Maillaccount gehackt /verschiedene Funde mit Malewarebytes

schrauber · 19.07.2013, 10:44

Gern Geschehen

Lotto · 25.01.2014, 13:43

Hallo Schrauber,
vor ungefähr einem halben Jahr hast du schon eimal meinen PC von Schädlingen befreit.
Nun ist folgendes bei mir. ich habe den Sicherheitscheck bei www.sicherheitstest.bsi.de
den test gemacht und die meinen eine E-mail adresse (apetzold@aol.com) wäre von kriminellen Botnetzbetreibern gespeichert worden.
Könntest du so was überprüfen oder mir irgendwie helfen?
Gemerkt habe ich nichts.

Viele Grüße und danke Lotto

schrauber · 26.01.2014, 07:09

Klar, poste einfach mal frische FRST logs. Aber ich sag Dir gleich:

1) werden 99,99999% aller Email Accs online gehackt, ohne Malware auf dem System
2) kotzt mich dieser BSI Wahn und diese Panikmache total an

Lotto · 26.01.2014, 17:45

Code:

ATTFilter

Scan Tool (FRST) (x86) Version: 26-01-2014 02
Ran by Antje (administrator) on ANTJE-PC on 26-01-2014 17:16:38
Running from C:\Users\Antje\Desktop\Dienstp
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(ABBYY) C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(AOL LLC) C:\Program Files\Common Files\aol\acs\AOLacsd.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(FNet Co., Ltd.) C:\Program Files\XFastUsb\XFastUsb.exe
(Creative Technology Ltd) C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe
(Creative Technology Ltd) C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
(America Online, Inc.) C:\Program Files\Common Files\aol\1324678810\ee\aolsoftware.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Macrovision Europe Ltd.) C:\Users\Antje\AppData\Local\temp\Sound_Blaster_X-Fi_MB_Cleanup.0001
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(BillP Studios) C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
() C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(AOL, LLC.) C:\Program Files\AOL 9.0 VRa\waol.exe
(AOL, LLC.) C:\Program Files\AOL 9.0 VRa\shellmon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(MAGIX AG) C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
(Realtek) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
(Splashtop Inc.) C:\Program Files\Splashtop\Splashtop Connect\BackService.exe
(Secunia) C:\Program Files\Secunia\PSI\psia.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Creative Labs) C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(AOL LLC) C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [2145904 2011-02-22] (VIA)
HKLM\...\Run: [XFastUsb] - C:\Program Files\XFastUsb\XFastUsb.exe [4942336 2011-12-23] (FNet Co., Ltd.)
HKLM\...\Run: [CTSyncService] - C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe [1233195 2009-07-08] (Creative Technology Ltd)
HKLM\...\Run: [VolPanel] - C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-05-04] (Creative Technology Ltd)
HKLM\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM\...\Run: [RunDLLEntry] - C:\Windows\system32\AmbRunE.dll [14848 2009-02-26] (Creative Technology Ltd.)
HKLM\...\Run: [HostManager] - C:\Program Files\Common Files\AOL\1324678810\ee\AOLSoftware.exe [50736 2006-09-26] (America Online, Inc.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2014-01-14] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM\...\Run: [STCAgent] - "C:\Program Files\Splashtop\Splashtop Connect IE\STCAgent.exe"
HKLM\...\Run: [ZyngaGamesAgent] - "C:\Program Files\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
HKCU\...\Run: [KiesPDLR] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [20880 2011-07-26] ()
HKCU\...\Run: [WinPatrol] - C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [423144 2013-04-26] (BillP Studios)
HKCU\...\Run: [AOL Fast Start] - C:\Program Files\AOL 9.0 VRa\AOL.EXE [50480 2007-06-21] (AOL, LLC.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE6CAF486BEC1CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://de.search.yahoo.com/?fr=w3i&type=W3i_SP,204,0_0,StartPage,20120101,16988,0,8,0
HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {6DA59B2F-C380-26BF-75EF-54850C7D29F4} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1QzutDtDtByDtBtB0C0AtByByC0B0DzzyDtDtN0D0Tzu0CyDyDyDtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=1416250717&ir=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLEP1&pc=SPLH
SearchScopes: HKCU - {5D422421-30DD-42B3-826E-9224F52BFC47} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {6804654E-DB4B-46FC-A842-8D8B48344DED} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1QzutDtDtByDtBtB0C0AtByByC0B0DzzyDtDtN0D0Tzu0CyDyDyDtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=1416250717&ir=
SearchScopes: HKCU - {6D0FF7A0-C6C5-4a24-8F09-C074ED2B20A0} URL = hxxp://de.search.yahoo.com/search?p={searchterms}&ei=UTF-8&fr=w3i&type=W3i_DS,136,0_0,Search,20120101,16987,0,8,0
SearchScopes: HKCU - {6DA59B2F-C380-26BF-75EF-54850C7D29F4} URL = hxxp://go.gmx.net/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {7D09D9D4-CEDB-47B3-8779-584CFD2BABB0} URL = hxxp://go.web.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {9DDD17F4-2BF7-4662-B5A0-92270A4C54F7} URL = hxxp://www.amazon.de/gp/search?ie=UTF8&keywords={searchTerms}&tag= interactivemesuche21&index=blended&linkCode=ur2&camp=1638&creative=6742
SearchScopes: HKCU - {B442213A-49FA-404C-8A15-326E8709045B} URL = hxxp://suche.t-online.de/fastcgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&d ia=suche&context=wiki-tab&tpc=internet&ptl=std&classification=wikitab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKCU - {BC51C75D-1339-43dd-921D-49F5D0A2F625} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A6976579318&ie=UTF-8&q=&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A6976579318&q={searchTerms}
SearchScopes: HKCU - {CA25764C-9109-4C88-9615-DCF100F14585} URL = hxxp://suche.t-online.de/fast-cgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&dia=suche&context=internet-tab&tpc=internet&ptl=std&classification=internet-tab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKCU - {E8B82BA8-923F-4120-B179-4144137AB04D} URL = hxxp://search.gmx.com/web?q={searchTerms}&origin=tb_splugin_ie
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Adblock IE - {667BEE43-20BD-4CE3-94AC-E63E04D4B191} - C:\Program Files\MGTEK\Adblock IE\adblockie.dll (MGTEK)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL LLC)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL LLC)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Toolbar: HKCU - No Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} -  No File
DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} hxxp://game.zylom.com/activex/zylomgamesplayer.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-27]
FF Extension: NoScript - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-06-30]
FF Extension: Adblock Plus - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-06-30]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-03]
FF HKLM\...\Firefox\Extensions: [{77BEC163-D389-42c1-91A4-C758846296A5}] - C:\Program Files\Video downloader\Firefox
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-03]

========================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-08-18] (ABBYY)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2014-01-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2014-01-14] (Avira Operations GmbH & Co. KG)
R2 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)
S2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [32808 2013-07-01] (Just Develop It)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2011-12-23] (Creative Labs)
S2 Dnscache; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 Fabs; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG)
S3 FirebirdServerMAGIXInstance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)
R2 Realtek11nSU; C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek)
R2 SCBackService; C:\Program Files\Splashtop\Splashtop Connect\BackService.exe [477000 2010-11-15] (Splashtop Inc.)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1227800 2013-04-18] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [659992 2013-04-18] (Secunia)
R3 Sound Blaster X-Fi MB Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [79360 2011-12-23] (Creative Labs)
R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
R2 Update-Service; C:\Windows\System32\UpdSvc.dll [114000 2011-12-24] (Joosoft.com GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-02-17] (VIA Technologies, Inc.)
S2 SmartViewService; C:\Program Files\DeviceVM\SmartView\SmartViewService.exe [x]

==================== Drivers (Whitelisted) ====================

R1 AsrAppCharger; C:\Windows\System32\DRIVERS\AsrAppCharger.sys [13832 2010-06-11] (Windows (R) Win 7 DDK provider)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-14] (Avira Operations GmbH & Co. KG)
R3 CompFilter; C:\Windows\System32\DRIVERS\lvbusflt.sys [22176 2012-01-18] (Logitech Inc.)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [29248 2012-04-19] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [14656 2011-12-23] (FNet Co., Ltd.)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [67456 2011-04-13] (Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [161024 2011-04-13] (Renesas Electronics Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-04-18] (Secunia)
R3 RTL8187B; C:\Windows\System32\DRIVERS\wg111v3.sys [376832 2009-11-18] (NETGEAR Inc.                           )
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1801328 2011-02-17] (VIA Technologies, Inc.)
R3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2006-11-29] (America Online, Inc.)
S3 catchme; \??\C:\Users\Antje\AppData\Local\Temp\catchme.sys [x]
S3 MSICDSetup; \??\D:\CDriver.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-17 10:24 - 2014-01-17 10:24 - 00000000 ____D C:\Users\Antje\.swt
2014-01-17 10:23 - 2014-01-17 10:23 - 00001940 _____ C:\Users\Public\Desktop\MP3 Rocket 6.4.5.lnk
2014-01-17 10:22 - 2014-01-17 10:22 - 00663776 _____ (MP3Rocket) C:\Users\Antje\Downloads\mp3rocket(1).exe
2014-01-15 09:41 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 09:41 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 09:41 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-05 14:08 - 2014-01-05 14:08 - 00018866 _____ C:\ComboFix.txt

==================== One Month Modified Files and Folders =======

2014-01-26 17:16 - 2013-09-11 08:25 - 00000000 ____D C:\Users\Antje\Desktop\Dienstp
2014-01-26 16:28 - 2009-07-14 05:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-26 16:28 - 2009-07-14 05:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-26 16:22 - 2013-06-25 14:14 - 00028504 _____ C:\Windows\setupact.log
2014-01-26 16:22 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-25 18:24 - 2011-12-23 21:41 - 01206687 _____ C:\Windows\WindowsUpdate.log
2014-01-25 18:20 - 2012-04-03 06:55 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-23 09:33 - 2013-12-11 18:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-23 09:33 - 2011-12-23 23:54 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-01-22 14:44 - 2012-02-06 11:40 - 00000000 ____D C:\Users\Antje\AppData\Roaming\vlc
2014-01-17 10:26 - 2012-03-09 10:30 - 00000000 ____D C:\Users\Antje\Incomplete
2014-01-17 10:24 - 2014-01-17 10:24 - 00000000 ____D C:\Users\Antje\.swt
2014-01-17 10:24 - 2012-03-09 10:36 - 00000000 ____D C:\Program Files\MP3 Rocket
2014-01-17 10:24 - 2012-03-09 10:29 - 00000000 ____D C:\Users\Antje\AppData\Roaming\MP3Rocket
2014-01-17 10:24 - 2011-12-23 21:50 - 00000000 ____D C:\Users\Antje
2014-01-17 10:23 - 2014-01-17 10:23 - 00001940 _____ C:\Users\Public\Desktop\MP3 Rocket 6.4.5.lnk
2014-01-17 10:22 - 2014-01-17 10:22 - 00663776 _____ (MP3Rocket) C:\Users\Antje\Downloads\mp3rocket(1).exe
2014-01-15 17:59 - 2009-07-14 05:33 - 00487816 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 11:09 - 2013-08-15 10:02 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 11:07 - 2009-10-14 03:21 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 09:58 - 2009-07-14 03:04 - 00000709 _____ C:\Windows\win.ini
2014-01-05 14:08 - 2014-01-05 14:08 - 00018866 _____ C:\ComboFix.txt
2014-01-05 14:08 - 2013-07-08 09:20 - 00000000 ____D C:\Qoobox
2014-01-05 14:02 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2014-01-05 14:00 - 2011-12-23 22:19 - 00601444 _____ C:\Windows\PFRO.log
2014-01-05 13:49 - 2013-07-08 09:12 - 05160001 ____R (Swearware) C:\Users\Antje\Downloads\ComboFix.exe
2014-01-04 20:29 - 2011-12-25 18:37 - 00000000 ____D C:\Users\Antje\Desktop\Gitarre
2014-01-04 18:32 - 2011-12-29 15:18 - 00000000 ____D C:\Users\Antje\AppData\Local\CrashDumps
2014-01-02 16:42 - 2011-12-23 21:55 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI

Some content of TEMP:
====================
C:\Users\Antje\AppData\Local\temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 10:50

==================== End Of Log ============================

Hallo Schrauber,
danke für deine Hilfe.

Da ist erst mal das erste . Wie ging das dann mit der Addition???

