weiter leiten auf seektoexplore.com Hallo, ich bin neu hier und wenn es das Thema schon gibt dann tut es mir leid.... Nun zu mein Problem ich werde bei einigen seiten auf diese Seite geleitet seektoexplore.com und ich habe keine Ahnung wie ich das wieder weg bekomme.:confused: Ich habe Windows 8.1, 64 bit und benutze google chrome. danke schon mal für eure hilfe. :) Lg Vivi |
hi, Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
|
FRST Logfile: FRST Logfile: Code: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-02-2015 01 --- --- --- FRST Additions Logfile: Code: Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-02-2015 01 |
Lade Dir bitte von hier Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte. |
Malwarebytes Anti-Malware Malwarebytes | Free Anti-Malware & Internet Security Software Suchlauf Datum: 05.02.2015 Suchlauf-Zeit: 21:09:26 Logdatei: mbam.txt Administrator: Ja Version: 2.00.2.1012 Malware Datenbank: v2014.09.30.03 Rootkit Datenbank: v2014.09.19.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Self-protection: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: viola Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 393037 Verstrichene Zeit: 40 Min, 55 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristics: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 2 PUP.Optional.ZombieInvasion.A, C:\ProgramData\IEtikvV\kPNWJrtEO.exe, 3040, Löschen bei Neustart, [4784f6fd9fdc063004806b4ba65b01ff] PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, 1520, Löschen bei Neustart, [b71432c1205bef47563ffef8db274bb5] Module: 0 (No malicious items detected) Registrierungsschlüssel: 8 PUP.Optional.ZombieInvasion.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\kPNWJrtEO, In Quarantäne, [4784f6fd9fdc063004806b4ba65b01ff], PUP.Optional.Spigot, HKLM\SOFTWARE\CLASSES\CLSID\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}, In Quarantäne, [3695d12275062e0893dca2f643bf45bb], PUP.Optional.Spigot, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5}, In Quarantäne, [3695d12275062e0893dca2f643bf45bb], PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, In Quarantäne, [ba11ad46eb9069cd46fe3940d1339868], PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\webssearchesSoftware, In Quarantäne, [c803e11256254cea05777fb77e855aa6], PUP.Optional.Qone8, HKU\S-1-5-21-2666474899-350018585-593986233-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, In Quarantäne, [8d3ee21102792f07745e2b3946beff01], PUP.Optional.FastStart.A, HKU\S-1-5-21-2666474899-350018585-593986233-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS, In Quarantäne, [3695e50efa8111259e8dac64847f59a7], PUP.Optional.WPM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, In Quarantäne, [b71432c1205bef47563ffef8db274bb5], Registrierungswerte: 2 PUP.Optional.FastStart.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com, In Quarantäne, [3c8f6390a0db2610c6967cfc8e768977] PUP.Optional.FastStart.A, HKU\S-1-5-21-2666474899-350018585-593986233-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, faststartff@gmail.com, In Quarantäne, [3695e50efa8111259e8dac64847f59a7] Registrierungsdaten: 10 PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, C:\Program Files (x86)\Mozilla Firefox\firefox.exe webssearches, Gut: (firefox.exe), Schlecht: (C:\Program Files (x86)\Mozilla Firefox\firefox.exe webssearches,[83488271d7a42d093cce19ef877ec838] PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1421753800&from=cvs5&uid=HGSTXHTS541010A9E680_JA1000CRGLENEKGLENEKX&q={searchTerms}, Gut: (Google), Schlecht: (hxxp://istart.webssearches.com/web/?type=ds&ts=1421753800&from=cvs5&uid=HGSTXHTS541010A9E680_JA1000CRGLENEKGLENEKX&q={searchTerms}),Ersetzt,[5f6c0be8d3a81f17a65c8e7abb4a817f] PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, webssearches, Gut: (Google), Schlecht: (webssearches,[f9d2b241b9c20036a65ae226a95c748c] PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, webssearches, Gut: (Google), Schlecht: (webssearches,[ffcc1ad9dd9ee5518282a8603fc6728e] PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, C:\Program Files (x86)\Mozilla Firefox\firefox.exe webssearches, Gut: (firefox.exe), Schlecht: (C:\Program Files (x86)\Mozilla Firefox\firefox.exe webssearches,[3b90c52e146796a09d6df01857aed22e] PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, webssearches, Gut: (Google), Schlecht: (webssearches,[903b8d6678038da93aca8c7c0ef7a35d] PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, webssearches, Gut: (Google), Schlecht: (webssearches,[408bf5fe5b2054e225dbb0589f66cf31] PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1421753800&from=cvs5&uid=HGSTXHTS541010A9E680_JA1000CRGLENEKGLENEKX&q={searchTerms}, Gut: (Google), Schlecht: (hxxp://istart.webssearches.com/web/?type=ds&ts=1421753800&from=cvs5&uid=HGSTXHTS541010A9E680_JA1000CRGLENEKGLENEKX&q={searchTerms}),Ersetzt,[63684da6c9b24ee8976b14f465a0db25] PUP.Optional.Spigot.A, HKU\S-1-5-21-2666474899-350018585-593986233-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, https://de.search.yahoo.com/?type=937811&fr=spigot-yhp-ie, Gut: (Google), Schlecht: (https://de.search.yahoo.com/?type=937811&fr=spigot-yhp-ie),Ersetzt,[0dbea54e1665ba7c9ba86e995aabc53b] PUP.Optional.WebsSearches.A, HKU\S-1-5-21-2666474899-350018585-593986233-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, webssearches, Gut: (Google), Schlecht: (webssearches,[6d5e6f840b70f541ce3321e77590cb35] Ordner: 37 PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\include, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\module, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\en, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\en-US, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\es, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\es-419, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-BE, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CA, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CH, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-LU, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\it, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\it-CH, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\pl, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\pt-BR, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\ru, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\ru-MO, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\tr, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\vi, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-CN, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-TW, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\defaults, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\defaults\preferences, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, Löschen bei Neustart, [b71432c1205bef47563ffef8db274bb5], PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, In Quarantäne, [b71432c1205bef47563ffef8db274bb5], PUP.Optional.ZombieInvasion.A, C:\Users\TEMP\AppData\Local\ZombieInvasion, In Quarantäne, [00cb7182c5b689ad14ec48bd15ee50b0], PUP.Optional.ZombieInvasion.A, C:\Users\viola\AppData\Local\ZombieInvasion, In Quarantäne, [b21918dba7d443f3b34dd72ed72c16ea], Dateien: 79 PUP.Optional.ZombieInvasion.A, C:\ProgramData\IEtikvV\kPNWJrtEO.exe, Löschen bei Neustart, [4784f6fd9fdc063004806b4ba65b01ff], PUP.Optional.ZombieInvasion.A, C:\ProgramData\IEtikvV\dat\raPzQoQqdG.exe, Löschen bei Neustart, [468582714a31aa8ce89c189ef40d50b0], PUP.Optional.ZombieInvasion.A, C:\ProgramData\IEtikvV\dat\zLoKjXrOrz.exe, Löschen bei Neustart, [5f6c63907803ba7cbbc9d7df8879a15f], PUP.Optional.WebSearchs.A, C:\Users\TEMP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage, In Quarantäne, [9d2ec03393e81d191d1b29f225dea858], PUP.Optional.WebSearchs.A, C:\Users\TEMP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage-journal, In Quarantäne, [4e7d25ce403b0a2c4fe931eac043cc34], PUP.Optional.WebSearchs.A, C:\Users\viola\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage, Löschen bei Neustart, [fbd0b2418cef30066fc98e8df112d22e], PUP.Optional.WebSearchs.A, C:\Users\viola\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage-journal, Löschen bei Neustart, [3497f8fb2754fe38a59340db48bba15f], PUP.Optional.Superfish.A, C:\Users\TEMP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, In Quarantäne, [7c4ff201433865d148b4da50c14260a0], PUP.Optional.Superfish.A, C:\Users\TEMP\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, In Quarantäne, [10bbfbf83447b77ff20a35f52ed52ed2], PUP.Optional.Superfish.A, C:\Users\viola\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, Löschen bei Neustart, [b714b340710a5adc33c9bc6ef310e917], PUP.Optional.Superfish.A, C:\Users\viola\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, Löschen bei Neustart, [2d9e70832259e55122da0624f60d6799], PUP.Optional.WebsSearches.A, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml, In Quarantäne, [f3d8b73c007bfa3c94ea3df944bfe21e], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome.manifest, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\install.rdf, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\index.html, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\quick_start.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\quick_start.xul, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\include\speed_dial.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\about_blank_hoo k.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\misc.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\popup_image_hel per.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\urlrequestor.js , In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\js.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib\doT.min.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery-2.1.0.min.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery.autocomplete.js , In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\hotSearch.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\mostgrid.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\search.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\stat.