Falsche Links von Google, egal ob IE oder Firefox

be1001 · 06.04.2011, 23:22

Cofi Logfile

Code:

ATTFilter

ComboFix 11-04-06.01 - christian_beilfuss 07.04.2011   0:02.1.2 - x86
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.3318.2372 [GMT 2:00]
ausgeführt von:: c:\users\christian_xxxx\Desktop\cofi.exe
AV: McAfee Anti-Virus und Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: McAfee Anti-Virus und Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\html
c:\windows\system32\html\calendar.html
c:\windows\system32\html\calendarbottom.html
c:\windows\system32\html\calendartop.html
c:\windows\system32\html\crystalexportdialog.htm
c:\windows\system32\html\crystalprinthost.html
c:\windows\system32\images
c:\windows\system32\images\Direction\backward.gif
c:\windows\system32\images\Direction\backward_disabled.gif
c:\windows\system32\images\Direction\down.gif
c:\windows\system32\images\Direction\end.gif
c:\windows\system32\images\Direction\end_disabled.gif
c:\windows\system32\images\Direction\fastbackward.gif
c:\windows\system32\images\Direction\fastbackward_disabled.gif
c:\windows\system32\images\Direction\fastforward.gif
c:\windows\system32\images\Direction\fastforward_disabled.gif
c:\windows\system32\images\Direction\forward.gif
c:\windows\system32\images\Direction\forward_disabled.gif
c:\windows\system32\images\Direction\goto.gif
c:\windows\system32\images\Direction\goto_disabled.gif
c:\windows\system32\images\Direction\start.gif
c:\windows\system32\images\Direction\start_disabled.gif
c:\windows\system32\images\Direction\up.gif
c:\windows\system32\images\misc\bell.gif
c:\windows\system32\images\toolbar\addallfield.gif
c:\windows\system32\images\toolbar\addallfield_over.gif
c:\windows\system32\images\toolbar\addfield.gif
c:\windows\system32\images\toolbar\addfield_over.gif
c:\windows\system32\images\toolbar\bologo.gif
c:\windows\system32\images\toolbar\calendar.gif
c:\windows\system32\images\toolbar\export.gif
c:\windows\system32\images\toolbar\export_over.gif
c:\windows\system32\images\toolbar\first.gif
c:\windows\system32\images\toolbar\first_over.gif
c:\windows\system32\images\toolbar\firstd.gif
c:\windows\system32\images\toolbar\firstresults.gif
c:\windows\system32\images\toolbar\firstresults_over.gif
c:\windows\system32\images\toolbar\gotopage.gif
c:\windows\system32\images\toolbar\gotopage_over.gif
c:\windows\system32\images\toolbar\grouptree.gif
c:\windows\system32\images\toolbar\grouptree_over.gif
c:\windows\system32\images\toolbar\grouptreepressed.gif
c:\windows\system32\images\toolbar\help.gif
c:\windows\system32\images\toolbar\help_over.gif
c:\windows\system32\images\toolbar\interact.gif
c:\windows\system32\images\toolbar\interact_over.gif
c:\windows\system32\images\toolbar\interactd.gif
c:\windows\system32\images\toolbar\last.gif
c:\windows\system32\images\toolbar\last_over.gif
c:\windows\system32\images\toolbar\lastd.gif
c:\windows\system32\images\toolbar\lastresults.gif
c:\windows\system32\images\toolbar\lastresults_over.gif
c:\windows\system32\images\toolbar\left_button.gif
c:\windows\system32\images\toolbar\mblackarrow.gif
c:\windows\system32\images\toolbar\mdownarrow.gif
c:\windows\system32\images\toolbar\mdownfield.gif
c:\windows\system32\images\toolbar\mdownfield_over.gif
c:\windows\system32\images\toolbar\middle_button.gif
c:\windows\system32\images\toolbar\mlogo.gif
c:\windows\system32\images\toolbar\mtitleimage.gif
c:\windows\system32\images\toolbar\muparrow.gif
c:\windows\system32\images\toolbar\mupfield.gif
c:\windows\system32\images\toolbar\mupfield_over.gif
c:\windows\system32\images\toolbar\next.gif
c:\windows\system32\images\toolbar\next_over.gif
c:\windows\system32\images\toolbar\nextd.gif
c:\windows\system32\images\toolbar\nextresults.gif
c:\windows\system32\images\toolbar\nextresults_over.gif
c:\windows\system32\images\toolbar\prev.gif
c:\windows\system32\images\toolbar\prev_over.gif
c:\windows\system32\images\toolbar\prevd.gif
c:\windows\system32\images\toolbar\prevresults.gif
c:\windows\system32\images\toolbar\prevresults_over.gif
c:\windows\system32\images\toolbar\print.gif
c:\windows\system32\images\toolbar\print_over.gif
