Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
SM.de in Google Chrome - Wie entfernen?

SM.de in Google Chrome - Wie entfernen?


Plagegeister aller Art und deren Bekämpfung: SM.de in Google Chrome - Wie entfernen?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 15.03.2014, 21:01   #1
Frege23
 
SM.de in Google Chrome - Wie entfernen? - Standard

SM.de in Google Chrome - Wie entfernen?


Guten Tag!


Computer gerade heute erst gekauft und schon den ersten dicken Fehler gemacht. Zumindest habe ich nämlich jetzt in Google Chrome (Internet Explorer bzw. Opera habe ich noch nicht nachgeguckt) diese lästige sm.de Sache. Da ich noch nicht viel installiert habe außer open office, thunderbird und dem vlc-Player, muss es wohl letzterer sein, wenn man ihn denn an falscher Stelle runterlädt (zumindest habe ich das gelesen).

Das Problem äußert sich dadurch, dass bei allen Suchanfragen, die direkt in die url-Leiste eingegeben werden, die Suche unter sm.de stattfindet. Ich hatte bis eben gerade noch das kostenlose McAfee drauf, das mitgeliefert wurde. Das ist allerdings mittlerweile sauber deinstalliert. Ich habe erst "normal" deinstalliert und dann firmeneigene tool hinterher benutzt, so wie im folgenden link empohlen:


hxxp://www.chip.de/artikel/McAfee-deinstallieren-Den-Virenscanner-sicher-entfernen_49782902.html


Was soll ich mir runterladen, um den PC (Windows 8, 64 Bit) zu scannen und runterzuladen? Ich wäre dankbar, wenn man mich genau instruieren könnte wie ich denn mein search-log hier zu posten habe und vor allem wie ich die Pest dann sicher kille.

Achja, sollte ich den vlc-Player löschen und nochmal neu installieren, natürlich diesmal von einer sicheren Quellen runtergeladen?


Ein schönes Wochenende!

Frege23

Ich nehme mir die Freiheit schon einmal ein wenig vorzuarbeiten, ich habe einen entsprechenden thread hier im board gefunden:




http://www.trojaner-board.de/147495-...-download.html



Ich hoffe, mein Fall verhält sich analog.



Also ich habe FRST-64 runtergeladen und wie im gelinkten thread den scaan einfach gestartet. Nach Beendigung ploppten zwei txt.-Dateien auf: Die FRST.txt und die Addition.txt. Ich poste beide hier im Folgenden:




FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Maximilian (administrator) on STUDIUM on 15-03-2014 20:53:03
Running from C:\Users\Maximilian\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1114.318_x64__8wekyb3d8bbwe\LiveComm.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Pokki) C:\Users\Maximilian\AppData\Local\Pokki\Engine\pokki.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-14] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-04-15] ( (Atheros Communications))
HKU\S-1-5-21-3330215313-1446325240-127864654-1001\...\Run: [Pokki] - C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.startfenster.de
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKLM - DefaultScope {1595DF99-8D4A-4059-B375-D13B2EC85900} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM - {1595DF99-8D4A-4059-B375-D13B2EC85900} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM - {D0E9D0EF-D32A-40DA-8CCC-FE88C9E574DC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - DefaultScope {D0E9D0EF-D32A-40DA-8CCC-FE88C9E574DC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {D0E9D0EF-D32A-40DA-8CCC-FE88C9E574DC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKCU - DefaultScope {1595DF99-8D4A-4059-B375-D13B2EC85900} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKCU - {1595DF99-8D4A-4059-B375-D13B2EC85900} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - {D0E9D0EF-D32A-40DA-8CCC-FE88C9E574DC} URL = 
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1

Chrome: 
=======
CHR HomePage: https://www.google.com/
CHR DefaultSearchKeyword: suchmaschine
CHR DefaultSearchProvider: SuchMaschine
CHR DefaultSearchURL: hxxp://www.sm.de/?q={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (Google Docs) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-14]
CHR Extension: (Google Drive) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-14]
CHR Extension: (YouTube) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-14]
CHR Extension: (Google-Suche) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-14]
CHR Extension: (Matt W. Moore) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhfnkfaeekjcmeadbdcohacjdjdmlmia [2014-03-14]
CHR Extension: (AdBlock) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-03-14]
CHR Extension: (Google Wallet) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-14]
CHR Extension: (Google Mail) - C:\Users\Maximilian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-14]

