Doppelt unterstrichene Links

Augustlöwe

AW: Doppelt unterstrichene Links
Hallo t'john,
anbei die nächsten Protokolle - hab leider das #-Symbol nicht gesehen - ich hoffe, es geht auch so - oder kann ich den Vorgang wiederholen?
Herzliche Grüße,
Pia

Zoek.exe Version 4.0.0.5 Updated 09-November-2013
Tool run by LT-Priv on 10.11.2013 at 15:23:00,28.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: E:\Users\LT-Priv\Downloads\Anti-Werbung\zoek\zoek.exe [Script inserted]

==== System Restore Info ======================

10.11.2013 15:24:54 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\LT-Priv\AppData\Roaming\Mozilla\Firefox\Profiles\a7o7ee36.default\prefs.js:

Added to C:\Users\LT-Priv\AppData\Roaming\Mozilla\Firefox\Profiles\a7o7ee36.default\prefs.js:

Deleted from C:\Users\LT-Priv\AppData\Roaming\Mozilla\Firefox\Profiles\mData\prefs.js:

Added to C:\Users\LT-Priv\AppData\Roaming\Mozilla\Firefox\Profiles\mData\prefs.js:
user_pref("browser.startup.homepage", "hxxp://www.google.com");
user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "hxxp://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Surfer\AppData\Roaming\Mozilla\Firefox\Profiles\9xm4iibr.default\prefs.js:

Added to C:\Users\Surfer\AppData\Roaming\Mozilla\Firefox\Profiles\9xm4iibr.default\prefs.js:
user_pref("browser.startup.homepage", "hxxp://www.google.com");
user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "hxxp://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\Users\LT-Priv\AppData\Roaming\glide_wrapper.zbag.ini deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\AVG Secure Search deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job deleted
C:\windows\SysNative\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"="C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5" [26.06.2013 00:07]

==== Firefox Extensions ======================

ProfilePath: C:\Users\LT-Priv\AppData\Roaming\Mozilla\Firefox\Profiles\a7o7ee36.default
- Plus-HD-2.3 - %ProfilePath%\extensions\7125a285-7e68-47aa-9d72-e81874f4d47e@d3fcdb92-135d-4a8a-8cf6-11e3b57c5fda.com
- Element Hiding Helper for Adblock Plus - %ProfilePath%\extensions\elemhidehelper@adblockplus.org.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
- Adblock Edge - %ProfilePath%\extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi

ProfilePath: C:\Users\Surfer\AppData\Roaming\Mozilla\Firefox\Profiles\9xm4iibr.default
- Plus-HD-2.3 - %ProfilePath%\extensions\7125a285-7e68-47aa-9d72-e81874f4d47e@d3fcdb92-135d-4a8a-8cf6-11e3b57c5fda.com

==== Firefox Plugins ======================

Profilepath: C:\Users\LT-Priv\AppData\Roaming\Mozilla\Firefox\Profiles\a7o7ee36.default
4BF70B35B943BD73BD6E13EB7C1BA4B3 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll - Shockwave Flash
AE3E1BD0D6C6A9116B44B341B27B3AEE - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director
9C06DBC403F91D518ED117E460F03F85 - E:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL - CANON iMAGE GATEWAY Album Plugin Utility for IJ


==== Deleted Firefox Extensions ======================

C:\Users\LT-Priv\AppData\Roaming\Mozilla\Firefox\Profiles\a7o7ee36.default\extensions\7125a285-7e68-47aa-9d72-e81874f4d47e@d3fcdb92-135d-4a8a-8cf6-11e3b57c5fda.com deleted
C:\Users\Surfer\AppData\Roaming\Mozilla\Firefox\Profiles\9xm4iibr.default\extensions\7125a285-7e68-47aa-9d72-e81874f4d47e@d3fcdb92-135d-4a8a-8cf6-11e3b57c5fda.com deleted

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.google.de/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.google.de/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\LT-Priv\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\LT-Priv\AppData\Local\Mozilla\Firefox\Profiles\a7o7ee36.default\Cache emptied successfully
C:\Users\Surfer\AppData\Local\Mozilla\Firefox\Profiles\9xm4iibr.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 10.11.2013 at 16:00:38,85 ======================


Hier das ESET Logfile:

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=29679237ec97234b948ca47f2de6cddb
# engine=15826
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-11-10 06:38:13
# local_time=2013-11-10 07:38:13 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1286 16777213 100 98 17042 38875015 0 0
# compatibility_mode=5893 16776574 66 85 10616173 135738543 0 0
# scanned=561174
# found=2
# cleaned=0
# scan_time=12406
sh=F0B29AF713AADA048782CFE60CE41C1481E121BE ft=1 fh=11d48f8cf873b1af vn="multiple threats" ac=I fn="E:\Users\LT-Priv\Downloads\Planet_of_Death_Gold_Edition_POD_Gold_.exe"
sh=CAE8546F14AA1A2AA627EFADBBAF50F8432BAEB8 ft=1 fh=418a8b0c0ee17ec3 vn="multiple threats" ac=I fn="E:\Users\LT-Priv\Downloads\_Ubisoft]_[1997,_1998]_Planet_of_Death_-_Gold_Edition_(POD_Gold).exe"

alles erledigt! Anbei das letzte Logfile von SecurityCheck:

Results of screen317's Security Check version 0.99.74
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 10
``````````````Antivirus/Firewall Check:``````````````
Kaspersky Internet Security
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware Version 1.75.0.1300
Adobe Flash Player 11.9.900.117
Adobe Reader 10.1.8 Adobe Reader out of Date!
Mozilla Firefox (25.0)
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
Internet Manager OnlineUpdate ouc.exe
Kaspersky Lab Kaspersky Internet Security 2013 avp.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````


Danke + Grüße,
Pia