LG Lotto

Addition

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-01-2014 02
Ran by Antje at 2014-01-26 17:33:44
Running from C:\Users\Antje\Desktop\Dienstp
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
4500_G510nz_Help (Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz (Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz_Software_Min (Version: 000.0.423.000 - Hewlett-Packard) Hidden
ABBYY FineReader 11 (Version: 11.0.289 - ABBYY)
Acrobat.com (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (Version: 1.1.377 - Adobe Systems Incorporated)
Adblock IE 2.2 (Version: 2.2.1524 - MGTEK)
Adobe AIR (Version: 3.7.0.2090 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.7.0.2090 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.38 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (Version: 10.1.9 - Adobe Systems Incorporated)
AOL Deinstallation (Version:  - )
AP Tuner 3.08 (Version:  - )
Apple Application Support (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
ASRock App Charger v1.0.4 (Version:  - ASRock Inc.)
ASRock eXtreme Tuner v0.1.53 (Version:  - )
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.35 - Atheros Communications Inc.)
Avira Free Antivirus (Version: 14.0.2.344 - Avira)
BestPractice (remove only) (Version:  - )
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CameraHelperMsi (Version: 13.31.1038.0 - Logitech) Hidden
Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.)
CK Gruß- und Einladungskarten Designer (Version: 1.80.0000 - CK Software)
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden
DocMgr (Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fax (Version: 130.0.418.000 - Hewlett-Packard) Hidden
Firebird SQL Server - MAGIX Edition (Version: 2.1.27.0 - MAGIX AG)
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Heyer's Karten-Studio 2 (Version: 2.10.0000 - Bernd & Petra Heyer GbR, Köln)
HP Customer Participation Program 13.0 (Version: 13.0 - HP)
HP Document Manager 2.0 (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (Version: 13.0 - HP)
HP Officejet 4500 G510n-z (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (Version: 4.5 - HP)
HP Solution Center 13.0 (Version: 13.0 - HP)
HP Update (Version: 5.003.001.001 - Hewlett-Packard)
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Iminent (Version: 4.10.0.0 - Iminent) Hidden <==== ATTENTION
Intel(R) Management Engine Components (Version: 7.0.0.1144 - Intel Corporation)
Internet Explorer (Version: 9 - Microsoft Corporation) Hidden
iTuner (Version: 1.0.3 - iAppsPoint)
iTunes (Version: 11.0.4.4 - Apple Inc.)
Java 7 Update 25 (Version: 7.0.250 - Oracle)
JavaFX 2.1.1 (Version: 2.1.1 - Oracle Corporation)
Logitech Webcam-Software (Version: 2.30 - Logitech Inc.)
LWS Facebook (Version: 13.31.1038.0 - Logitech) Hidden
LWS Gallery (Version: 13.31.1038.0 - Logitech) Hidden
LWS Help_main (Version: 13.31.1044.0 - Logitech) Hidden
LWS Launcher (Version: 13.31.1038.0 - Logitech) Hidden
LWS Motion Detection (Version: 13.30.1395.0 - Logitech) Hidden
LWS Pictures And Video (Version: 13.31.1038.0 - Logitech) Hidden
LWS Twitter (Version: 13.30.1346.0 - Logitech) Hidden
LWS Video Mask Maker (Version: 13.30.1379.0 - Logitech) Hidden
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
LWS Webcam Software (Version: 13.31.1038.0 - Logitech) Hidden
LWS WLM Plugin (Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (Version: 13.31.1038.0 - Logitech) Hidden
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium Download-Version (Version: 10.0.1.14 - MAGIX AG)
MAGIX Video deluxe 17 Premium Download-Version (Version: 10.0.1.14 - MAGIX AG) Hidden
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft SkyDrive (HKCU Version: 16.4.6010.0727 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 26.0 - Mozilla)
MP3 Rocket (Version: 6.4.5 - MP3 Rocket Inc)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
MyFreeCodec (HKCU Version:  - )
MyPC Backup  (Version:  - MyPC Backup) <==== ATTENTION
Nero Burning ROM (Version: 12.5.5001 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (Version: 12.0.3000 - Nero AG) Hidden
Nero BurningROM 12 (Version: 12.5.01300 - Nero AG)
Nero ControlCenter (Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (Version: 12.0.12000 - Nero AG) Hidden
Nero Core Components (Version: 11.0.21800 - Nero AG) Hidden
Nero SharedVideoCodecs (Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Update (Version: 11.0.11800.31.0 - Nero AG) Hidden
NETGEAR WG111v3 wireless USB 2.0 adapter (Version: 1.00.0000 - NETGEAR)
NETGEAR WG111v3 wireless USB 2.0 adapter (Version: 1.00.0000 - NETGEAR) Hidden
Network (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Norton Internet Security (Version: 18.1.0.37 - Symantec Corporation) Hidden
NVIDIA Grafiktreiber 267.42 (Version: 267.42 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.265.39.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.10.0514 (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6742 - NVIDIA Corporation)
NVIDIA Systemsteuerung 267.42 (Version: 267.42 - NVIDIA Corporation) Hidden
OCR Software by I.R.I.S. 13.0 (Version: 13.0 - HP)
Platform (Version: 1.36 - VIA Technologies, Inc.) Hidden
Prerequisite installer (Version: 12.0.0003 - Nero AG) Hidden
QuickTime (Version: 7.74.80.86 - Apple Inc.)
REALTEK Wireless LAN Driver and Utility (Version: 1.00.0165 - REALTEK Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.16.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.16.0 - Renesas Electronics Corporation) Hidden
Samplitude Music Studio 17 Content Pack (Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 17 Download-Version (Version: 17.0.0.0 - MAGIX AG) Hidden
Samplitude Music Studio 17 Vita Pack 1 (Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 17 Vita Pack 2 (Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 17 Vita Pack 3 (Version: 1.0.0.0 - MAGIX AG)
Samsung Kies (Version: 2.0.2.11071_128 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.0.2.11071_128 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.2.2 - SAMSUNG Electronics Co., Ltd.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Secunia PSI (3.0.0.7009) (Version: 3.0.0.7009 - Secunia)
Shop for HP Supplies (Version: 13.0 - HP)
Skype Click to Call (Version: 5.8.8855 - Skype Technologies S.A.)
Skype™ 5.5 (Version: 5.5.124 - Skype Technologies S.A.)
Smart OCR 3.2.1.417 (Version: 3.2.1.417 - SmartSoft, LLC.)
SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi MB (Version: 1.0 - Creative Technology Limited)
Sound Effects (Version: 2.0 - Music Oasis)
Splashtop Connect IE (Version: 1.1.12.1 - Splashtop Inc.)
SpywareBlaster 5.0 (Version: 5.0.0 - BrightFort LLC)
Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SumatraPDF (Version: 2.2.1 - Krzysztof Kowalczyk)
Text-To-Speech-Runtime (Version: 1.0.0.0 - Magix Development GmbH)
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
VIA Plattform-Geräte-Manager (Version: 1.36 - VIA Technologies, Inc.)
VLC media player 2.0.7 (Version: 2.0.7 - VideoLAN)
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows 7 Upgrade Advisor (Version: 2.0.5000.0 - Microsoft Corporation)
WinPatrol (Version: 28.1.2013.0 - BillP Studios)
WinRAR 4.11 (32-Bit) (Version: 4.11.0 - win.rar GmbH)
XFastUsb (Version:  - )

==================== Restore Points  =========================

30-12-2013 14:10:51 ComboFix created restore point
31-12-2013 09:25:45 Windows Update
03-01-2014 19:51:03 Windows Update
05-01-2014 12:50:45 ComboFix created restore point
07-01-2014 15:23:52 Windows Update
11-01-2014 16:56:03 Windows Update
15-01-2014 10:06:18 Windows Update
21-01-2014 08:57:21 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:04 - 2013-08-19 14:47 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0B48D993-C7B9-454E-A30A-DB9962FB9B65} - System32\Tasks\Advanced System Protector => C:\Program Files\RegClean Pro\SystweakASP.exe <==== ATTENTION
Task: {4B8D8E2C-2A30-4F30-8A70-64743CB54286} - System32\Tasks\BrowserProtect => Sc.exe start BrowserProtect <==== ATTENTION
Task: {5188B24B-753A-46FA-9717-892A9828A6E0} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe
Task: {52868A61-6D7B-4124-B8B9-513939B660F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-23] (Adobe Systems Incorporated)
Task: {77F9D20E-7D63-4CF3-B99C-80BB5D340E84} - System32\Tasks\DealPlyUpdate => C:\Program Files\DealPly\DealPlyUpdate.exe <==== ATTENTION
Task: {8C20516A-0854-4055-9DDA-07F5D365959F} - System32\Tasks\{A56D0839-9B1E-4606-AE99-6CAD37FD905C} => C:\Program Files\Lexmark X1100 Series\LXBKaiox.exe
Task: {94904DBE-DBE1-4386-9DE3-1C4E1D91C064} - System32\Tasks\{9DA0F427-D915-4923-B20B-1FA49027F5E0} => C:\Program Files\Lexmark X1100 Series\LXBKaiox.exe
Task: {C3FBC991-3D6D-44E0-A406-6BDDC4AC416C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F7A90481-FED4-4200-B63A-E92435CB6E63} - System32\Tasks\Advanced System Protector_startup => C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2012-10-17 08:48 - 2012-09-19 18:17 - 00397088 _____ () C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
2012-02-20 20:29 - 2012-02-20 20:29 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 20:28 - 2012-02-20 20:28 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-12-23 22:11 - 2011-02-22 07:02 - 00080496 ____R () C:\Program Files\VIA\VIAudioi\VDeck\QsApoApi.dll
2011-12-23 22:11 - 2011-02-22 07:02 - 00113264 ____R () C:\Program Files\VIA\VIAudioi\VDeck\Dts2ApoApi.dll
2011-12-23 22:11 - 2011-02-22 07:02 - 00623216 ____R () C:\Program Files\VIA\VIAudioi\VDeck\Skin.dll
2014-01-26 16:22 - 2014-01-26 16:22 - 00697884 _____ () C:\Users\Antje\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0004\~df394b.tmp
2014-01-26 16:22 - 2014-01-26 16:22 - 00592896 _____ () C:\Users\Antje\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0004\~de6248.tmp
2011-12-23 22:18 - 2009-02-06 18:52 - 00073728 _____ () C:\Windows\SYSTEM32\CmdRtr.DLL
2011-12-23 22:18 - 2009-04-20 11:55 - 00148480 _____ () C:\Windows\SYSTEM32\APOMngr.DLL
2014-01-24 13:55 - 2014-01-24 13:55 - 00115137 _____ () C:\Users\Antje\AppData\Local\Temp\3dcf2df1-2a83-477c-a7dd-858967792357\CliSecureRT.dll
2013-06-27 16:47 - 2012-12-10 02:46 - 00600868 ____N () C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
2011-12-23 22:28 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files\REALTEK\11n USB Wireless LAN Utility\EnumDevLib.dll
2013-06-27 16:26 - 2013-12-22 10:02 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2004-01-09 21:02 - 2004-01-09 21:02 - 00045056 _____ () C:\Program Files\AOL 9.0 VRa\zlib.dll
2002-04-22 22:08 - 2002-04-22 22:08 - 00053248 _____ () C:\Program Files\AOL 9.0 VRa\xmlparse.dll
2002-04-22 22:08 - 2002-04-22 22:08 - 00081920 _____ () C:\Program Files\AOL 9.0 VRa\xmltok.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:5C321E34

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/22/2014 06:22:02 PM) (Source: Application Hang) (User: )
Description: Programm waol.exe, Version 9.5.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: a28

Startzeit: 01cf17705867d0d2

Endzeit: 0

Anwendungspfad: C:\Program Files\AOL 9.0 VRa\waol.exe

Berichts-ID: ad41e2b8-8389-11e3-82fb-00038a000015

Error: (01/10/2014 07:17:49 AM) (Source: Application Hang) (User: )
Description: Programm waol.exe, Version 9.5.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: a48

Startzeit: 01cf0dc0e565e70c

Endzeit: 0

Anwendungspfad: C:\Program Files\AOL 9.0 VRa\waol.exe

Berichts-ID: e90c3a94-79be-11e3-bb39-00038a000015

Error: (01/07/2014 09:00:38 AM) (Source: Application Hang) (User: )
Description: Programm waol.exe, Version 9.5.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: e74

Startzeit: 01cf0b7e3cb886da

Endzeit: 15

Anwendungspfad: C:\Program Files\AOL 9.0 VRa\waol.exe

Berichts-ID: c413c631-7771-11e3-bb2e-00038a000015

Error: (01/04/2014 06:32:21 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 26.0.0.5087, Zeitstempel: 0x52a0d273
Name des fehlerhaften Moduls: xul.dll, Version: 26.0.0.5087, Zeitstempel: 0x52a0d20a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0014e1a8
ID des fehlerhaften Prozesses: 0x1b20
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3