==================== Services (Whitelisted) =================

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [228480 2013-04-15] (Qualcomm Atheros Commnucations)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100752 2013-04-22] (ELAN Microelectronics Corp.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-08] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-18] (Acer Incorporate)
S3 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [4230016 2013-01-28] (Symantec Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-04-21] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-13] (Advanced Micro Devices, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-04-15] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0403000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99800 2013-05-08] (Intel Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-15 20:53 - 2014-03-15 20:53 - 00010201 _____ () C:\Users\Maximilian\Downloads\FRST.txt
2014-03-15 20:52 - 2014-03-15 20:53 - 00000000 ____D () C:\FRST
2014-03-15 20:51 - 2014-03-15 20:51 - 02157056 _____ (Farbar) C:\Users\Maximilian\Downloads\FRST64.exe
2014-03-15 20:15 - 2014-03-15 20:15 - 01950720 _____ () C:\Users\Maximilian\Downloads\adwcleaner_3.022 (2).exe
2014-03-15 20:07 - 2014-03-15 20:07 - 03218352 _____ (McAfee, Inc.) C:\Users\Maximilian\Downloads\MCPR68.exe
2014-03-15 20:05 - 2014-03-15 20:05 - 01950720 _____ () C:\Users\Maximilian\Downloads\adwcleaner_3.022 (1).exe
2014-03-15 20:00 - 2014-03-15 20:00 - 01950720 _____ () C:\Users\Maximilian\Downloads\adwcleaner_3.022.exe
2014-03-15 19:46 - 2014-03-15 16:50 - 04777428 _____ () C:\Users\Maximilian\Desktop\bookmarks_15.03.14.html
2014-03-15 18:42 - 2014-03-15 18:43 - 00000000 ____D () C:\Users\Maximilian\Desktop\ToshibaExtern
2014-03-15 17:49 - 2014-03-15 17:49 - 00000465 _____ () C:\Users\Maximilian\Downloads\url.htm
2014-03-15 17:43 - 2014-03-15 17:44 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\MusicBee
2014-03-15 17:05 - 2014-03-15 17:05 - 00000000 ____D () C:\Program Files\7-Zip
2014-03-15 17:04 - 2014-03-15 17:04 - 01444352 _____ () C:\Users\Maximilian\Downloads\7z922-x64.msi
2014-03-15 16:54 - 2014-03-15 16:54 - 00001011 _____ () C:\Users\Maximilian\Desktop\MusicBee.lnk
2014-03-15 16:54 - 2014-03-15 16:54 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicBee
2014-03-15 16:54 - 2014-03-15 16:54 - 00000000 ____D () C:\Program Files (x86)\MusicBee
2014-03-15 16:50 - 2014-03-15 16:50 - 15843392 _____ () C:\Users\Maximilian\Downloads\MusicBeeSetup_2_3.zip
2014-03-15 16:43 - 2014-03-15 16:43 - 00000000 ____D () C:\Program Files\WinDjView
2014-03-15 16:33 - 2014-03-15 16:33 - 14941181 _____ (Andrew Zhezherun) C:\Users\Maximilian\Downloads\WinDjView-2.0.2-Setup.exe
2014-03-15 15:25 - 2014-03-15 15:25 - 00001116 _____ () C:\Users\Public\Desktop\OpenOffice 4.0.1.lnk
2014-03-15 15:25 - 2014-03-15 15:25 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\OpenOffice
2014-03-15 15:24 - 2014-03-15 15:24 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-03-15 15:20 - 2014-03-15 15:21 - 163606685 _____ () C:\Users\Maximilian\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de.exe
2014-03-15 14:28 - 2014-03-15 14:28 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\McAfee
2014-03-15 14:27 - 2014-03-15 14:27 - 00541592 _____ (McAfee, Inc.) C:\Users\Maximilian\Downloads\MVTInstaller.exe
2014-03-15 14:03 - 2014-03-15 14:03 - 00001966 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera  Mail.lnk
2014-03-15 14:03 - 2014-03-15 14:03 - 00001958 _____ () C:\Users\Maximilian\Desktop\Opera  Mail.lnk
2014-03-15 14:03 - 2014-03-15 14:03 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Opera Mail
2014-03-15 14:03 - 2014-03-15 14:03 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Opera Mail
2014-03-15 13:57 - 2014-03-15 13:59 - 12101952 _____ (Opera Software ASA) C:\Users\Maximilian\Downloads\Opera-Mail-1.0-1040.i386.exe
2014-03-15 13:54 - 2014-03-15 13:54 - 00001133 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-03-15 13:54 - 2014-03-15 13:54 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Opera Software
2014-03-15 13:54 - 2014-03-15 13:54 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Opera Software
2014-03-15 13:54 - 2014-03-15 13:54 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-15 13:53 - 2014-03-15 13:53 - 34741696 _____ (Opera Software ASA) C:\Users\Maximilian\Downloads\Opera_20.0.1387.77_Setup.exe
2014-03-15 13:13 - 2014-03-15 13:13 - 00002090 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Thunderbird
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Mozilla
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Thunderbird
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\ProgramData\Mozilla
