Code: Alles auswählenAufklappen

ATTFilter

Zoek.exe v5.0.0.0 Updated 31-12-2014
Tool run by Tobi on 03.01.2015 at 17:47:00,97.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Tobi\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\Mozilla Firefox deleted successfully
C:\PROGRA~2\Navilog1 deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted successfully
C:\Users\Default\AppData\Local\Adobe deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_USERS\TEMP_2\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E3D96E85-529D-4269-AC6A-97CF9E2221E3} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E3D96E85-529D-4269-AC6A-97CF9E2221E3} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55ADADE8-B1A2-42DB-8AB8-71F7176B76} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55E8693D-F66C-48B8-9E24-3023A2E5A29F} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F573465-2AB1-4690-BF85-9D6099189AA9} deleted successfully
HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8273698E-2B3D-4BED-A35F-E3FFCF50B5EE} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Batch Command(s) Run By Tool======================


Windows-IP-Konfiguration

Der DNS-Aufl”sungscache wurde geleert.

==== Deleting Files \ Folders ======================

C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} not found
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\PROGRA~3\Package Cache deleted
C:\windows\patsearch.bin deleted
C:\windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\rxmg66m2.default\extensions\abs@avira.com deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8126 MB
CPU Info: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
CPU Speed: 3597,0 MHz
Sound Card: Lautsprecher (Realtek High Defi | 
Realtek Digital Output (Realtek | 
Display Adapters: ASUS R9 280 Series | ASUS R9 280 Series | ASUS R9 280 Series | ASUS R9 280 Series | ASUS R9 280 Series | ASUS R9 280 Series | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; PnP-Monitor (Standard) | 
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Realtek PCIe GBE Family Controller | Hamachi Network Interface
CD / DVD Drives: 1x (E: | ) E: ASUS    DRW-24F1ST   a
Ports: COM Ports NOT Present. LPT Port NOT Present. 
Mouse: 5 Button Wheel Mouse Present
Hard Disks: C:  250,0GB | D:  681,2GB | F:  232,8GB
Hard Disks - Free: C:  42,4GB | D:  674,4GB | F:  146,6GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 06/16/14 | ALASKA - 1072009
Time Zone: Mitteleuropäische Zeit
Motherboard *: ASUSTeK COMPUTER INC. H81M-PLUS
Country: Deutschland 
Language: DEU 

==== System Specs (Software) ======================

Anti-Virus: Avira Desktop On-access scanning disabled (Outdated)
Anti-Spyware: Avira Desktop disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Internet Explorer Version: 11.0.9600.17501 
Adobe Reader version: 11.0.10.32
Sun Java version: 1.7.0_71 (64-bit) 
Flash Player version: 15.0.0.246

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\rxmg66m2.default
user_pref("browser.startup.homepage", "about:home");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\rxmg66m2.default
- Undetermined - {73a6fe31-595d-460b-a920-fcc0f8843232}
- NoScript - %ProfilePath%\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Tobi\AppData\Roaming\Mozilla\Firefox\Profiles\rxmg66m2.default
9860727E477F17B88E39AF8B69B0407A	- C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll -	Shockwave Flash


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[14.07.2014 18:22]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://google.de/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://google.de/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="hxxp://www.google.com/search?q={searchTerms}"
{51D9FD66-0948-4F6C-AF61-1C3518E482A3} Unknown  Url="Not_Found"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-436329390-220876122-1825807824-1000\Software\Microsoft\Internet Explorer\SearchScopes\{51D9FD66-0948-4F6C-AF61-1C3518E482A3} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\raptrstub.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\skype.exe deleted successfully

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tobi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Tobi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Tobi\AppData\Local\Mozilla\Firefox\Profiles\rxmg66m2.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=171 folders=53 44086820 bytes)

==== Empty Temp Folders ======================

C:\Users\Administrator\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Tobi\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\Tobi\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 03.01.2015 at 17:57:30,60 ======================
         

Also ich muss sagen bis jetzt Läuft alles Tip Top

Muss echt sagen Top Forum und vor allem Top Hilfe!

Herzlichen Dank deeprybka!

Zitat:

Zitat von Chatter99

Herzlichen Dank deeprybka!

Gerne!

Wir sind aber noch nicht fertig...


Schritt 1

ESET Online Scanner

• Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
• Lade und starte Eset Online Scanner
• Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
• Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
• Klicke auf Starten.
• Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
• Klicke am Ende des Suchlaufs auf Fertig stellen.
• Schließe das Fenster von ESET.
• Explorer öffnen.
• C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
• Logfile hier posten.
• Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
• Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Schritt 2



Bitte starte FRST erneut, markiere auch die checkbox und drücke auf Scan.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.