Error: (01/04/2014 10:14:31 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 26.0.0.5087, Zeitstempel: 0x52a0d273
Name des fehlerhaften Moduls: xul.dll, Version: 26.0.0.5087, Zeitstempel: 0x52a0d20a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0014e1a8
ID des fehlerhaften Prozesses: 0x9c4
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3

Error: (01/03/2014 10:44:18 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 26.0.0.5087, Zeitstempel: 0x52a0d273
Name des fehlerhaften Moduls: xul.dll, Version: 26.0.0.5087, Zeitstempel: 0x52a0d20a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0014e1a8
ID des fehlerhaften Prozesses: 0x318
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3

Error: (12/26/2013 09:23:34 PM) (Source: Application Hang) (User: )
Description: Programm waol.exe, Version 9.5.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 980

Startzeit: 01cf0276f39257d3

Endzeit: 0

Anwendungspfad: C:\Program Files\AOL 9.0 VRa\waol.exe

Berichts-ID: 7f1ffabe-6e6b-11e3-9fe6-00038a000015

Error: (12/03/2013 11:51:28 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: PEV.exe, Version: 0.0.0.0, Zeitstempel: 0x4e06cfe8
Name des fehlerhaften Moduls: PEV.exe, Version: 0.0.0.0, Zeitstempel: 0x4e06cfe8
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d1c0
ID des fehlerhaften Prozesses: 0xae68
Startzeit der fehlerhaften Anwendung: 0xPEV.exe0
Pfad der fehlerhaften Anwendung: PEV.exe1
Pfad des fehlerhaften Moduls: PEV.exe2
Berichtskennung: PEV.exe3

Error: (11/24/2013 10:35:47 AM) (Source: Application Hang) (User: )
Description: Programm waol.exe, Version 9.5.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 850

Startzeit: 01cee8f61106ba50

Endzeit: 20

Anwendungspfad: C:\Program Files\AOL 9.0 VRa\waol.exe

Berichts-ID: c6bb6b33-54eb-11e3-bbd0-00038a000015

Error: (11/20/2013 11:38:33 AM) (Source: Application Hang) (User: )
Description: Programm waol.exe, Version 9.5.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 978

Startzeit: 01cee5cb1ad587e2

Endzeit: 50

Anwendungspfad: C:\Program Files\AOL 9.0 VRa\waol.exe

Berichts-ID: e204bbfc-51cf-11e3-815e-00038a000015


System errors:
=============
Error: (01/26/2014 04:23:55 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:45 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:27 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:22 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/26/2014 04:23:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2


Microsoft Office Sessions:
=========================
Error: (02/03/2013 04:56:00 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 524 seconds with 480 seconds of active time.  This session ended with a crash.


==================== Memory info =========================== 

Percentage of memory in use: 29%
Total physical RAM: 3054.7 MB
Available physical RAM: 2141.06 MB
Total Pagefile: 6105.64 MB
Available Pagefile: 4531.33 MB
Total Virtual: 2047.88 MB
Available Virtual: 1911.28 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:845.71 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: A27B1D46)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End Of Log ============================

schrauber · 27.01.2014, 11:01

Du hast tatsächlich bissl Adware auf dem Rechner

. Die knackt aber auch keine Email Accs

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Lotto · 27.01.2014, 19:57

Ok Schrauber.

Dann mal los.

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.27.08

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
Antje :: ANTJE-PC [Administrator]

27.01.2014 18:07:14
mbam-log-2014-01-27 (18-07-14).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 409780
Laufzeit: 1 Stunde(n), 2 Minute(n), 37 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 5
HKCR\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 2
HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{77BEC163-D389-42c1-91A4-C758846296A5} (PUP.Optional.VideoDownloader.A) -> Daten:  -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{77BEC163-D389-42c1-91A4-C758846296A5} (PUP.Optional.VideoDownloader.A) -> Daten: C:\Program Files\Video downloader\Firefox -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 2
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly\UpdateProc (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 3
C:\Users\Antje\AppData\Local\mysearchdial_speedial_v9.0.2.crx (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly\UpdateProc\config.dat (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

Code:

ATTFilter

# AdwCleaner v3.017 - Bericht erstellt am 27/01/2014 um 19:52:54
# Aktualisiert 12/01/2014 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (32 bits)
# Benutzername : Antje - ANTJE-PC
# Gestartet von : C:\Users\Antje\Downloads\adwcleaner.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [10808 octets] - [27/01/2014 19:43:15]
AdwCleaner[R1].txt - [724 octets] - [27/01/2014 19:52:54]
AdwCleaner[S0].txt - [10723 octets] - [27/01/2014 19:43:55]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [844 octets] ##########

Code:

ATTFilter

Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Ultimate x86
Ran by Antje on 27.01.2014 at 19:48:22,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpdataaccessor
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpdataaccessor.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpdownloadstatus
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpdownloadstatus.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpfiledownloadservice
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpfiledownloadservice.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpproxyinfo
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpproxyinfo.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpservice
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpservice.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpservicefactory
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\curl.httpservicefactory.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{266294D5-5A0D-46E8-9294-BCB6EAFA478F}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{518CA0FD-F755-4F98-A2A8-CD450FB203AB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{5E9B4D72-C58D-48BF-AC09-68182D472160}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{72434BC1-E46D-47A1-A597-8749DFBCC24A}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{7DBA2B02-EA31-4B98-812B-C6E8AE5C2972}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{929FCA79-44E2-4408-83E7-F93AAE0B0909}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{94FBDF11-676E-42E5-A516-1FD39970386B}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9932C738-5580-4408-A0E8-5EA03BE5FB18}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{A288B32D-1001-479F-8DA2-E259010B7A31}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{A5D99259-ADA3-48A5-B861-39813B713DCB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{AFFA986E-4B0F-4F15-9DDC-19FE8129602A}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{B348A16C-64A6-4EAE-A42A-722623572C7E}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C29CF951-7F4F-4B8D-ACA8-C4EE934C27DC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{D60A7941-4F69-4A79-BED7-72ADA784B8F7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{DFF35F25-E783-4E26-8DA6-EBB66B8B0E39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{E57D3C8D-ADD0-4AE0-8A14-0D0F6A3487FB}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\caphyon
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1184766340-1357020511-1184547663-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1184766340-1357020511-1184547663-1000\Software\video downloader
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\backupstack_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\backupstack_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\domaiq uninstaller
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskInstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6804654E-DB4B-46FC-A842-8D8B48344DED}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{6DA59B2F-C380-26BF-75EF-54850C7D29F4}



~~~ Files

Successfully deleted: [File] C:\Program Files\49res.dll
Successfully deleted: [File] C:\Program Files\49Uninstall Utility Chest.dll



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Antje\appdata\local\cre"
Successfully deleted: [Folder] "C:\Program Files\mypc backup"



~~~ FireFox

Emptied folder: C:\Users\Antje\AppData\Roaming\mozilla\firefox\profiles\x7i3xx6c.default\minidumps [68 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27.01.2014 at 19:50:52,74
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

So das war alles

Lg Lotto

schrauber · 28.01.2014, 15:15

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Lotto · 28.01.2014, 20:37

Hallo Schrauber, danke dir erst mal

Code:

ATTFilter

#UnlockDialog.ini - F&V-Design

[DialogStrings]

#version protection headline & intro
IDS_VERSION_PROTECTION_UNLOCK_DLG_HEADLINE					= "Üdvözöljük!"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ACTIVATION_HEADLINE		= "%s aktiválása"
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01					= "\n\n%s aktiválásához írja be a sorozatszámát."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01_CONSUMER_BOX		= "%s aktiválásához egyszer meg kell adnia a sorozatszámát. Ezen kívül érdemes a programot azonnal regisztrálni, hogy megkapja az automatikus frissítéseket és hozzáférjen a kiegészítő funkciókhoz."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01_PROFESSIONAL_BOX	= "%s aktiválásához %d napon belül írja be a sorozatszámát. Ezen kívül a programot érdemes regisztrálni is. Ehhez adjon meg egy érvényes e-mail címet."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01_DEMO				= "\nEz a(z) %s szoftver működésében nem korlátozott demó változata.\n\nA telepítéstől számított %d napig próbálgathatja a programot."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01_SILVER			= "\nEz a(z) %s program díjmentes változata.\n\nA telepítéstől számított %d napig próbálgathatja regisztráció nélkül."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01_OEM				= "Az interneten keresztül ingyenesen aktiválhatja a(z) %s programot. Ehhez írja be a mellékelt sorozatszámot, és kezdje meg a regisztrációt."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01_JAPAN			= "\n\n%s aktiválásához egyszer meg kell adnia és aktiválni kell a sorozatszámát."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_01_ACTIVATION		= "Sajnos még nem regisztrálta a programverzióját. Ez '%s' működésének aktiválásához szükséges. A regisztráció csak néhány percet vesz igénybe."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_02					= "<textblock foreground="#FFFFFF">A sorozatszámot a CD/DVD tok hátoldalán találja, vagy (a letöltött változat esetén) e-mailben kapta meg.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_02_DEMO				= "A teljes verziót a közelében lévő egyik szaküzletben szerezheti be."
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_02_SILVER			= "<textblock foreground="#FFFFFF">Egyszer és mindenkorra regisztráljon, és azután korlátozás nélkül használhatja.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_02_OEM				= "<textblock foreground="#FFFFFF">A sorozatszámot a vásárlás után e-mailben kapta meg.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_02_JAPAN			= "<textblock foreground="#FFFFFF">A sorozatszámot a vásárlás után e-mailben kapta meg.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_INTRO_02_ACTIVATION		= "A regisztrációhoz szüksége lesz a sorozatszámára és egy érvényes e-mail címre."
IDS_VERSION_PROTECTION_UNLOCK_DLG_YOUR_NEXT_STEP_GROUPBOX	= " "

#version protection unlock dialog section: enter serial number
IDS_VERSION_PROTECTION_UNLOCK_DLG_RADIO_ENTER_SERIAL					= "Írja be a sorozatszámot"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT1					= "<textblock fontsize="16" foreground="#FFFFFF"><bold>Sorozatszám:</bold><linebreak /><textblock fontsize="14">Kötőjelek nélkül adja meg</textblock></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT2					= "<textblock fontsize="16" foreground="#FFFFFF"><bold>E-mail cím:</bold><linebreak /><textblock fontsize="14">A program regisztrálásához</textblock></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT3					= "Sorozatszámát személyesen Önhöz rendeltük. Emiatt a következő lehetőségei vannak:"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT3_BOX				= "Már regisztrált?"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT3_JAPAN				= "A következő lehetőségei vannak, ha a verziót most szeretné aktiválni:"
IDS_VERSION_PROTECTION_UNLOCK_DLG_STATE_NO_VALID_SERIAL_NUMBER			= "Még nem adott meg érvényes sorozatszámot."
IDS_VERSION_PROTECTION_UNLOCK_DLG_STATE_NO_VALID_USER_IDENTIFICATION	= "Még nem adott meg érvényes e-mail címet."
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_BUTTON_UNLOCK_ONLINE		= "Online regisztráció és aktiválás most"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_BUTTON_UNLOCK_ONLINE_BOX	= "Azonnali online regisztráció"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_BUTTON_UNLOCK_ONLINE_JAPAN= "Azonnali online aktiválás"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_BUTTON_UNLOCK_TELEPHONE	= "Program aktiválása telefonon keresztül..."
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_BUTTON_UNLOCK_OFFLINE	= "Program aktiválása levélben/faxon..."
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_BUTTON_ALREADY_REGISTERED= "A termékem már regisztrálva van."
IDS_VERSION_PROTECTION_UNLOCK_DLG_HINT_ONLINE_CONNECTION_REQUIRED		= "- Internetkapcsolat szükséges"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT5					= "- naponta 0-24 óráig lehetséges"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT6					= "- faxon vagy levélben"

#version protection unlock dialog section: enter unlock code
IDS_VERSION_PROTECTION_UNLOCK_DLG_RADIO_ENTER_UNLOCK_CODE		= "Írja be az aktiválókódot"
IDS_VERSION_PROTECTION_UNLOCK_DLG_RADIO_ENTER_UNLOCK_CODE_ADDIN	= "telefonon vagy "
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_UNLOCK_CODE_TEXT1		= "<textblock fontsize="16" foreground="#FFFFFF"><bold>Aktiválókód:</bold><linebreak /><textblock fontsize="14">Kötőjelek nélkül adja meg</textblock></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_ENTER_UNLOCK_CODE_TEXT2		= "<textblock foreground="#FFFFFF">Írja be a (rendszerint e-mailben) kapott aktiválókódot és indítsa el a programot.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_VERIFY_UNLOCK_CODE_BUTTON		= "Program aktiválása"