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-15 13:12 - 2014-03-15 13:12 - 21987088 _____ (Mozilla) C:\Users\Maximilian\Downloads\Thunderbird_Setup_24.3.0.exe
2014-03-15 08:10 - 2014-03-15 08:20 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\vlc
2014-03-15 07:22 - 2014-03-15 07:22 - 00002080 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-03-15 07:20 - 2014-03-15 07:20 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\clear.fi
2014-03-14 22:45 - 2014-03-14 22:45 - 00002023 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-03-14 22:44 - 2014-03-14 22:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-14 22:44 - 2014-03-14 22:44 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-03-14 22:42 - 2014-03-15 18:37 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Adobe
2014-03-14 22:05 - 2014-03-14 22:05 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-03-14 22:05 - 2014-03-14 22:05 - 00000000 ____D () C:\Program Files\VideoLAN
2014-03-14 22:04 - 2014-03-14 22:04 - 00001196 _____ () C:\Users\Maximilian\Desktop\Startfenster.lnk
2014-03-14 22:04 - 2014-03-14 22:04 - 00001196 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk
2014-03-14 20:57 - 2014-03-14 20:57 - 00038741 _____ () C:\Users\Maximilian\Downloads\Live-USB.htm
2014-03-14 19:35 - 2014-03-15 20:40 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-14 19:35 - 2014-03-15 20:26 - 00001130 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-14 19:35 - 2014-03-15 13:41 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-14 19:35 - 2014-03-14 19:35 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-14 19:35 - 2014-03-14 19:35 - 00003870 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-14 19:34 - 2014-03-14 19:35 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Google
2014-03-14 19:34 - 2014-03-14 19:35 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-14 19:34 - 2014-03-14 19:34 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Deployment
2014-03-14 19:34 - 2014-03-14 19:34 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Apps\2.0
2014-03-14 19:33 - 2014-03-14 19:33 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Macromedia
2014-03-14 18:25 - 2014-03-14 18:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-03-14 18:22 - 2014-03-15 20:31 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3330215313-1446325240-127864654-1001
2014-03-14 18:18 - 2014-03-14 18:18 - 00000000 ____D () C:\ProgramData\Pokki
2014-03-14 18:16 - 2014-03-14 18:16 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Atheros
2014-03-14 18:15 - 2014-03-15 18:37 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Adobe
2014-03-14 18:15 - 2014-03-14 18:15 - 00001442 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ___RD () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ___RD () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ____D () C:\ProgramData\OEM_YAHOO
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ____D () C:\Program Files\Accessory Store
2014-03-14 18:14 - 2014-03-14 18:15 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Packages
2014-03-14 18:14 - 2014-03-14 18:14 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\VirtualStore
2014-03-14 18:13 - 2014-03-15 07:22 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Pokki
2014-03-14 18:13 - 2014-03-14 19:40 - 00000000 ____D () C:\Users\Maximilian
2014-03-14 18:13 - 2014-03-14 18:13 - 00000020 ___SH () C:\Users\Maximilian\ntuser.ini
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Vorlagen
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Startmenü
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Netzwerkumgebung
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Lokale Einstellungen
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Eigene Dateien
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Druckumgebung
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Documents\Eigene Musik
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Documents\Eigene Bilder
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\AppData\Local\Verlauf
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\AppData\Local\Anwendungsdaten
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Anwendungsdaten
2014-03-14 18:13 - 2013-08-28 04:12 - 00000000 ___RD () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-14 18:13 - 2012-07-26 09:13 - 00000000 ___RD () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-14 18:13 - 2012-07-26 09:13 - 00000000 ___RD () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-03-14 18:13 - 2012-07-26 09:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Programme
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Dokumente und Einstellungen