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack\common.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack\ga.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack\xagainit.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\en\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\en-US\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\es\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\es-419\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-BE\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CA\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CH\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-LU\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\it\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\it-CH\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\pl\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\pt-BR\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\ru\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\ru-MO\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\tr\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\vi\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-CN\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-TW\locale.properties, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\default_logo.png, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\googlelogo.png, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\google_trends.png, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\icon.png, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\loading.gif, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\logo.png, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\newtab.ico, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\simple.css, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\chrome\skin\style.css, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\defaults\preferences\fvd.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\defaults\preferences\preferences.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\addonmanager.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\aes.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\config.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\dialogs.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\last_tab.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\misc.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\properties.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\remoterequest.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\restoreprefs.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.FastStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\extensions\faststartff@gmail.com\modules\settings.js, In Quarantäne, [28a3658e7506152174e33db8748e32ce], PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, Löschen bei Neustart, [b71432c1205bef47563ffef8db274bb5], PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update\conf, In Quarantäne, [b71432c1205bef47563ffef8db274bb5], PUP.Optional.ZombieInvasion.A, C:\Users\TEMP\AppData\Local\ZombieInvasion\data2.dat, In Quarantäne, [00cb7182c5b689ad14ec48bd15ee50b0], PUP.Optional.ZombieInvasion.A, C:\Users\viola\AppData\Local\ZombieInvasion\data2.dat, In Quarantäne, [b21918dba7d443f3b34dd72ed72c16ea], PUP.Optional.QuickStart.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");), Ersetzt,[24a7c82b6417ec4a95f53d077d88659b] PUP.Optional.Spigot.A, C:\Users\viola\AppData\Roaming\Mozilla\Firefox\Profiles\pgqev8qo.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.startup.homepage", "https://de.search.yahoo.com/?type=937811&fr=spigot-yhp-ff");), Ersetzt,[d6f5b241e992989e4998ec58ca3b946c] Physische Sektoren: 0 (No malicious items detected) (end) AdwCleaner Logfile: Code: # AdwCleaner v4.109 - Bericht erstellt am 05/02/2015 um 22:26:45 Code: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |
ESET Online Scanner
Downloade Dir bitte SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? :) |
Code: ESETSmartInstaller@High as downloader log: Results of screen317's Security Check version 0.99.96 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Defender avast! Antivirus Antivirus out of date! `````````Anti-malware/Other Utilities Check:````````` Java 8 Update 25 Java version 32-bit out of Date! Java 64-bit 8 Update 31 Adobe Flash Player 16.0.0.305 Mozilla Firefox 33.1 Firefox out of Date! Google Chrome (40.0.2214.111) Google Chrome (40.0.2214.94) ````````Process Check: objlist.exe by Laurent```````` AVAST Software Avast AvastSvc.exe AVAST Software Avast avastui.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` Vielen Dank... es funktioniert alles wieder :) Hätte da noch eine andere Frage... gibt es auf dem Pc einen Ordner wo Cookies gespeichert sind ? Oder ist das nur beim Browser da?? |
Das Programm FRST öffnen, welches wir am Anfang geladen haben, Button Scan drücken und Log posten :) Cookies werden von Browser zu Browser unterschiedlich gespeichert. |
Alle Zeitangaben in WEZ +1. Es ist jetzt 08:11 Uhr. |
Copyright ©2000-2024, Trojaner-Board