131