#version protection unlock dialog section: buy onlock code online
IDS_VERSION_PROTECTION_UNLOCK_DLG_RADIO_BUY_UNLOCK_CODE			= "Program megvásárlása"
IDS_VERSION_PROTECTION_UNLOCK_DLG_RADIO_BUY_UNLOCK_CODE_DEMO	= "Teljes verzió megvásárlása"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUY_ONLINE_TEXT1				= "<textblock foreground="#FFFFFF">A teljes verzió online megvásárlásához internetkapcsolatra lesz szüksége.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUY_ONLINE_BUTTON				= "Program online megvásárlása"

#version protection unlock dialog section: continue testing
IDS_VERSION_PROTECTION_UNLOCK_DLG_RADIO_CONTINUE_TESTING						= "Próbaidőszak folytatása"
IDS_VERSION_PROTECTION_UNLOCK_DLG_RADIO_CONTINUE_TESTING_BOX_PRO				= "Aktiválás később"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUTTON_EXTEND_TEST_INTERVAL					= "30 napos meghosszabbítás INGYEN!\n(Internetkapcsolat szükséges)"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUTTON_EXTEND_TEST_INTERVAL_SILVER			= "Program regisztrálása\nés korlátlan használata"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUTTON_EXTEND_TEST_INTERVAL_SILVER_BIG		= "Azonnali online regisztráció"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_DAYS_LEFT						= "<textblock foreground="#FFFFFF">A programot <textblock foreground="#00D733"><bold>még %d napig</bold></textblock> tudja próbálgatni.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_DAYS_LEFT_PROFESSIONAL_BOX		= "<textblock foreground="#FFFFFF">A programot <textblock foreground="#00D733"><bold>még %d napig</bold></textblock> regisztráció nélkül tudja használni.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_ONE_DAY_LEFT					= "<textblock foreground="#FFFFFF">A programot <textblock foreground="#00D733"><bold>még egy napig</bold></textblock> tudja próbálgatni.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_ONE_DAY_LEFT_PROFESSIONAL_BOX	= "<textblock foreground="#FFFFFF">A programot <textblock foreground="#00D733"><bold>még egy napig</bold></textblock> regisztráció nélkül tudja használni.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_EXPIRED_BUT_EXTENSIBLE			= "<textblock foreground="#FFFFFF">Meghosszabbíthatja a próbaidőszakot.</textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_EXPIRED_NO_GO					= "<textblock foreground="#00D733"><bold>Írja be a sorozatszámát!</bold></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_EXPIRED_NO_GO_DEMO				= "<textblock foreground="#00D733"><bold>Kérjük, vásárolja meg a program teljes verzióját.</bold></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_EXPIRED_NO_GO_SILVER			= "<textblock foreground="#00D733"><bold>Kérjük, regisztrálja a programot most!</bold></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_EXPIRED_NO_GO_PROFESSIONAL_BOX	= "<textblock foreground="#00D733"><bold>Kérjük, regisztrálja a programot most!</bold></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TEST_INTERVAL_EXPIRED							= "Az Ön próbaidőszaka véget ért."
IDS_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_TEXT2						= "<textblock fontsize="16" foreground="#FFFFFF"><bold>Hosszabbítókód:</bold><linebreak /><textblock fontsize="14">E-mailen küldtük el Önnek</textblock></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_TEXT2_SILVER					= "<textblock fontsize="16" foreground="#FFFFFF"><bold>Aktiválókód:</bold><linebreak /><textblock fontsize="14">E-mailen küldtük el Önnek</textblock></textblock>"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUTTON_VERIFY_TEST_EXTENSION_CODE				= "Próbaidőszak meghosszabbítása most"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUTTON_VERIFY_TEST_EXTENSION_CODE_SILVER		= "Program korlátlan használata"

#version protection unlock dialog exit
IDS_VERSION_PROTECTION_UNLOCK_DLG_EXIT_BUTTON_CANCEL		= "Befejezés"
IDS_VERSION_PROTECTION_UNLOCK_DLG_EXIT_BUTTON_CONTINUE		= "Indítás"
IDS_VERSION_PROTECTION_UNLOCK_DLG_EXIT_BUTTON_TEST			= "Program kipróbálása most"
IDS_VERSION_PROTECTION_UNLOCK_DLG_EXIT_BUTTON_OK			= "OK"
IDS_VERSION_PROTECTION_UNLOCK_DLG_EXIT_BUTTON_ABORT			= "Megszakítás"
IDS_VERSION_PROTECTION_UNLOCK_DLG_BUTTON_WHY_UNLOCK			= "Amiért érdemes regisztrálni..."

#version protection status messages
IDS_VERSION_PROTECTION_UNLOCK_DLG_UNLOCK_VERIFICATION_SUCCESS			= "Nagyon köszönjük, az aktiválás sikerült.\n\nJól őrizze meg a sorozatszámát, és aktiválókódját is - ha van. Újbóli telepítés esetén megint meg kell majd adnia."
IDS_VERSION_PROTECTION_UNLOCK_DLG_UNLOCK_VERIFICATION_FAILED			= "Az aktiválás nem sikerült.\n\nForduljon a(z) #MANDANT_ID#támogatásához.\n\nHibakód: %d"
IDS_VERSION_PROTECTION_UNLOCK_DLG_UNLOCKED_BUT_NOT_REGISTERED			= "Az aktiválás sikerült, azonban a programot egy hiba vagy a kapcsolat megszakadása miatt nem regisztrálta.\n\nNe feledje, hogy a program néhány funkciója, mint pl. az online frissítés csak regisztrált ügyfeleink számára elérhető."
IDS_VERSION_PROTECTION_UNLOCK_DLG_UNLOCKED_BUT_REGISTERED_TO_OTHER_USER	= "Az aktiválás sikerült, sorozatszámát azonban már egy másik e-mail címmel regisztrálták. A regisztrált címet a(z) #MANDANT_ID#szolgáltatóközpontjában tudja módosítani."
IDS_VERSION_PROTECTION_UNLOCK_DLG_REGISTER_VERIFICATION_SUCCESS			= "%s regisztrációja sikerült."
IDS_VERSION_PROTECTION_UNLOCK_DLG_REGISTER_VERIFICATION_FAILED			= "A regisztráció nem sikerült.\n\nIsmételje meg ezt az eljárást egy későbbi időpontban, vagy forduljon a(z) #MANDANT_ID#támogatásához.\n\nHibakód: %d"
IDS_VERSION_PROTECTION_UNLOCK_DLG_TRIAL_EXTENSION_SUCCESS				= "A próbaidőszakot %d nappal meghosszabbítottuk."
IDS_VERSION_PROTECTION_UNLOCK_DLG_TRIAL_EXTENSION_SUCCESS_SILVER		= "Nagyon köszönjük regisztrációját."
IDS_VERSION_PROTECTION_UNLOCK_DLG_TRIAL_EXTENSION_FAILED				= "A hosszabbítókód hibás.\n\nVizsgálja meg a beírt hosszabbítókódot, vagy forduljon a(z) #MANDANT_ID#támogatásához."
IDS_VERSION_PROTECTION_SERVER_STATUS_GENERAL_FAILURE					= "Az online kapcsolat közben hiba történt, vagy a kapcsolat megszakadt. Forduljon a(z) #MANDANT_ID#támogatásához.\n\nHibakód: %d"
IDS_VERSION_PROTECTION_SERVER_STATUS_NO_USER_ACCOUNT					= "A regisztráció nem sikerült. Lehet, hogy a rendszer nem tudta befejezni.\n\nHibakód: %d"
IDS_VERSION_PROTECTION_SERVER_STATUS_INVALID_SERIAL						= "Az Ön által megadott sorozatszám érvénytelen. Nézze meg, hogy jól írta-e be. Ha a probléma továbbra is fennáll, forduljon a(z) #MANDANT_ID#támogatásához.\n\nHibakód: %d"
IDS_VERSION_PROTECTION_SERVER_STATUS_SERIAL_IN_USE						= "Ezt a sorozatszámot már egy másik e-mail címmel regisztrálták. Forduljon a(z) #MANDANT_ID#támogatásához.\n\nHibakód: %d"
IDS_VERSION_PROTECTION_SERVER_STATUS_ALREADY_REGISTERED					= "Ezt a terméket Ön már regisztrálta."
IDS_VERSION_PROTECTION_SERVER_STATUS_TOO_MANY_UNLOCKS					= "Túllépte az aktiválási eljárások lehetséges legtöbb számát. Biztonságtechnikai okokból, és az Ön megvásárolt licencének védelme érdekében az automatikus eljárások száma korlátozott. Forduljon a(z) #MANDANT_ID#támogatásához, hogy az aktiválást még egyszer elvégezze."
IDS_VERSION_PROTECTION_CAPS_LOCK_WARNING								= "Több betűt vagy különleges karaktert írt be.\nA sorozatszám megadásához kizárólag számjegyekre van szüksége. A kötőjeleket a program automatikusan beilleszti.\nNézze meg, hogy a 'Caps Lock' gomb be van-e kapcsolva, és szükség esetén a gombot újra megnyomva kapcsolja ki ezt a funkciót."
IDS_VERSION_PROTECTION_STATUS_NO_NETWORK_CONNECTION						= "Nem lehetett internetkapcsolatot létrehozni. Vizsgálja meg, hogy a számítógépe megfelelően csatlakozik-e az internetre. Előfordulhat, hogy egy tűzfal akadályozza az internet elérését."
IDS_VERSION_PROTECTION_NETCLIENT_STATUS_ACTIVATED						= "Kapcsolat felépítve: '%s' (%d port)"
IDS_VERSION_PROTECTION_NETCLIENT_STATUS_FAILURE							= "Nincs kapcsolat '%s' licenckezelőjéhez (%d port)."
IDS_VERSION_PROTECTION_NETCLIENT_ERROR_GENERIC							= "Hiba történt, miközben a rendszer megpróbálta létrehozni a kapcsolatot a '%s' gépen (%d portján) lévő hálózati licenckezelővel.\nForduljon a(z) #MANDANT_ID#támogatásához.\n\nHibakód: %d"
IDS_VERSION_PROTECTION_NETCLIENT_ERROR_WRONG_PRODUCT					= "A(z) '%s' számítógép (%d portján) elindított hálózati licenckezelő egy másik termékhez tartozik, ami nem használható együtt ezzel: %s."
IDS_VERSION_PROTECTION_NETCLIENT_ERROR_WRONG_PROTOCOL					= "Hálózati licenckezelő: A telepítés közben hiba történt, amit valószínűleg a termék egy hibás frissítése okozott.\nForduljon a(z) #MANDANT_ID#támogatásához."
IDS_VERSION_PROTECTION_NETCLIENT_ERROR_CONNECTION_LOST					= "Megszakadt a(z) '%s' számítógép (%d portja) felé fennálló kapcsolat. Ellenőrizze a hálózati kapcsolatot és győződjön meg arról, hogy a hálózati licenckezelő elindult-e.\nA program véget ér és menti a módosításokat. Emellett indítsa el a(z) %s programot újra.\n(Hibakód: %d)"
IDS_VERSION_PROTECTION_NETCLIENT_ERROR_NO_LICENCE						= "A(z) '%s' hálózati licenckezelője nem rendelkezik szabad licenccel.\n\nÁllítsa le a(z) %s programot egy másik számítógépen, vagy vásároljon további hálózati licenceket."
IDS_VERSION_PROTECTION_NETCLIENT_ERROR_HOST_NOT_FOUND					= "A hálózati licenckezelő nem érhető el.\nGyőződjön meg arról, hogy a(z) '%s' számítógép elérhető, és ott %s számára elindult egy hálózati licenckezelő, és a %d portot kommunikációra használja. Előfordulhat, hogy egy tűzfal akadályozza a hálózati hozzáférését."

#version protection n req
IDS_VERSION_PROTECTION_NREQ_USER_IDENTIFICATION_CHANGE_DETECTED	= "Az e-mail cím megváltozott.\n\nEnnek következtében előfordulhat, hogy a korábban elvégzett regisztrációkat már nem Önhöz/az Ön számítógépéhez társítani, ill. a(z) #MANDANT_ID#online szolgáltatások megnyitásakor újra meg kell adnia a hozzáférési adatait.\nEnnek ellenére szeretné használni az új e-mail címet?"
IDS_VERSION_PROTECTION_NREQ_CHANGE_USER_IDENTIFICATION			= "Az új címet használom"
IDS_VERSION_PROTECTION_NREQ_KEEP_USER_IDENTIFICATION			= "Megtartom a régi címet"

#version protection please wait box
IDS_VERSION_PROTECTION_UNLOCK_DLG_PLEASE_WAIT_TEXT			= "Várjon..."

