Firefox: Probleme mit Werbung +Script

deeprybka · 12.02.2015, 21:57

Schritt 1
Echtzeitschutz des Virenscanners abschalten.

Schritt 2
Download von

ZOEK (by Smeenk)

Speichere die zoek.exe auf dem Desktop.
Bitte deaktiviere während der Verwendung von Zoek Deinen Virenscanner, da dieser Zoek stören könnte.
Starte die zoek.exe mit einem Doppelklick und warte bis die Programmoberfläche erscheint (ca. 30 Sekunden)

Kopiere den Text der folgenden Box in das Skriptfenster von Zoek:

Code:

ATTFilter

services-list;
systemspecs;
startupall;
filesrcm;
CHRdefaults;
iedefaults;
FFdefaults;
emptyclsid;
autoclean;

Nun klicke auf "Run script" und sei geduldig bis das Skript durchgelaufen ist.
Wenn das Tool fertig ist, wird sich eine Logdatei öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter C:\
Bitte poste mir das zoek-results.log.

lexib · 22.02.2015, 18:08

Hier das zoek log:

Code:

ATTFilter

Zoek.exe v5.0.0.0 Updated 22-February-2015
Tool run by Fred on 22.02.2015 at 17:33:48,82.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Fred\Downloads\zoek(1).exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

22.02.2015 17:36:58 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AVS4YOU deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~3\{A95D52A4-9D4C-4263-85D0-9945221E1406} deleted successfully
C:\Users\Fred\AppData\Roaming\.# deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Services(whitelist) ======================
Powered by E Dev