c:\windows\system32\images\toolbar\refresh.gif
c:\windows\system32\images\toolbar\refresh_over.gif
c:\windows\system32\images\toolbar\refreshd.gif
c:\windows\system32\images\toolbar\removeallfield.gif
c:\windows\system32\images\toolbar\removeallfield_over.gif
c:\windows\system32\images\toolbar\removefield.gif
c:\windows\system32\images\toolbar\removefield_over.gif
c:\windows\system32\images\toolbar\right_button.gif
c:\windows\system32\images\toolbar\search.gif
c:\windows\system32\images\toolbar\search_over.gif
c:\windows\system32\images\toolbar\separator.gif
c:\windows\system32\images\toolbar\tab_fill_sel.gif
c:\windows\system32\images\toolbar\tab_fill_unsel.gif
c:\windows\system32\images\toolbar\tab_left_sel.gif
c:\windows\system32\images\toolbar\tab_left_unsel.gif
c:\windows\system32\images\toolbar\tab_right_sel.gif
c:\windows\system32\images\toolbar\tab_right_unsel.gif
c:\windows\system32\images\toolbar\up.gif
c:\windows\system32\images\toolbar\up_over.gif
c:\windows\system32\images\toolbar\upd.gif
c:\windows\system32\images\toolbar\view.gif
c:\windows\system32\images\toolbar\view_over.gif
c:\windows\system32\images\toolbar\viewpressed.gif
c:\windows\system32\images\toolbar\wizard.gif
c:\windows\system32\images\toolbar\wizard_over.gif
c:\windows\system32\images\toolbar\wizardpressed.gif
c:\windows\system32\images\tree\begindots.gif
c:\windows\system32\images\tree\beginminus.gif
c:\windows\system32\images\tree\beginplus.gif
c:\windows\system32\images\tree\blank.gif
c:\windows\system32\images\tree\blankdots.gif
c:\windows\system32\images\tree\dots.gif
c:\windows\system32\images\tree\emptybox.gif
c:\windows\system32\images\tree\lastdots.gif
c:\windows\system32\images\tree\lastminus.gif
c:\windows\system32\images\tree\lastplus.gif
c:\windows\system32\images\tree\magnify.gif
c:\windows\system32\images\tree\mdownarrow.gif
c:\windows\system32\images\tree\minubox.gif
c:\windows\system32\images\tree\minus.gif
c:\windows\system32\images\tree\minusbox.gif
c:\windows\system32\images\tree\muparrow.gif
c:\windows\system32\images\tree\plus.gif
c:\windows\system32\images\tree\plusbox.gif
c:\windows\system32\images\tree\resizebar.gif
c:\windows\system32\images\tree\singleminus.gif
c:\windows\system32\images\tree\singleplus.gif
.
.
(((((((((((((((((((((((   Dateien erstellt von 2011-03-06 bis 2011-04-06  ))))))))))))))))))))))))))))))
.
.
2011-04-06 22:12 . 2011-04-06 22:12	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-04-06 21:31 . 2011-04-06 21:32	--------	d-----w-	C:\Angry
2011-04-05 18:38 . 2011-04-06 16:19	--------	d-----w-	C:\_OTL
2011-03-30 19:32 . 2011-03-30 19:32	--------	d-----w-	c:\program files\Common Files\Java
2011-03-13 17:51 . 2011-03-13 17:51	--------	d-----w-	c:\program files\Safari
2011-03-13 17:47 . 2011-03-13 17:47	--------	d-----w-	c:\program files\iPod
2011-03-13 17:47 . 2011-03-13 17:48	--------	d-----w-	c:\program files\iTunes
2011-03-09 20:19 . 2011-02-19 06:30	805376	----a-w-	c:\windows\system32\FntCache.dll
2011-03-09 20:19 . 2011-02-19 06:30	1076736	----a-w-	c:\windows\system32\DWrite.dll
2011-03-09 20:19 . 2011-02-19 06:30	739840	----a-w-	c:\windows\system32\d2d1.dll
2011-03-09 20:19 . 2010-12-23 05:54	850944	----a-w-	c:\windows\system32\sbe.dll
2011-03-09 20:19 . 2010-12-23 05:54	642048	----a-w-	c:\windows\system32\CPFilters.dll
2011-03-09 20:19 . 2010-12-23 05:54	534528	----a-w-	c:\windows\system32\EncDec.dll
2011-03-09 20:19 . 2010-12-23 05:50	199680	----a-w-	c:\windows\system32\mpg2splt.ax
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-06 16:11 . 2010-12-28 18:53	4194304	----a-w-	c:\windows\ServiceProfiles\NetworkService\msmqlog.bin
2011-03-09 20:10 . 2010-06-24 10:33	18328	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-03 19:59 . 2009-07-14 02:05	152576	----a-w-	c:\windows\system32\msclmd.dll
2011-02-03 05:54 . 2011-02-08 19:25	219008	----a-w-	c:\windows\system32\drivers\dxgmms1.sys
2011-02-02 19:40 . 2011-01-16 14:26	472808	----a-w-	c:\windows\system32\deployJava1.dll
2011-01-17 05:47 . 2011-03-03 19:04	161792	----a-w-	c:\windows\system32\d3d10_1.dll