#version protection nag box
IDS_VERSION_PROTECTION_UNREGISTERED_BOX_NAG_TEXT1				= "Az Ön programverziója még nincs regisztrálva!"
IDS_VERSION_PROTECTION_UNREGISTERED_BOX_NAG_TEXT2				= "A regisztrációval hozzáférhet a program frissítéseihez, támogatáshoz, kiegészítő funkciók aktiválásához.\n\nEzen kívül növeli az Ön biztonságát, hiszen ezáltal a programlicencével nem lehet visszaélni.\nEzért javasoljuk, hogy regisztrálja a programot."
IDS_VERSION_PROTECTION_UNREGISTERED_BOX_NAG_BUTTON_UNLOCK		= "Most regisztrálok..."
IDS_VERSION_PROTECTION_UNREGISTERED_BOX_NAG_BUTTON_CONTINUE		= "Később regisztrálok"
IDS_VERSION_PROTECTION_UNREGISTERED_BOX_CHECKBOX_DONT_SHOW_AGAIN= "Ne jelenjen meg többet ez a párbeszédablak"

#version protection support contact form
IDS_VERSION_PROTECTION_CONTACT_SUPPORT_DIALOG_TITLE				= "Tájékoztató a támogatásról"
IDS_VERSION_PROTECTION_CONTACT_SUPPORT_INTRO_TEXT_01			= "A(z) #MANDANT_ID#támogatás számára készítse elő a következő adatokat:"
IDS_VERSION_PROTECTION_CONTACT_SUPPORT_PRODUCT_NAME_LABEL		= "Termék megnevezése:"
IDS_VERSION_PROTECTION_CONTACT_SUPPORT_USER_IDENTIFICATION_LABEL= "Érvényes e-mail cím:"
IDS_VERSION_PROTECTION_CONTACT_SUPPORT_SERIAL_NUMBER_LABEL		= "Sorozatszám:"
IDS_VERSION_PROTECTION_CONTACT_SUPPORT_COMPUTER_ID_LABEL		= "Számítógép azonosító:"
IDS_VERSION_PROTECTION_BUTTON_CLOSE								= "Bezárás"

#version protection unlock offline dialog
IDS_VERSION_PROTECTION_UNLOCK_OFFLINE_DLG_HEADLINE			= "Aktiválás levélben/faxon"
IDS_VERSION_PROTECTION_OFFLINE_DLG_INTRO_TEXT_01			= "Többféleképpen is elküldheti az aktiválási adatait a(z) #MANDANT_ID#számára, és kaphat aktiválókódot a termékéhez."
IDS_VERSION_PROTECTION_OFFLINE_DLG_INTRO_TEXT_02			= "A postai feldolgozás igénybe vehet néhány napot."
IDS_VERSION_PROTECTION_OFFLINE_DLG_GROUPBOX					= "Válassza ki az aktiválási módot:"
IDS_VERSION_PROTECTION_OFFLINE_DLG_RADIO_FAX				= "Aktiválás faxon"
IDS_VERSION_PROTECTION_OFFLINE_DLG_FAX_TEXT1				= "<textblock foreground="#FFFFFF">Töltse ki a faxűrlapot, nyomtassa ki és küldje el. A faxszámot az űrlapon találja.</textblock>"
IDS_VERSION_PROTECTION_OFFLINE_DLG_FAX_TEXT2				= "Az aktiválókódot elküldjük az Ön által megadott e-mail címre."
IDS_VERSION_PROTECTION_OFFLINE_DLG_BUTTON_FAX				= "Faxűrlap megnyitása..."
IDS_VERSION_PROTECTION_OFFLINE_DLG_RADIO_MAIL				= "Aktiválás levélben"
IDS_VERSION_PROTECTION_OFFLINE_DLG_MAIL_TEXT1				= "<textblock foreground="#FFFFFF">Töltse ki az űrlapot, nyomtassa ki és küldje el postán. A postacímet a dokumentumban találja.</textblock>"
IDS_VERSION_PROTECTION_OFFLINE_DLG_MAIL_TEXT2				= "Az aktiválókódot elküldjük az e-mail címére. A feldolgozás igénybe vehet néhány napot."
IDS_VERSION_PROTECTION_OFFLINE_DLG_BUTTON_MAIL				= "Űrlap megnyitása..."
IDS_VERSION_PROTECTION_OFFLINE_DLG_RADIO_SERVICE_CENTER		= "Aktiválás a szervizközpontban"
IDS_VERSION_PROTECTION_OFFLINE_DLG_SERVICE_CENTER_TEXT1		= "<textblock foreground="#FFFFFF">Aktiválás egy másik, az internetre kapcsolódó számítógépen. Szükséges adatok kinyomtatása.</textblock>"
IDS_VERSION_PROTECTION_OFFLINE_DLG_SERVICE_CENTER_TEXT2		= "A(z) #MANDANT_ID#szervizközpontban azonnal megkapja az aktiválókódot."
IDS_VERSION_PROTECTION_OFFLINE_DLG_BUTTON_SERVICE_CENTER	= "Űrlap megnyitása..."

#version protection unlock via telephone dialog
IDS_VERSION_PROTECTION_PHONE_DLG_HEADLINE					= "Aktiválás telefonon"
IDS_VERSION_PROTECTION_PHONE_DLG_INTRO_TEXT01				= "Termékét mindig tudja aktiválni telefonon keresztül. Válasszon:"
IDS_VERSION_PROTECTION_PHONE_DLG_INTRO_TEXT02				= "Telefonon keresztül megkérjük arra, hogy a gombokkal adja meg az alábbi számsorokat:"
IDS_VERSION_PROTECTION_PHONE_DLG_UNLOCK_CODE_TEXT1			= "Itt írja be az Önnek telefonon megadott aktiválókódot (csak számjegyekkel!). Kattintson az 'Aktiválás' pontra:"
IDS_VERSION_PROTECTION_PHONE_DLG_GROUPBOX					= "Adatátvitel az aktiváláshoz"
IDS_VERSION_PROTECTION_PHONE_DLG_BUTTON_UNLOCK				= "Aktiválás"
IDS_VERSION_PROTECTION_PHONE_DLG_BUTTON_TROUBLESHOOTING		= "Problémakezelés..."

# -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

#feature protection message box
IDS_FEATURE_PROTECTION_MESSAGE_BOX_CAPTION					= "Megjegyzés"
IDS_FEATURE_PROTECTION_MESSAGE_BOX_CLOSE					= "OK"

#feature protection invalid code dialog
IDS_FEATURE_PROTECTION_INVALID_CODE_DLG_CAPTION				= "Megjegyzés"
IDS_FEATURE_PROTECTION_INVALID_CODE_DLG_CLOSE				= "Befejezés"
IDS_FEATURE_PROTECTION_INVALID_CODE_DLG_TEXT1				= "Ez az aktiváló kód nem jó. Kérjük, forduljon a #MANDANT_ID#Support csapatához:"
IDS_FEATURE_PROTECTION_INVALID_CODE_DLG_URL					= "hxxp://support.magix.net"

#feature protection show computer ID dialog
IDS_FEATURE_PROTECTION_SHOW_COMPUTER_ID_DLG_CAPTION			= "Számítógép ID"
IDS_FEATURE_PROTECTION_SHOW_COMPUTER_ID_DLG_OPEN_FORM		= "Tovább a megrendelési űrlaphoz..."
IDS_FEATURE_PROTECTION_SHOW_COMPUTER_ID_DLG_TEXT1			= "Kérjük jegyezze fel az alábbi betűket és számokat, vagyis az úgynevezett számítógép ID-t. Ezekre a későbbiekben szüksége lesz az aktiváló kód megrendeléséhez."
IDS_FEATURE_PROTECTION_SHOW_COMPUTER_ID_DLG_CANCEL			= "Megszakítás"

#feature protection show computer ID for service center dialog
IDS_FEATURE_PROTECTION_SHOW_COMPUTER_ID_DLG_FOR_SERVICE_CENTER_CAPTION	= "Számítógép ID"
IDS_FEATURE_PROTECTION_SHOW_COMPUTER_ID_DLG_FOR_SERVICE_CENTER_TEXT1	= "Kérjük jegyezze fel az alábbi betűket és számokat, vagyis az úgynevezett számítógép ID-t. Kérjük, egy tetszőleges számítógépről látogasson el a www.magix.de oldalra, regisztrálja a termékét, majd kattintson az 'Aktiválás létrehozása' opcióra."
IDS_FEATURE_PROTECTION_SHOW_COMPUTER_ID_DLG_FOR_SERVICE_CENTER_CLOSE	= "Befejezés"

#feature protection activation dialog
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_CREATE_ACTIVATION	= "Aktiválás létrehozása"
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_SERVICE_CENTER		= "Ügyfélközponton keresztül..."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_ONLINE				= "Online aktiválás"
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_MAIL_FAX			= "Posta/fax révén..."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_TELEPHONE			= "Telefonos úton..."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_RESTORE_ACTIVATION	= "Aktiválás visszaállítása..."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_HELP				= "Súgó"
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_BUTTON_CANCEL				= "Megszakítás"
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_GROUPBOX1					= "1. Regisztrálás és az aktiválási kód kézhezvétele"
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_TEXT3						= "1. Online aktiválás. Kérjük győződjön meg, hogy számítógépe össze van kötve az internettel."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_GROUPBOX2					= "2. Aktiváló kód beadása"
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_TEXT4						= "Kérjük, most adja meg az aktiváló kódját, amint az ügyfélközponton keresztül, posta/fax révén vagy e-mailben kapott meg, majd kattintson az 'Aktiválás létrehozása' gombra."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_WELCOME					= "Aktiválja a funkciót két egyszerű lépésben, hogy az ahhoz tartozó funkciókat használni tudja."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_TEXT_RESTORE				= "Ha ez a funkció korábban már engedélyezve lett, akkor a számítógép konfigurációjában végzett változások oda vezethettek, hogy az aktiváló kód érvénytelen lett. Ebben az esetben egyszerűen végezze el még egyszer az aktiválást."
IDS_FEATURE_PROTECTION_UNLOCK_DIALOG_TEXT5						= "2. Nincs online aktiválás. Az alábbi alternatív lehetőségek közül választhat egy aktiváló kód megrendeléséhez."

#feature protection activation dialog caption lines
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_DEFAULT			= "%s - Aktiválás"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_MP3 				= "MP3"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_MPEG4 				= "MPEG-4"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_MPEG2_CODEC 		= "MPEG-2"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_MPEG2_DECODER 		= "MPEG-2 lejátszása"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SYNTH 		= "VITA Synthesizer"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_DOLBY_51 			= "Dolby Digital 5.1"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_DOLBY_STEREO 		= "Dolby Digital Stereo lejátszása"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_FLASH_VIDEO		= "Flash Video"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_MP3PRO				= "MP3 Pro"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_AAC				= "AAC"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VASCO_DA_GAMA		= "Vasco da Gama"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_PRODAD_ADORAGE		= "proDAD Adorage"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_AVCHD_CODEC		= "AVCHD"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_PRODAD_MERCALLI	= "proDAD Mercalli"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_NEWBLUEFX			= "NewBlueFX Premium Effects"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_AVCINTRA_CODEC					= "AVC Intra"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_DVCPRO_CODEC					= "DVC Pro"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_MPEG4_BASIC					= "MPEG-4 Basic"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_AACMC							= "AAC (MC)"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_CODEC_PACKAGE_V1				= "Codec Package V1"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_01 = "Vita eszköz #01"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_02 = "Vita eszköz #02"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_03 = "Vita eszköz #03"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_04 = "Vita eszköz #04"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_05 = "Vita eszköz #05"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_06 = "Vita eszköz #06"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_07 = "Vita eszköz #07"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_08 = "Vita eszköz #08"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_09 = "Vita eszköz #09"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_10 = "Vita eszköz #10"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_11 = "Vita eszköz #11"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_12 = "Vita eszköz #12"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_13 = "Vita eszköz #13"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_14	= "Vita Solo Woodwinds HQ"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_15	= "Vita Solo Strings HQ"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_16	= "Vita Solo Brass HQ"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_17	= "Vita Ensemble Woodwinds HQ"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_18	= "Vita Ensemble Strings HQ"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_19	= "Vita Ensemble Brass HQ"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_INSTRUMENT_20	= "Vita Soundtrack Percussion 2"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_01		= "Vita Solo eszköz #01 (Century Keys)"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_02		= "Vita Solo eszköz #02 (Jazz Drums)"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_03		= "Vita Solo eszköz #03 (Saxophonia)"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_04		= "Vita Solo eszköz #04 (Space Pad)"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_05		= "Vita Solo eszköz #05"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_06		= "Vita Solo eszköz #06"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_07		= "Vita Solo eszköz #07"
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_CAPTION_VITA_SOLO_INSTRUMENT_08		= "Vita Solo eszköz #08"