R2 - [AdobeARMservice] - Adobe Acrobat Update Service - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
R2 - [AgereModemAudio] - Agere Modem Call Progress Audio - c:\program files\lsi softmodem\agr64svc.exe
R2 - [AMD External Events Utility] - AMD External Events Utility - c:\windows\system32\atiesrxx.exe
R2 - [AntiVirSchedulerService] - Avira Planer - c:\program files (x86)\avira\antivir desktop\sched.exe
R2 - [AntiVirService] - Avira Echtzeit-Scanner - c:\program files (x86)\avira\antivir desktop\avguard.exe
R2 - [AntiVirWebService] - Avira Browser-Schutz - c:\program files (x86)\avira\antivir desktop\avwebgrd.exe
R2 - [Apple Mobile Device] - Apple Mobile Device - c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe
R2 - [Avira.OE.ServiceHost] - Avira Service Host - c:\program files (x86)\avira\my avira\avira.oe.servicehost.exe
R2 - [Bonjour Service] - Dienst "Bonjour" - c:\program files\bonjour\mdnsresponder.exe
R2 - [ePowerSvc] - Acer ePower Service - c:\program files\acer\acer epower management\epowersvc.exe
R2 - [Greg_Service] - GRegService - c:\program files (x86)\acer\registration\greghsrw.exe
R2 - [IAANTMON] - Intel(R) Matrix Storage Event Monitor - c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe
R2 - [LMS] - Intel(R) Management and Security Application Local Management Service - c:\program files (x86)\intel\intel(r) management engine components\lms\lms.exe
R2 - [RS_Service] - Raw Socket Service - c:\program files (x86)\acer\acer vcm\rs_service.exe
R2 - [TuneUp.UtilitiesSvc] - TuneUp Utilities Service - c:\program files (x86)\tuneup utilities 2014\tuneuputilitiesservice64.exe
R2 - [UNS] - Intel(R) Management & Security Application User Notification Service - c:\program files (x86)\intel\intel(r) management engine components\uns\uns.exe
R2 - [wlidsvc] - Windows Live ID Sign-in Assistant - c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
R2 - [WMPNetworkSvc] - Windows Media Player-Netzwerkfreigabedienst - c:\program files\windows media player\wmpnetwk.exe
R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
R3 - [iPod Service] - iPod-Dienst - c:\program files\ipod\bin\ipodservice.exe
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe
S2 - [gupdate] - Google Update Service (gupdate) - c:\program files (x86)\google\update\googleupdate.exe
S2 - [sppsvc] - Software Protection - c:\windows\system32\sppsvc.exe
S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
S3 - [ALG] - Gatewaydienst auf Anwendungsebene - c:\windows\system32\alg.exe
S3 - [aspnet_state] - ASP.NET-Zustandsdienst - c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe [x]
S3 - [COMSysApp] - COM+-Systemanwendung - c:\windows\system32\dllhost.exe
S3 - [ehRecvr] - Windows Media Center-EmpfÃ¤ngerdienst - c:\windows\ehome\ehrecvr.exe
S3 - [ehSched] - Windows Media Center-Planerdienst - c:\windows\ehome\ehsched.exe
S3 - [Fax] - Fax - c:\windows\system32\fxssvc.exe
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation-Schriftartcache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
S3 - [gupdatem] - Google Update-Dienst (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe
S3 - [gusvc] - Google Software Updater - c:\program files (x86)\google\common\google updater\googleupdaterservice.exe
S3 - [IDriverT] - InstallDriver Table Manager - c:\program files (x86)\common files\installshield\driver\1050\intel 32\idrivert.exe
S3 - [MozillaMaintenance] - Mozilla Maintenance Service - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe
S3 - [MSDTC] - Distributed Transaction Coordinator - c:\windows\system32\msdtc.exe
S3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
S3 - [MWLService] - MyWinLocker Service - c:\program files (x86)\egistec\mywinlocker 3\x86\\mwlservice.exe
S3 - [odserv] - Microsoft Office Diagnostics Service - c:\program files (x86)\common files\microsoft shared\office12\odserv.exe
S3 - [Origin Client Service] - Origin Client Service - c:\program files (x86)\origin\originclientservice.exe
S3 - [ose] - Office Source Engine - c:\program files (x86)\common files\microsoft shared\source engine\ose.exe
S3 - [PerfHost] - Leistungsindikator-DLL-Host - c:\windows\syswow64\perfhost.exe
S3 - [RpcLocator] - RPC-Locator - c:\windows\system32\locator.exe
S3 - [SNMPTRAP] - SNMP-Trap - c:\windows\system32\snmptrap.exe
S3 - [TrustedInstaller] - Windows Modules Installer - c:\windows\servicing\trustedinstaller.exe
S3 - [TurboBoost] - TurboBoost - c:\program files\intel\turboboost\turboboost.exe
S3 - [vds] - Virtueller DatentrÃ¤ger - c:\windows\system32\vds.exe
S3 - [VSS] - Volumeschattenkopie - c:\windows\system32\vssvc.exe
S3 - [WatAdminSvc] - Windows-Aktivierungstechnologieservice - c:\windows\system32\wat\watadminsvc.exe
S3 - [wbengine] - Blockebenen-Sicherungsmodul - c:\windows\system32\wbengine.exe
S3 - [wmiApSrv] - WMI-Leistungsadapter - c:\windows\system32\wbem\wmiapsrv.exe
S4 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe
S4 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - c:\windows\microsoft.net\framework64\v2.0.50727\mscorsvw.exe
S4 - [wlcrasvc] - Windows Live Mesh remote connections service - c:\program files\windows live\mesh\wlcrasvc.exe

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default\prefs.js:
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.suggest.enabled", false);
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default

user.js not found
---- Lines {0dbda103-5b1e-4059-ac8f-15aeb3862327} removed from prefs.js ----
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.daysPassed", "{\"t2d\":true,\"t7d\":true,\"t10d\":true}");
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.installtime", "1419956219.973");
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.isFirstRun", "false");
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.lastC", "{\"sm\":395728,\"mo\":395728,\"li\":395728}");
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.moEnabled", true);
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.server", "https://s99994.webovernet.com");
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.src", "99994");
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.toolbarButtonInstalled", true);
user_pref("{0dbda103-5b1e-4059-ac8f-15aeb3862327}.user_id", "56550106197976");
---- Lines {0dbda103-5b1e-4059-ac8f-15aeb3862327} modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"app-global\",\"addons\":{\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"descriptor\":\"C:\\\\Program
---- Lines {536296fd-0562-4b56-8f95-1a25c5ffc83f} removed from prefs.js ----
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.daysPassed", "{\"t2d\":true,\"t7d\":true,\"t10d\":true}");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.installtime", "1412981789.697");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.is_bundle", "true");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.isFirstRun", "false");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.last_version", "");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.lastC", "{\"sm\":395058,\"li\":395196,\"mo\":395196}");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.moEnabled", true);
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.remEv", "1422721822010");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.server", "https://s7902.webovernet.com");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.src", "7902");
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.toolbarButtonInstalled", true);
user_pref("{536296fd-0562-4b56-8f95-1a25c5ffc83f}.user_id", "4D24A88D-F042-4CAA-87B5-70408FBEB5F5");
---- FireFox user.js and prefs.js backups ---- 

