Solche Passwörter werden gerne direkt online abgegriffen, also auf jeden Fall Passwort ändern

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code: Alles auswählenAufklappen

ATTFilter

Task: {53456317-B019-4AF3-9978-9A92FFD6C407} - \avaxvavya No Task File <==== ATTENTION

Task: {9DDE7259-1DBE-4EC7-8664-FD68BC15FC76} - System32\Tasks\{57EC3370-41C8-47C5-91BB-43F4DBDAA053} => pcalua.exe -a C:\PROGRA~2\SearchProtect\Main\bin\uninstall.exe -c /S <==== ATTENTION

Task: {A8FD4857-49C3-4583-912E-1F2F4697CFBB} - System32\Tasks\{8C39486C-0F81-4040-989D-BAFC542E80C1} => pcalua.exe -a C:\Users\Angelika\AppData\Roaming\webssearches\UninstallManager.exe -c  -ptid=cvs4 <==== ATTENTION
C:\PROGRA~2\SearchProtect
C:\Users\Angelika\AppData\Roaming\webssearches
C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-4156489319-3226808918-1168978821-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
FF SearchPlugin: C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox\Profiles\2i6frcvt.default-1423145957877\searchplugins\youtube.xml
FF Extension: Booster Web - C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox\Profiles\2i6frcvt.default-1423145957877\Extensions\jid1-U7omKQ6kQfxMaQ@jetpack [2015-02-06]
Emptytemp:
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

• Starte nun FRST erneut und klicke den Entfernen Button.
• Das Tool erstellt eine Fixlog.txt.
• Poste mir deren Inhalt.

Firefox nochmal neu installieren.

Bestehen noch Probleme?

Hallo Schrauber,

ob noch Probleme bestehen, weiß ich ehrlich gesagt nicht. Es kamen aber keine Warnungen mehr. Vielleicht ist ja jetzt alles okay!
Hier noch das gewünschte Log:

Code: Alles auswählenAufklappen

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-02-2015
Ran by Angelika at 2015-02-07 17:25:00 Run:1
Running from C:\Users\Angelika\Documents\Virensuche
Loaded Profiles: Angelika (Available profiles: Angelika)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Task: {53456317-B019-4AF3-9978-9A92FFD6C407} - \avaxvavya No Task File <==== ATTENTION

Task: {9DDE7259-1DBE-4EC7-8664-FD68BC15FC76} - System32\Tasks\{57EC3370-41C8-47C5-91BB-43F4DBDAA053} => pcalua.exe -a C:\PROGRA~2\SearchProtect\Main\bin\uninstall.exe -c /S <==== ATTENTION

Task: {A8FD4857-49C3-4583-912E-1F2F4697CFBB} - System32\Tasks\{8C39486C-0F81-4040-989D-BAFC542E80C1} => pcalua.exe -a C:\Users\Angelika\AppData\Roaming\webssearches\UninstallManager.exe -c  -ptid=cvs4 <==== ATTENTION
C:\PROGRA~2\SearchProtect
C:\Users\Angelika\AppData\Roaming\webssearches
C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-4156489319-3226808918-1168978821-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
FF SearchPlugin: C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox\Profiles\2i6frcvt.default-1423145957877\searchplugins\youtube.xml
FF Extension: Booster Web - C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox\Profiles\2i6frcvt.default-1423145957877\Extensions\jid1-U7omKQ6kQfxMaQ@jetpack [2015-02-06]
Emptytemp:
         
*****************

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53456317-B019-4AF3-9978-9A92FFD6C407}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53456317-B019-4AF3-9978-9A92FFD6C407}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avaxvavya" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9DDE7259-1DBE-4EC7-8664-FD68BC15FC76}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9DDE7259-1DBE-4EC7-8664-FD68BC15FC76}" => Key deleted successfully.
C:\Windows\System32\Tasks\{57EC3370-41C8-47C5-91BB-43F4DBDAA053} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{57EC3370-41C8-47C5-91BB-43F4DBDAA053}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8FD4857-49C3-4583-912E-1F2F4697CFBB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8FD4857-49C3-4583-912E-1F2F4697CFBB}" => Key deleted successfully.
C:\Windows\System32\Tasks\{8C39486C-0F81-4040-989D-BAFC542E80C1} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8C39486C-0F81-4040-989D-BAFC542E80C1}" => Key deleted successfully.
"C:\PROGRA~2\SearchProtect" => File/Directory not found.
"C:\Users\Angelika\AppData\Roaming\webssearches" => File/Directory not found.
C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-4156489319-3226808918-1168978821-1003\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox\Profiles\2i6frcvt.default-1423145957877\searchplugins\youtube.xml" => not found.
C:\Users\Angelika\AppData\Roaming\Mozilla\Firefox\Profiles\2i6frcvt.default-1423145957877\Extensions\jid1-U7omKQ6kQfxMaQ@jetpack not found.
EmptyTemp: => Removed 200.4 MB temporary data.


The system needed a reboot. 

==== End of Fixlog 17:25:25 ====
         

Viele Grüße
Angelika