#feature protection activate via telephone dialog
IDS_FEATURE_PROTECTION_PHONE_DIALOG_CAPTION					= "Telefonos aktiválás"
IDS_FEATURE_PROTECTION_PHONE_DIALOG_BUTTON_CANCEL			= "Megszakítás"
IDS_FEATURE_PROTECTION_PHONE_DIALOG_BUTTON_CREATE_ACTIVATION= "Aktiválás létrehozása"
IDS_FEATURE_PROTECTION_PHONE_DIALOG_GROUPBOX1				= "1. Aktiváló kód kézhez vétele"
IDS_FEATURE_PROTECTION_PHONE_DIALOG_GROUPBOX2				= "2. Aktiváló kód beadása"
IDS_FEATURE_PROTECTION_PHONE_DIALOG_TEXT1					= "Az ehhez a funkcióhoz tartozó aktiváló kódot bármikor a telefonos számítógépen keresztül is megkaphatja. Válasszon:"
IDS_FEATURE_PROTECTION_PHONE_DIALOG_TEXT2					= "Telefonon keresztül felszólítják, hogy a telefon gombjaival az alábbi számblokkokat adja meg:"
IDS_FEATURE_PROTECTION_PHONE_DIALOG_TEXT4					= "Itt adja meg az aktiváló kódot (csak számokat!), amit telefonos úton kapott meg. Ezek után kattintson az 'Aktiválás létrehozása' gombra."
IDS_FEATURE_PROTECTION_PHONE_DIALOG_BUTTON_INFO				= "Problémakezelés"

#feature protection activate via telephone info dialog
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_CAPTION			= "Információk a Support számára"
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_BUTTON_CLOSE		= "Befejezés"
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_TEXT1				= "Kérjük, a #MANDANT_ID#Support számára az alábbi információkat tartsa kéznél:"
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_TEXT2				= "1. Termékmegnevezés:"
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_TEXT3				= "2. Termék sorozatszáma:"
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_TEXT4				= "3. Aktiválandó komponens:"
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_TEXT5				= "4. Kód:"
IDS_FEATURE_PROTECTION_PHONE_INFO_DIALOG_BUTTON_HELP		= "Súgó"

#feature protection please wait dialog
IDS_FEATURE_PROTECTION_PLEASE_WAIT_DIALOG_TEXT1				= ""Kérjük várjon. Az aktivált funkciók rendelkezésre állítása eltarthat néhány percig."

#feature protection strings/status messages
IDS_FEATURE_PROTECTION_CLOSE								= "Befejezés"
IDS_FEATURE_PROTECTION_VALID_CODE							= "A '%s' funkció aktiválása sikeres volt."
IDS_FEATURE_PROTECTION_UNLOCK_FAILED						= "A '%s' funkció aktiválása sikertelen volt.\nHa a programot korlátozott felhasználóként futtatja, ismételje meg az aktiválást az adminisztrátor jogokkal."
IDS_FEATURE_PROTECTION_NOADMIN_NO_REGISTRATION				= "Az aktiválást korlátozott felhasználóként végzi el.\nAz aktiváláshoz írási jogosultsgára van szükség a rendszerkönyvtárakhoz. Kérjük, adminisztrátori jogokkal végezze el az aktiválást."
IDS_FEATURE_PROTECTION_SERIAL_WRONG							= "Az Ön által megadott sorozatszám hibás. Kérjük ellenőrizze a beadást."
IDS_FEATURE_PROTECTION_VERSIONSTRING						= "%s verzió"
IDS_FEATURE_PROTECTION_RESTORATION_TEXT_CHARGE_FREE			= "A számítógépes konfiguráció módosításai ahhoz vezethetnek, hogy az aktiválás érvénytelenné válik, még akkor is, ha ezt a funkciót már használta. Kérjük, végezze el a funkció ismételt aktiválását."
IDS_FEATURE_PROTECTION_ACTIVATION_DIALOG_INTRO_TEXT_DEFAULT = "Különböző lehetőségei vannak a '%s' funkció aktiválásához."
IDS_FEATURE_PROTECTION_OFFLINE_BUTTON_TEXT					= "Aktiváló kód offline megrendelése..."
IDS_FEATURE_PROTECTION_ONLINE_ACTIVATION_FAILED				= "Az Ön által megadott aktiváló kód érvénytelen. Kérjük, ellenőrizze az írásmódot. Ha a probléma továbbra is fennáll, forduljon a #MANDANT_ID#Support csapatához."

#misc
IDS_VERSION_PROTECTION_MANDANT_NAME							= "MAGIX "

[ControlHeights]
#unlock dialog
TopOffset=																		55

IDC_VERSION_PROTECTION_UNLOCK_DLG_WELCOME_TEXT=									46
IDC_VERSION_PROTECTION_UNLOCK_DLG_TEXT1=										68
IDC_VERSION_PROTECTION_UNLOCK_DLG_GROUPBOX=										2

IDC_VERSION_PROTECTION_UNLOCK_DLG_RADIO_ENTER_SERIAL=							90
IDC_VERSION_PROTECTION_UNLOCK_DLG_TOPLINE_ENTER_SERIAL=								-91
IDC_VERSION_PROTECTION_UNLOCK_DLG_TEXT2=											-78
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_EDIT_SERIAL_NUMBER=				50
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT1=								-50
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_PREFIX=								-44
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_CHECK_ICON=							-50
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_EDIT_USER_IDENTIFICATION=		54
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_USER_IDENTIFICATION_ICON=					-50
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_USER_IDENTIFICATION_CHECK_ICON=				-54
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT2=								-54
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT3=							36
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT4=								-3
ID_VERSION_PROTECTION_BUTTON_UNLOCK_ONLINE=										58
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT5=								-3
ID_VERSION_PROTECTION_BUTTON_WHY_UNLOCK=											-20
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_SERIAL_TEXT6=								-3
ID_VERSION_PROTECTION_BUTTON_UNLOCK_TELEPHONE=									20
ID_VERSION_PROTECTION_BUTTON_UNLOCK_OFFLINE=									20
ID_VERSION_PROTECTION_BUTTON_ALREADY_REGISTERED=								20

IDC_VERSION_PROTECTION_UNLOCK_DLG_RADIO_ENTER_UNLOCK_CODE=						90
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_UNLOCK_CODE_TEXT1=						20
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_UNLOCK_CODE_PREFIX=							-6
IDC_VERSION_PROTECTION_UNLOCK_DLG_ENTER_UNLOCK_CODE_EDIT=						35
ID_VERSION_PROTECTION_BUTTON_VERFIY_UNLOCK_CODE=								30

IDC_VERSION_PROTECTION_UNLOCK_DLG_RADIO_BUY_UNLOCK_CODE=						90
IDC_VERSION_PROTECTION_UNLOCK_DLG_TOPLINE_BUY_ONLINE=								-91
IDC_VERSION_PROTECTION_UNLOCK_DLG_BUY_ONLINE_TEXT1=									-71
IDC_VERSION_PROTECTION_UNLOCK_DLG_BUY_ONLINE_TEXT2=									-3
ID_VERSION_PROTECTION_BUTTON_BUY_ONLINE=										58
IDC_VERSION_PROTECTION_UNLOCK_DLG_ADVERTISEMENT=								140

IDC_VERSION_PROTECTION_UNLOCK_DLG_RADIO_CONTINUE_TESTING=						90
IDC_VERSION_PROTECTION_UNLOCK_DLG_TOPLINE_CONTINUE_TESTING=							-91
IDC_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_TIME_LEFT=						-63
IDC_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_TEXT1=							-3
IDC_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_EDIT=						49
IDC_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_EDIT_CHECK_ICON=					-49
IDC_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_TEXT2=							-47
IDC_VERSION_PROTECTION_UNLOCK_DLG_CONTINUE_TESTING_PREFIX=							-44
ID_VERSION_PROTECTION_BUTTON_VERIFY_TEST_INTERVAL_EXTENSION_CODE=				70
ID_VERSION_PROTECTION_BUTTON_CONTINUE_TESTING=									58
ID_VERSION_PROTECTION_BUTTON_EXTEND_TEST_INTERVAL=									-46

ID_VERSION_PROTECTION_BUTTON_EXIT=												35

#unlock offline dialog
IDC_VERSION_PROTECTION_OFFLINE_DLG_INTRO_TEXT_01=								60
IDC_VERSION_PROTECTION_OFFLINE_DLG_INTRO_TEXT_02=								80
IDC_VERSION_PROTECTION_OFFLINE_DLG_GROUPBOX=									24

IDC_VERSION_PROTECTION_OFFLINE_DLG_RADIO_FAX=									90
IDC_VERSION_PROTECTION_OFFLINE_DLG_TOPLINE_FAX=										-91
IDC_VERSION_PROTECTION_OFFLINE_DLG_FAX_TEXT1=										-71
ID_VERSION_PROTECTION_OFFLINE_DLG_BUTTON_FAX=									58
IDC_VERSION_PROTECTION_OFFLINE_DLG_FAX_TEXT2=										-58

IDC_VERSION_PROTECTION_OFFLINE_DLG_RADIO_MAIL=									90
IDC_VERSION_PROTECTION_OFFLINE_DLG_TOPLINE_MAIL=									-91
IDC_VERSION_PROTECTION_OFFLINE_DLG_MAIL_TEXT1=										-71
ID_VERSION_PROTECTION_OFFLINE_DLG_BUTTON_MAIL=									58
IDC_VERSION_PROTECTION_OFFLINE_DLG_MAIL_TEXT2=										-58

IDC_VERSION_PROTECTION_OFFLINE_DLG_RADIO_SERVICE_CENTER=						90
IDC_VERSION_PROTECTION_OFFLINE_DLG_TOPLINE_SERVICE_CENTER=							-91
IDC_VERSION_PROTECTION_OFFLINE_DLG_SERVICE_CENTER_TEXT1=							-71
ID_VERSION_PROTECTION_OFFLINE_DLG_BUTTON_SERVICE_CENTER=						58
IDC_VERSION_PROTECTION_OFFLINE_DLG_SERVICE_CENTER_TEXT2=							-58

IDC_VERSION_PROTECTION_OFFLINE_DLG_RADIO_VERIFY_UNLOCK_CODE=					90
IDC_VERSION_PROTECTION_OFFLINE_DLG_TOPLINE_VERIFY_UNLOCK_CODE=						-91
IDC_VERSION_PROTECTION_OFFLINE_DLG_VERIFY_UNLOCK_CODE_TEXT_02=						-71
IDC_VERSION_PROTECTION_OFFLINE_DLG_UNLOCK_CODE_EDIT=							49
IDC_VERSION_PROTECTION_OFFLINE_DLG_UNLOCK_CODE_EDIT_CHECK_ICON=						-49
IDC_VERSION_PROTECTION_OFFLINE_DLG_UNLOCK_CODE_PREFIX=								-44
IDC_VERSION_PROTECTION_OFFLINE_DLG_VERIFY_UNLOCK_CODE_TEXT_01=						-44
ID_VERSION_PROTECTION_OFFLINE_DLG_BUTTON_VERIFY_UNLOCK_CODE=					58

ID_VERSION_PROTECTION_BUTTON_CLOSE=												35

[Settings]
StartCounterModulo=2

das andere etwas später.