2011-01-07 07:46 . 2011-02-23 20:26	870912	----a-w-	c:\windows\system32\XpsPrint.dll
2011-01-07 07:46 . 2011-02-23 20:26	288256	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2011-01-07 07:45 . 2011-02-08 19:26	34304	----a-w-	c:\windows\system32\atmlib.dll
2011-01-07 06:01 . 2011-02-08 19:27	1638912	----a-w-	c:\windows\system32\mshtml.tlb
2011-01-07 05:43 . 2011-02-08 19:26	294400	----a-w-	c:\windows\system32\atmfd.dll
2010-10-13 21:28 . 2010-12-05 13:25	24376	----a-w-	c:\program files\mozilla firefox\components\Scriptff.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-05-21 11:17	1233288	----a-w-	c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-05-21 1233288]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-05-21 1233288]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-12-03 39408]
"Adobe Acrobat Synchronizer"="c:\program files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe" [2011-01-30 1219488]
"Google Update"="c:\users\christian_beilfuss\AppData\Local\Google\Update\GoogleUpdate.exe" [2011-01-16 136176]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-10-25 932288]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2011-01-30 36760]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2011-01-30 821144]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-09-30 1193848]
"iSaverCtrl"="c:\program files\iSaver\iSaverCtrl.exe" [2009-06-08 1160192]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
"SerExt"="SerExt.exe" [2008-12-28 57672]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2009-01-29 57344]
"NBAgent"="c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-10-28 1406248]
"FreePDF Assistant"="c:\program files\FreePDF_XP\fpassist.exe" [2010-06-17 370176]
"WrtMon.exe"="c:\windows\system32\spool\drivers\w32x86\3\WrtMon.exe" [2007-07-18 20480]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-03-07 421160]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-12-14 47904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
.
c:\users\christian_beilfuss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
RC.exe.lnk - c:\program files\DTV\DVB-T USB 2.0\RC.exe [N/A]
swHsExit 172.29.170.90.exe [2011-1-6 247808]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Hardcopy.LNK - c:\program files\Hardcopy\hardcopy.exe [2010-12-3 1726976]
init ekey BIT_TS.lnk - c:\program files\ekey\ekey BIT\ekeyBitTS.exe [2010-12-3 49152]
Microsoft Office.lnk - c:\programme\Microsoft Office\Office10\OSA.EXE [2010-12-3 83360]
WISO Mein Sparbuch heute.lnk - c:\program files\WISO\Sparbuch 2010\meinsparbuchheute.exe [2011-2-20 1169008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^talk&surf 6.0 - Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\talk&surf 6.0 - Monitor.lnk
backup=c:\windows\pss\talk&surf 6.0 - Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 ekeySvcGuard;ekey Service Guard;c:\program files\ekey\ekey net\ekeySvcGuard.exe [2010-11-18 1239552]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-03 136176]
R2 NPser;NPser;c:\windows\system32\drivers\npser.sys [x]
R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
R3 BDA_Capture_220A;Digital-TV receiver Driver 3.0.1.18;c:\windows\system32\Drivers\BDA_Capture_220A.sys [2007-02-27 17152]
R3 BDA_Loader_220A;Digital-TV Receiver Firmware Loader 6.7.10.0;c:\windows\system32\Drivers\BDA_Loader_220A.sys [2006-07-10 16896]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-10-13 84264]
R3 mxuwdrv2;MOXA UPort 1110/1130/1150 Windows Driver;c:\windows\system32\DRIVERS\mxuwdrv2.sys [2009-04-27 65176]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-06-25 35088]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 xControlCOM;xControlCOM;c:\program files\Gigaset DECT\talk&surf_6_0\xcontrolcom.exe [2005-03-01 327680]
R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 44896]
R4 RsFx0150;RsFx0150 Driver;c:\windows\system32\DRIVERS\RsFx0150.sys [2010-04-03 240608]
R4 SQLAgent$KNXETS4;SQL Server Agent (KNXETS4);c:\program files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\SQLAGENT.EXE [2010-04-03 367456]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-10-13 164840]