prefs__1751_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\AVS4YOU not found
C:\PROGRA~2\MSXML 4.0 not found
C:\PROGRA~3\{A95D52A4-9D4C-4263-85D0-9945221E1406} not found
C:\PROGRA~2\Temp deleted
C:\PROGRA~2\Uninstall Information deleted
C:\Users\Fred\AppData\Roaming\ProtectDISC deleted
C:\PROGRA~2\ProtectDisc Driver Installer deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\Users\Fred\ChromeExtensions deleted
C:\Users\Fred\AppData\Roaming\YoudaGames deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\SearchProtect deleted
C:\Users\Fred\Downloads\FreeYouTubeToMP3Converter-3.12.20.1230.exe deleted
C:\Windows\WinInit.Ini deleted
C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default\searchplugins\avira-safesearch.xml deleted
C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default\jetpack deleted
C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default\extensions\abs@avira.com deleted
C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default\extensions\{0dbda103-5b1e-4059-ac8f-15aeb3862327} deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 3957 MB
CPU Info: Intel(R) Core(TM) i5 CPU       M 430  @ 2.27GHz
CPU Speed: 2260,2 MHz
Sound Card: Lautsprecher (Realtek High Defi | 
Realtek Digital Output (Realtek | 
Display Adapters: ATI Mobility Radeon HD 5650         | ATI Mobility Radeon HD 5650         | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; PnP-Monitor (Standard) | 
Screen Resolution: 1600 X 900 - 32 bit
Network: Network Present
Network Adapters: Atheros AR5B93 Wireless Network Adapter | Broadcom NetLink (TM) Gigabit Ethernet
CD / DVD Drives: 1x (D: | ) D: Optiarc DVD RW AD-7585H
Ports: COM3 LPT Port NOT Present. 
Mouse: 8 Button Wheel Mouse Present
Hard Disks: C:  584,4GB
Hard Disks - Free: C:  277,7GB
Manufacturer *: Phoenix Technologies LTD
BIOS Info: AT/AT COMPATIBLE | 12/25/09 | ACRSYS - 6040000
Time Zone: Mitteleuropäische Zeit
Motherboard *: Acer            Aspire 7740
Country: ™sterreich 
Language: DEA 

==== System Specs (Software) ======================

Anti-Virus: Avira Desktop On-access scanning disabled (Outdated)
Anti-Spyware: Avira Desktop disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Default Browser: Firefox	32.0.3
Internet Explorer Version: 10.0.9200.16521 
Mozilla Firefox version: 32.0.3 (x86 de)
Google Chrome version: 40.0.2214.115
Adobe Reader version: 11.0.10.32
Sun Java version: 1.8.0_25 (32-bit) 
Sun Java version: 1.8.0_25 (64-bit) 
Flash Player version: 16.0.0.305
Shockwave Player version: 8.5.1r102

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Fred\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
======= C: =====
====== C:\Users\Fred\AppData\Roaming ======
====== C:\Users\Fred ======