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.79  
 Windows 7 Service Pack 1 x86 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Desktop   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 WinPatrol 
 SpywareBlaster 5.0    
 Secunia PSI (3.0.0.7009)   
 JavaFX 2.1.1    
 Java 7 Update 25  
 Java version out of Date! 
 Adobe Flash Player 	12.0.0.43  
 Adobe Reader 10.1.9 Adobe Reader out of Date!  
 Mozilla Firefox (26.0) 
````````Process Check: objlist.exe by Laurent````````  
 WinPatrol winpatrol.exe 
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
 BillP Studios WinPatrol WinPatrol.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

Alles fertig.

Lg Lotto

schrauber · 29.01.2014, 12:17

Java und Adobe updaten. Frisches FRST log fehlt

Lotto · 29.01.2014, 16:32

Hallo Schrauber,
sorry hab das mit FRST gar nicht gelesen.

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-01-2014 01
Ran by Antje (administrator) on ANTJE-PC on 29-01-2014 16:23:52
Running from C:\Users\Antje\Desktop\Dienstp
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(ABBYY) C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(AOL LLC) C:\Program Files\Common Files\aol\acs\AOLacsd.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(MAGIX AG) C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe
(Realtek) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
(Secunia) C:\Program Files\Secunia\PSI\psia.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(FNet Co., Ltd.) C:\Program Files\XFastUsb\XFastUsb.exe
(Creative Technology Ltd) C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe
(Creative Technology Ltd) C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
(America Online, Inc.) C:\Program Files\Common Files\aol\1324678810\ee\aolsoftware.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Macrovision Europe Ltd.) C:\Users\Antje\AppData\Local\temp\Sound_Blaster_X-Fi_MB_Cleanup.0001
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(BillP Studios) C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
() C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Creative Labs) C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [2145904 2011-02-22] (VIA)
HKLM\...\Run: [XFastUsb] - C:\Program Files\XFastUsb\XFastUsb.exe [4942336 2011-12-23] (FNet Co., Ltd.)
HKLM\...\Run: [CTSyncService] - C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe [1233195 2009-07-08] (Creative Technology Ltd)
HKLM\...\Run: [VolPanel] - C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-05-04] (Creative Technology Ltd)
HKLM\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM\...\Run: [RunDLLEntry] - C:\Windows\system32\AmbRunE.dll [14848 2009-02-26] (Creative Technology Ltd.)
HKLM\...\Run: [HostManager] - C:\Program Files\Common Files\AOL\1324678810\ee\AOLSoftware.exe [50736 2006-09-26] (America Online, Inc.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2014-01-14] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM\...\Run: [STCAgent] - "C:\Program Files\Splashtop\Splashtop Connect IE\STCAgent.exe"
HKLM\...\Run: [ZyngaGamesAgent] - "C:\Program Files\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
HKCU\...\Run: [KiesPDLR] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [20880 2011-07-26] ()
HKCU\...\Run: [WinPatrol] - C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [423144 2013-04-26] (BillP Studios)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE6CAF486BEC1CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://de.search.yahoo.com/?fr=w3i&type=W3i_SP,204,0_0,StartPage,20120101,16988,0,8,0
HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLEP1&pc=SPLH
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLEP1&pc=SPLH
SearchScopes: HKCU - {5D422421-30DD-42B3-826E-9224F52BFC47} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {6D0FF7A0-C6C5-4a24-8F09-C074ED2B20A0} URL = hxxp://de.search.yahoo.com/search?p={searchterms}&ei=UTF-8&fr=w3i&type=W3i_DS,136,0_0,Search,20120101,16987,0,8,0
SearchScopes: HKCU - {6DA59B2F-C380-26BF-75EF-54850C7D29F4} URL = hxxp://go.gmx.net/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {7D09D9D4-CEDB-47B3-8779-584CFD2BABB0} URL = hxxp://go.web.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {9DDD17F4-2BF7-4662-B5A0-92270A4C54F7} URL = hxxp://www.amazon.de/gp/search?ie=UTF8&keywords={searchTerms}&tag= interactivemesuche21&index=blended&linkCode=ur2&camp=1638&creative=6742
SearchScopes: HKCU - {B442213A-49FA-404C-8A15-326E8709045B} URL = hxxp://suche.t-online.de/fastcgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&d ia=suche&context=wiki-tab&tpc=internet&ptl=std&classification=wikitab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKCU - {BC51C75D-1339-43dd-921D-49F5D0A2F625} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A6976579318&ie=UTF-8&q=&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A6976579318&q={searchTerms}
SearchScopes: HKCU - {CA25764C-9109-4C88-9615-DCF100F14585} URL = hxxp://suche.t-online.de/fast-cgi/tsc?mandant=toi&device=html&portallanguage=de&userlanguage=de&dia=suche&context=internet-tab&tpc=internet&ptl=std&classification=internet-tab_internet_std&q={searchTerms}&br=ie7-toi
SearchScopes: HKCU - {E8B82BA8-923F-4120-B179-4144137AB04D} URL = hxxp://search.gmx.com/web?q={searchTerms}&origin=tb_splugin_ie
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Adblock IE - {667BEE43-20BD-4CE3-94AC-E63E04D4B191} - C:\Program Files\MGTEK\Adblock IE\adblockie.dll (MGTEK)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL LLC)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll (AOL LLC)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} hxxp://game.zylom.com/activex/zylomgamesplayer.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-27]
FF Extension: NoScript - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-06-30]
FF Extension: Adblock Plus - C:\Users\Antje\AppData\Roaming\Mozilla\Firefox\Profiles\x7i3xx6c.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-06-30]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-03]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-03-03]

========================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-08-18] (ABBYY)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2014-01-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2014-01-14] (Avira Operations GmbH & Co. KG)
R2 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2011-12-23] (Creative Labs)
S2 Dnscache; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 Fabs; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG)
S3 FirebirdServerMAGIXInstance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)
R2 Realtek11nSU; C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1227800 2013-04-18] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [659992 2013-04-18] (Secunia)
R3 Sound Blaster X-Fi MB Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [79360 2011-12-23] (Creative Labs)
R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
R2 Update-Service; C:\Windows\System32\UpdSvc.dll [114000 2011-12-24] (Joosoft.com GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-02-17] (VIA Technologies, Inc.)
S2 SmartViewService; C:\Program Files\DeviceVM\SmartView\SmartViewService.exe [x]

==================== Drivers (Whitelisted) ====================

R1 AsrAppCharger; C:\Windows\System32\DRIVERS\AsrAppCharger.sys [13832 2010-06-11] (Windows (R) Win 7 DDK provider)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-14] (Avira Operations GmbH & Co. KG)
R3 CompFilter; C:\Windows\System32\DRIVERS\lvbusflt.sys [22176 2012-01-18] (Logitech Inc.)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [29248 2012-04-19] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [14656 2011-12-23] (FNet Co., Ltd.)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [67456 2011-04-13] (Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [161024 2011-04-13] (Renesas Electronics Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-04-18] (Secunia)
R3 RTL8187B; C:\Windows\System32\DRIVERS\wg111v3.sys [376832 2009-11-18] (NETGEAR Inc.                           )
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1801328 2011-02-17] (VIA Technologies, Inc.)
R3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2006-11-29] (America Online, Inc.)
S3 catchme; \??\C:\Users\Antje\AppData\Local\Temp\catchme.sys [x]
S3 MSICDSetup; \??\D:\CDriver.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-28 17:50 - 2014-01-28 17:50 - 00000000 ____D C:\Program Files\ESET
2014-01-28 17:49 - 2014-01-28 17:49 - 02347384 _____ (ESET) C:\Users\Antje\Downloads\esetsmartinstaller_enu(1).exe
2014-01-28 17:49 - 2014-01-28 17:49 - 00987425 _____ C:\Users\Antje\Downloads\SecurityCheck(1).exe
2014-01-27 19:50 - 2014-01-27 19:50 - 00004991 _____ C:\Users\Antje\Desktop\JRT.txt
2014-01-27 19:43 - 2014-01-27 19:53 - 00000000 ____D C:\AdwCleaner
2014-01-27 18:34 - 2014-01-27 18:34 - 01236282 _____ C:\Users\Antje\Downloads\adwcleaner.exe
2014-01-27 18:34 - 2014-01-27 18:34 - 01037068 _____ (Thisisu) C:\Users\Antje\Downloads\JRT(1).exe
2014-01-27 18:05 - 2014-01-27 18:05 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Antje\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-17 10:24 - 2014-01-17 10:24 - 00000000 ____D C:\Users\Antje\.swt
2014-01-17 10:23 - 2014-01-17 10:23 - 00001940 _____ C:\Users\Public\Desktop\MP3 Rocket 6.4.5.lnk
2014-01-17 10:22 - 2014-01-17 10:22 - 00663776 _____ (MP3Rocket) C:\Users\Antje\Downloads\mp3rocket(1).exe
2014-01-15 09:41 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 09:41 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 09:41 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 09:41 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-05 14:08 - 2014-01-05 14:08 - 00018866 _____ C:\ComboFix.txt

==================== One Month Modified Files and Folders =======

2014-01-29 16:23 - 2013-09-11 08:25 - 00000000 ____D C:\Users\Antje\Desktop\Dienstp
2014-01-29 16:23 - 2013-07-03 07:45 - 00000000 ____D C:\FRST
2014-01-29 16:20 - 2012-04-03 06:55 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-29 16:14 - 2009-07-14 05:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 16:14 - 2009-07-14 05:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 16:13 - 2011-12-23 21:41 - 01350732 _____ C:\Windows\WindowsUpdate.log
2014-01-29 16:08 - 2013-06-25 14:14 - 00028896 _____ C:\Windows\setupact.log
2014-01-29 16:08 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-28 17:50 - 2014-01-28 17:50 - 00000000 ____D C:\Program Files\ESET
2014-01-28 17:49 - 2014-01-28 17:49 - 02347384 _____ (ESET) C:\Users\Antje\Downloads\esetsmartinstaller_enu(1).exe
2014-01-28 17:49 - 2014-01-28 17:49 - 00987425 _____ C:\Users\Antje\Downloads\SecurityCheck(1).exe
2014-01-27 19:53 - 2014-01-27 19:43 - 00000000 ____D C:\AdwCleaner
2014-01-27 19:50 - 2014-01-27 19:50 - 00004991 _____ C:\Users\Antje\Desktop\JRT.txt
2014-01-27 19:17 - 2011-12-23 22:19 - 00603012 _____ C:\Windows\PFRO.log
2014-01-27 19:17 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Branding
2014-01-27 18:34 - 2014-01-27 18:34 - 01236282 _____ C:\Users\Antje\Downloads\adwcleaner.exe
2014-01-27 18:34 - 2014-01-27 18:34 - 01037068 _____ (Thisisu) C:\Users\Antje\Downloads\JRT(1).exe
2014-01-27 18:05 - 2014-01-27 18:05 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Antje\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 12:26 - 2013-12-11 18:20 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-27 12:26 - 2011-12-23 23:54 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-01-27 12:26 - 2011-12-23 22:23 - 00000000 ____D C:\Users\Antje\AppData\Local\Adobe
2014-01-22 14:44 - 2012-02-06 11:40 - 00000000 ____D C:\Users\Antje\AppData\Roaming\vlc
2014-01-17 10:26 - 2012-03-09 10:30 - 00000000 ____D C:\Users\Antje\Incomplete
2014-01-17 10:24 - 2014-01-17 10:24 - 00000000 ____D C:\Users\Antje\.swt
2014-01-17 10:24 - 2012-03-09 10:36 - 00000000 ____D C:\Program Files\MP3 Rocket
2014-01-17 10:24 - 2012-03-09 10:29 - 00000000 ____D C:\Users\Antje\AppData\Roaming\MP3Rocket
2014-01-17 10:24 - 2011-12-23 21:50 - 00000000 ____D C:\Users\Antje
2014-01-17 10:23 - 2014-01-17 10:23 - 00001940 _____ C:\Users\Public\Desktop\MP3 Rocket 6.4.5.lnk
2014-01-17 10:22 - 2014-01-17 10:22 - 00663776 _____ (MP3Rocket) C:\Users\Antje\Downloads\mp3rocket(1).exe
2014-01-15 17:59 - 2009-07-14 05:33 - 00487816 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 11:09 - 2013-08-15 10:02 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 11:07 - 2009-10-14 03:21 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 09:58 - 2009-07-14 03:04 - 00000709 _____ C:\Windows\win.ini
2014-01-05 14:08 - 2014-01-05 14:08 - 00018866 _____ C:\ComboFix.txt
2014-01-05 14:08 - 2013-07-08 09:20 - 00000000 ____D C:\Qoobox
2014-01-05 14:02 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2014-01-05 13:49 - 2013-07-08 09:12 - 05160001 ____R (Swearware) C:\Users\Antje\Downloads\ComboFix.exe
2014-01-04 20:29 - 2011-12-25 18:37 - 00000000 ____D C:\Users\Antje\Desktop\Gitarre
2014-01-04 18:32 - 2011-12-29 15:18 - 00000000 ____D C:\Users\Antje\AppData\Local\CrashDumps