S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2010-10-13 64304]
S2 ekey bit service;ekey bit service;c:\windows\system32\ekeybits.exe [2008-04-30 65536]
S2 ekeyCommunicationserver;ekey Communicationserver;c:\program files\ekey\ekey net\ekeyCommunicationServer.exe [2010-11-18 1326592]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
S2 McMPFSvc;McAfee Personal Firewall-Dienst;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-10-13 188136]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2010-10-13 141792]
S2 MSSQL$KNXETS4;SQL Server (KNXETS4);c:\program files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\sqlservr.exe [2010-04-03 42884448]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2011-01-26 573224]
S2 npsrcsvr;NPort Secure Service;c:\windows\system32\npsrcsvr.exe [2010-02-11 757760]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-10-13 55840]
S3 DectEnum;DectEnum;c:\windows\system32\Drivers\DectEnum.sys [2005-03-01 8448]
S3 HRCMPA;ISDN Wan driver (Ver. 1.20.0032);c:\windows\system32\DRIVERS\hrcmpa.sys [2004-09-08 263751]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-10-13 313288]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000-Serie - Adaptertreiber für Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 nptdrv2;Moxa NPort RealCOM Driver;c:\windows\system32\DRIVERS\nptdrv2.sys [2010-02-11 78976]
S3 Pei10Wdm;PEI10 Protokoll Treiber;c:\windows\system32\Drivers\Pei10Wdm.sys [2002-08-15 35547]
S3 Pei16Wdm;PEI16 Protokoll Treiber;c:\windows\system32\Drivers\Pei16Wdm.sys [2002-09-19 34683]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - KLMD25
*Deregistered* - klmd25
*Deregistered* - mfeavfk01
.
Inhalt des "geplante Tasks" Ordners
.
2011-04-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-03 15:58]
.
2011-04-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-03 15:58]
.
2011-04-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2628372444-4252041772-2687681247-1000Core.job
- c:\users\christian_beilfuss\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-16 14:16]
.
2011-04-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2628372444-4252041772-2687681247-1000UA.job
- c:\users\christian_beilfuss\AppData\Local\Google\Update\GoogleUpdate.exe [2011-01-16 14:16]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: An vorhandene PDF-Datei anfügen - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
IE: In Adobe PDF konvertieren - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Linkziel an vorhandene PDF-Datei anhängen - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Linkziel in Adobe PDF konvertieren - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Nach Microsoft &Excel exportieren - c:\programme\Microsoft Office\Office10\EXCEL.EXE/3000
FF - ProfilePath - c:\users\christian_beilfuss\AppData\Roaming\Mozilla\Firefox\Profiles\wnt99gdt.default\
FF - prefs.js: browser.search.selectedEngine - 
FF - prefs.js: keyword.URL - hxxp://de.search.yahoo.com/search?fr=mcafee&p=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Google Toolbar for Firefox: {3112ca9c-de6d-4884-a869-9855de68056c} - c:\programdata\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c}
FF - Ext: Adobe Acrobat - Create PDF: web2pdfextension@web2pdf.adobedotcom - c:\program files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF - Ext: McAfee SiteAdvisor: {B7082FAA-CB62-4872-9106-E42DD88EDE45} - c:\program files\McAfee\SiteAdvisor
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF - Ext: Google Toolbar for Firefox: {3112ca9c-de6d-4884-a869-9855de68056c} - %profile%\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2011-04-07  00:15:15
ComboFix-quarantined-files.txt  2011-04-06 22:15
.
Vor Suchlauf: 35 Verzeichnis(se), 39.110.152.192 Bytes frei
Nach Suchlauf: 40 Verzeichnis(se), 38.879.350.784 Bytes frei
.
- - End Of File - - 7B94BFD5F007B67613A18FB8BB924F2D

Falsche Links von Google, egal ob IE oder Firefox

Plagegeister aller Art und deren Bekämpfung: Falsche Links von Google, egal ob IE oder Firefox

Falsche Links von Google, egal ob IE oder Firefox

Ähnliche Themen: Falsche Links von Google, egal ob IE oder Firefox