====== C: exe-files ==
2015-02-20 21:08:55	F4CC03D0A936AD6780ADA614AE81B413	840272	----a-w-	C:\Program Files (x86)\Google\Update\Install\{6D09D2BB-2422-4C81-A4FC-C8BA6379B560}\40.0.2214.115_40.0.2214.111_chrome_updater.exe
2015-02-20 21:08:55	F4CC03D0A936AD6780ADA614AE81B413	840272	----a-w-	C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\40.0.2214.115\40.0.2214.115_40.0.2214.111_chrome_updater.exe
=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-432033561-2934589633-1803115819-1001\Software\Microsoft\Windows\CurrentVersion\Run]
"ImpulseFastStart"="C:\Program Files (x86)\Stardock\Impulse\Impulse.exe /fastload"
"PureSync"="C:\Program Files (x86)\PureSync\PureSyncTray.exe"
"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"icq"="C:\Users\Fred\AppData\Roaming\ICQM\icq.exe -CU"
"Tango"="C:\Program Files (x86)\Tango\Tango.exe -r"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BackupManagerTray"="C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe -h -k"
"EgisTecLiveUpdate"="C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"LManager"="C:\Program Files (x86)\Launch Manager\LManager.exe"
"ArcadeDeluxeAgent"="C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
"PlayMovie"="C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"
"avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"Avira Systray"="C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ImpulseFastStart"="C:\Program Files (x86)\Stardock\Impulse\Impulse.exe /fastload"
"PureSync"="C:\Program Files (x86)\PureSync\PureSyncTray.exe"
"EADM"="C:\Program Files (x86)\Origin\Origin.exe -AutoStart"
"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"icq"="C:\Users\Fred\AppData\Roaming\ICQM\icq.exe -CU"
"Tango"="C:\Program Files (x86)\Tango\Tango.exe -r"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"IAAnotif"="C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"
"mwlDaemon"="C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe"
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"PLFSetI"="C:\Windows\PLFSetI.exe"
"Acer ePower Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

==== Startup Folders ======================

2010-03-03 18:17:47	1782	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
2014-10-17 19:09:09	1365	----a-w-	C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [05.02.2015 19:31]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28.10.2014 00:49]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [28.10.2014 00:49]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{B64D9B05-48E1-4CEB-BF58-E0643994E900}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" [06.02.2014 14:39]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default
- f30826b0-94ec-4c03-917b-27c345b7572e - %ProfilePath%\extensions\{f30826b0-94ec-4c03-917b-27c345b7572e}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\ppc2ynj6.default
C62322C77D1AAB77B1CF1130FCC3673A	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll -	Shockwave Flash


==== Chromium Look ======================

Google Chrome Version: 40.0.2214.115 (Up to date, latest Stable version: 40.0.2214.115)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
ocbnpbkmjpgbdcgiflkgkpnkinifpgpj - C:\Users\Fred\ChromeExtensions\ocbnpbkmjpgbdcgiflkgkpnkinifpgpj\amazon-icon-2.crx[]

Docs - Fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.google.com"
"Default_Page_URL"="hxxp://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="hxxp://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="hxxp://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google  Url="hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deAT383"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"

==== Reset Google Chrome ======================

C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ocbnpbkmjpgbdcgiflkgkpnkinifpgpj deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fred\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Fred\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Fred\AppData\Local\Mozilla\Firefox\Profiles\ppc2ynj6.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Fred\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=291 folders=85 75589882 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Fred\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Fred\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 22.02.2015 at 18:04:57,17 ======================

deeprybka · 22.02.2015, 18:25

Unser Anweisungs/Antwort-Intervall ist etwas suboptimal.

Wie läuft der Rechner jetzt?

lexib · 27.02.2015, 23:17

Ja ich weiß sorry aber ich hab das Problem noch auf einem anderen Gerät da können wir das ja optimieren

Unfassbar aber ICH KANN WIEDER SURFEN!!!!!!

Ich konnts jetzt gar nicht fassen und bin mal ganz vorsichtig von Seite zu Seite gesurft und alles läuft reibungslos....is jetzt vielleicht unpassend aber willst du mich heiraten?

Auf alle Fälle

für deine Hilfe und Geduld !!!!!!

PS: Da ich das ganze in minderer Form offensichtlich mit USB-Stick auf mein Notebook übertragen habe, ich denk mal dafür ist ein neuer Thread nötig oder?

lg Lexi

deeprybka · 27.02.2015, 23:22

Zitat:

Zitat von lexib

..is jetzt vielleicht unpassend aber willst du mich heiraten?

Ja mach für den Laptop nen neuen Thread auf...Unser Schnappi wird sich dann um Dich kümmern...

22.02.2015, 18:25	#18
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Firefox: Probleme mit Werbung +Script Unser Anweisungs/Antwort-Intervall ist etwas suboptimal. Wie läuft der Rechner jetzt? __________________ __________________

Firefox: Probleme mit Werbung +Script

Log-Analyse und Auswertung: Firefox: Probleme mit Werbung +Script