2014-01-02 16:42 - 2011-12-23 21:55 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI

Some content of TEMP:
====================
C:\Users\Antje\AppData\Local\temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 10:50

==================== End Of Log ============================

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-01-2014 01
Ran by Antje at 2014-01-29 16:24:16
Running from C:\Users\Antje\Desktop\Dienstp
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
4500_G510nz_Help (Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz (Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz_Software_Min (Version: 000.0.423.000 - Hewlett-Packard) Hidden
ABBYY FineReader 11 (Version: 11.0.289 - ABBYY)
Acrobat.com (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (Version: 1.1.377 - Adobe Systems Incorporated)
Adblock IE 2.2 (Version: 2.2.1524 - MGTEK)
Adobe AIR (Version: 3.7.0.2090 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.7.0.2090 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (Version: 12.0.0.38 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (Version: 10.1.9 - Adobe Systems Incorporated)
AOL Deinstallation (Version:  - )
AP Tuner 3.08 (Version:  - )
Apple Application Support (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
ASRock App Charger v1.0.4 (Version:  - ASRock Inc.)
ASRock eXtreme Tuner v0.1.53 (Version:  - )
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.35 - Atheros Communications Inc.)
Avira Free Antivirus (Version: 14.0.2.344 - Avira)
BestPractice (remove only) (Version:  - )
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CameraHelperMsi (Version: 13.31.1038.0 - Logitech) Hidden
Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.)
CK Gruß- und Einladungskarten Designer (Version: 1.80.0000 - CK Software)
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden
DocMgr (Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Online Scanner v3 (Version:  - )
Fax (Version: 130.0.418.000 - Hewlett-Packard) Hidden
Firebird SQL Server - MAGIX Edition (Version: 2.1.27.0 - MAGIX AG)
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Heyer's Karten-Studio 2 (Version: 2.10.0000 - Bernd & Petra Heyer GbR, Köln)
HP Customer Participation Program 13.0 (Version: 13.0 - HP)
HP Document Manager 2.0 (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (Version: 13.0 - HP)
HP Officejet 4500 G510n-z (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (Version: 4.5 - HP)
HP Solution Center 13.0 (Version: 13.0 - HP)
HP Update (Version: 5.003.001.001 - Hewlett-Packard)
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Iminent (Version: 4.10.0.0 - Iminent) Hidden <==== ATTENTION
Intel(R) Management Engine Components (Version: 7.0.0.1144 - Intel Corporation)
Internet Explorer (Version: 9 - Microsoft Corporation) Hidden
iTuner (Version: 1.0.3 - iAppsPoint)
iTunes (Version: 11.0.4.4 - Apple Inc.)
Java 7 Update 25 (Version: 7.0.250 - Oracle)
JavaFX 2.1.1 (Version: 2.1.1 - Oracle Corporation)
Logitech Webcam-Software (Version: 2.30 - Logitech Inc.)
LWS Facebook (Version: 13.31.1038.0 - Logitech) Hidden
LWS Gallery (Version: 13.31.1038.0 - Logitech) Hidden
LWS Help_main (Version: 13.31.1044.0 - Logitech) Hidden
LWS Launcher (Version: 13.31.1038.0 - Logitech) Hidden
LWS Motion Detection (Version: 13.30.1395.0 - Logitech) Hidden
LWS Pictures And Video (Version: 13.31.1038.0 - Logitech) Hidden
LWS Twitter (Version: 13.30.1346.0 - Logitech) Hidden
LWS Video Mask Maker (Version: 13.30.1379.0 - Logitech) Hidden
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
LWS Webcam Software (Version: 13.31.1038.0 - Logitech) Hidden
LWS WLM Plugin (Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (Version: 13.31.1038.0 - Logitech) Hidden
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium Download-Version (Version: 10.0.1.14 - MAGIX AG)
MAGIX Video deluxe 17 Premium Download-Version (Version: 10.0.1.14 - MAGIX AG) Hidden
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft SkyDrive (HKCU Version: 16.4.6010.0727 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 26.0 - Mozilla)
MP3 Rocket (Version: 6.4.5 - MP3 Rocket Inc)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
Nero Burning ROM (Version: 12.5.5001 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (Version: 12.0.3000 - Nero AG) Hidden
Nero BurningROM 12 (Version: 12.5.01300 - Nero AG)
Nero ControlCenter (Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (Version: 12.0.12000 - Nero AG) Hidden
Nero Core Components (Version: 11.0.21800 - Nero AG) Hidden
Nero SharedVideoCodecs (Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Update (Version: 11.0.11800.31.0 - Nero AG) Hidden
NETGEAR WG111v3 wireless USB 2.0 adapter (Version: 1.00.0000 - NETGEAR)
NETGEAR WG111v3 wireless USB 2.0 adapter (Version: 1.00.0000 - NETGEAR) Hidden
Network (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Norton Internet Security (Version: 18.1.0.37 - Symantec Corporation) Hidden
NVIDIA Grafiktreiber 267.42 (Version: 267.42 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.265.39.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.10.0514 (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6742 - NVIDIA Corporation)
NVIDIA Systemsteuerung 267.42 (Version: 267.42 - NVIDIA Corporation) Hidden
OCR Software by I.R.I.S. 13.0 (Version: 13.0 - HP)
Platform (Version: 1.36 - VIA Technologies, Inc.) Hidden
Prerequisite installer (Version: 12.0.0003 - Nero AG) Hidden
QuickTime (Version: 7.74.80.86 - Apple Inc.)
REALTEK Wireless LAN Driver and Utility (Version: 1.00.0165 - REALTEK Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.16.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.16.0 - Renesas Electronics Corporation) Hidden
Samplitude Music Studio 17 Content Pack (Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 17 Download-Version (Version: 17.0.0.0 - MAGIX AG) Hidden
Samplitude Music Studio 17 Vita Pack 1 (Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 17 Vita Pack 2 (Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 17 Vita Pack 3 (Version: 1.0.0.0 - MAGIX AG)
Samsung Kies (Version: 2.0.2.11071_128 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.0.2.11071_128 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.2.2 - SAMSUNG Electronics Co., Ltd.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Secunia PSI (3.0.0.7009) (Version: 3.0.0.7009 - Secunia)
Shop for HP Supplies (Version: 13.0 - HP)
Skype Click to Call (Version: 5.8.8855 - Skype Technologies S.A.)
Skype™ 5.5 (Version: 5.5.124 - Skype Technologies S.A.)
Smart OCR 3.2.1.417 (Version: 3.2.1.417 - SmartSoft, LLC.)
SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi MB (Version: 1.0 - Creative Technology Limited)
Sound Effects (Version: 2.0 - Music Oasis)
Splashtop Connect IE (Version: 1.1.12.1 - Splashtop Inc.)
SpywareBlaster 5.0 (Version: 5.0.0 - BrightFort LLC)
Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SumatraPDF (Version: 2.2.1 - Krzysztof Kowalczyk)
Text-To-Speech-Runtime (Version: 1.0.0.0 - Magix Development GmbH)
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
VIA Plattform-Geräte-Manager (Version: 1.36 - VIA Technologies, Inc.)
VLC media player 2.0.7 (Version: 2.0.7 - VideoLAN)
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows 7 Upgrade Advisor (Version: 2.0.5000.0 - Microsoft Corporation)
WinPatrol (Version: 28.1.2013.0 - BillP Studios)
WinRAR 4.11 (32-Bit) (Version: 4.11.0 - win.rar GmbH)
XFastUsb (Version:  - )

==================== Restore Points  =========================

05-01-2014 12:50:45 ComboFix created restore point
07-01-2014 15:23:52 Windows Update
11-01-2014 16:56:03 Windows Update
15-01-2014 10:06:18 Windows Update
21-01-2014 08:57:21 Windows Update
28-01-2014 15:15:15 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:04 - 2013-08-19 14:47 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {52868A61-6D7B-4124-B8B9-513939B660F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-27] (Adobe Systems Incorporated)
Task: {8C20516A-0854-4055-9DDA-07F5D365959F} - System32\Tasks\{A56D0839-9B1E-4606-AE99-6CAD37FD905C} => C:\Program Files\Lexmark X1100 Series\LXBKaiox.exe
Task: {94904DBE-DBE1-4386-9DE3-1C4E1D91C064} - System32\Tasks\{9DA0F427-D915-4923-B20B-1FA49027F5E0} => C:\Program Files\Lexmark X1100 Series\LXBKaiox.exe
Task: {C3FBC991-3D6D-44E0-A406-6BDDC4AC416C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2011-12-23 22:11 - 2011-02-22 07:02 - 00080496 ____R () C:\Program Files\VIA\VIAudioi\VDeck\QsApoApi.dll
2011-12-23 22:11 - 2011-02-22 07:02 - 00113264 ____R () C:\Program Files\VIA\VIAudioi\VDeck\Dts2ApoApi.dll
2011-12-23 22:11 - 2011-02-22 07:02 - 00623216 ____R () C:\Program Files\VIA\VIAudioi\VDeck\Skin.dll
2014-01-29 16:08 - 2014-01-29 16:08 - 00697884 _____ () C:\Users\Antje\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0003\~df394b.tmp
2014-01-29 16:08 - 2014-01-29 16:08 - 00592896 _____ () C:\Users\Antje\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0003\~de6248.tmp
2011-12-23 22:18 - 2009-02-06 18:52 - 00073728 _____ () C:\Windows\SYSTEM32\CmdRtr.DLL
2011-12-23 22:18 - 2009-04-20 11:55 - 00148480 _____ () C:\Windows\SYSTEM32\APOMngr.DLL
2012-02-20 20:29 - 2012-02-20 20:29 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 20:28 - 2012-02-20 20:28 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-27 17:08 - 2014-01-27 17:08 - 00115137 _____ () C:\Users\Antje\AppData\Local\Temp\3dcf2df1-2a83-477c-a7dd-858967792357\CliSecureRT.dll
2013-06-27 16:47 - 2012-12-10 02:46 - 00600868 ____N () C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
2013-06-27 16:26 - 2013-12-22 10:02 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:5C321E34

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (01/29/2014 04:10:15 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:57 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2

Error: (01/29/2014 04:09:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DNS-Client" wurde mit folgendem Fehler beendet: 
%%2


Microsoft Office Sessions:
=========================
Error: (02/03/2013 04:56:00 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 524 seconds with 480 seconds of active time.  This session ended with a crash.


==================== Memory info =========================== 

Percentage of memory in use: 37%
Total physical RAM: 3054.7 MB
Available physical RAM: 1909.2 MB
Total Pagefile: 6105.64 MB
Available Pagefile: 4720.13 MB
Total Virtual: 2047.88 MB
Available Virtual: 1908.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:847.27 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: A27B1D46)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Ich weis nicht wie ich die Updates machen kann ???
Wo such ich da??
Ich dachte immer das geht automatisch....

Dankeeeeeeeeeeeeeeeeeee

Lg Lotto

schrauber · 30.01.2014, 15:52

Deinstallier es einfach und installier dann die neue Version

Fertig

Falls Du Lob oder Kritik loswerden möchtest kannst Du das hier tun

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Lotto · 31.01.2014, 11:25

Hallo Schrauber,
vielen dank für deine Hilfe.
Ich kann am WE erst alles erledigen was hier steht.
Vieles davon habe ich bereits vom vorigen mal laufen.
Im Moment klappt hier noch nicht alles richtig. Mal sehen wie es nach Abschluß der ganzen Sachen die noch ausstehen aussieht.
Ich melde mich.
Schönes WE.

Lotto

schrauber · 01.02.2014, 10:15

ok

Lotto · 02.02.2014, 17:57

Hallo Schrauber,
ich habe hier noch Probleme mit dem Shockwave Flash.
Hast du davon Ahnung?
Und wie macht man einen Plugin check??

Secunia funktioniert auch nicht da kommt immer keine rückmeldung.
LG Lotto

schrauber · 03.02.2014, 16:17

Secunia deinstallieren, teste mal den FileHippo UpdateChecker.

Was genau ist dein Problem mit Flash?

19.07.2013, 10:44	#46
schrauber /// the machine /// TB-Ausbilder	Maillaccount gehackt /verschiedene Funde mit Malewarebytes Gern Geschehen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

26.01.2014, 07:09	#48
schrauber /// the machine /// TB-Ausbilder	Maillaccount gehackt /verschiedene Funde mit Malewarebytes Klar, poste einfach mal frische FRST logs. Aber ich sag Dir gleich: 1) werden 99,99999% aller Email Accs online gehackt, ohne Malware auf dem System 2) kotzt mich dieser BSI Wahn und diese Panikmache total an __________________ __________________

29.01.2014, 12:17	#54
schrauber /// the machine /// TB-Ausbilder	Maillaccount gehackt /verschiedene Funde mit Malewarebytes Java und Adobe updaten. Frisches FRST log fehlt __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

01.02.2014, 10:15	#58
schrauber /// the machine /// TB-Ausbilder	Maillaccount gehackt /verschiedene Funde mit Malewarebytes ok __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

03.02.2014, 16:17	#60
schrauber /// the machine /// TB-Ausbilder	Maillaccount gehackt /verschiedene Funde mit Malewarebytes Secunia deinstallieren, teste mal den FileHippo UpdateChecker. Was genau ist dein Problem mit Flash? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Maillaccount gehackt /verschiedene Funde mit Malewarebytes

Plagegeister aller Art und deren Bekämpfung: Maillaccount gehackt /verschiedene Funde mit Malewarebytes