==================== One Month Modified Files and Folders =======

2021-10-21 14:36 - 2013-08-28 04:22 - 00000852 _____ () C:\Windows\system32\Drivers\RTKHDRC.dat
2021-10-04 08:34 - 2013-08-28 04:22 - 00000712 _____ () C:\Windows\system32\Drivers\RTMICEQ0.dat
2014-03-15 20:53 - 2014-03-15 20:53 - 00010201 _____ () C:\Users\Maximilian\Downloads\FRST.txt
2014-03-15 20:53 - 2014-03-15 20:52 - 00000000 ____D () C:\FRST
2014-03-15 20:51 - 2014-03-15 20:51 - 02157056 _____ (Farbar) C:\Users\Maximilian\Downloads\FRST64.exe
2014-03-15 20:50 - 2013-08-28 04:10 - 01500746 _____ () C:\Windows\WindowsUpdate.log
2014-03-15 20:40 - 2014-03-14 19:35 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-15 20:32 - 2013-08-28 13:55 - 00753134 _____ () C:\Windows\system32\perfh007.dat
2014-03-15 20:32 - 2013-08-28 13:55 - 00155826 _____ () C:\Windows\system32\perfc007.dat
2014-03-15 20:32 - 2012-07-26 08:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-15 20:31 - 2014-03-14 18:22 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3330215313-1446325240-127864654-1001
2014-03-15 20:26 - 2014-03-14 19:35 - 00001130 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-15 20:26 - 2013-08-12 13:41 - 00010104 _____ () C:\Windows\PFRO.log
2014-03-15 20:26 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-15 20:15 - 2014-03-15 20:15 - 01950720 _____ () C:\Users\Maximilian\Downloads\adwcleaner_3.022 (2).exe
2014-03-15 20:14 - 2013-08-12 13:41 - 00307760 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 20:11 - 2012-07-26 09:12 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-03-15 20:07 - 2014-03-15 20:07 - 03218352 _____ (McAfee, Inc.) C:\Users\Maximilian\Downloads\MCPR68.exe
2014-03-15 20:05 - 2014-03-15 20:05 - 01950720 _____ () C:\Users\Maximilian\Downloads\adwcleaner_3.022 (1).exe
2014-03-15 20:00 - 2014-03-15 20:00 - 01950720 _____ () C:\Users\Maximilian\Downloads\adwcleaner_3.022.exe
2014-03-15 20:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-03-15 18:43 - 2014-03-15 18:42 - 00000000 ____D () C:\Users\Maximilian\Desktop\ToshibaExtern
2014-03-15 18:37 - 2014-03-14 22:42 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Adobe
2014-03-15 18:37 - 2014-03-14 18:15 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Adobe
2014-03-15 17:49 - 2014-03-15 17:49 - 00000465 _____ () C:\Users\Maximilian\Downloads\url.htm
2014-03-15 17:44 - 2014-03-15 17:43 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\MusicBee
2014-03-15 17:05 - 2014-03-15 17:05 - 00000000 ____D () C:\Program Files\7-Zip
2014-03-15 17:04 - 2014-03-15 17:04 - 01444352 _____ () C:\Users\Maximilian\Downloads\7z922-x64.msi
2014-03-15 16:54 - 2014-03-15 16:54 - 00001011 _____ () C:\Users\Maximilian\Desktop\MusicBee.lnk
2014-03-15 16:54 - 2014-03-15 16:54 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicBee
2014-03-15 16:54 - 2014-03-15 16:54 - 00000000 ____D () C:\Program Files (x86)\MusicBee
2014-03-15 16:50 - 2014-03-15 19:46 - 04777428 _____ () C:\Users\Maximilian\Desktop\bookmarks_15.03.14.html
2014-03-15 16:50 - 2014-03-15 16:50 - 15843392 _____ () C:\Users\Maximilian\Downloads\MusicBeeSetup_2_3.zip
2014-03-15 16:43 - 2014-03-15 16:43 - 00000000 ____D () C:\Program Files\WinDjView
2014-03-15 16:33 - 2014-03-15 16:33 - 14941181 _____ (Andrew Zhezherun) C:\Users\Maximilian\Downloads\WinDjView-2.0.2-Setup.exe
2014-03-15 15:25 - 2014-03-15 15:25 - 00001116 _____ () C:\Users\Public\Desktop\OpenOffice 4.0.1.lnk
2014-03-15 15:25 - 2014-03-15 15:25 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\OpenOffice
2014-03-15 15:24 - 2014-03-15 15:24 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-03-15 15:22 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\restore
2014-03-15 15:21 - 2014-03-15 15:20 - 163606685 _____ () C:\Users\Maximilian\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de.exe
2014-03-15 14:28 - 2014-03-15 14:28 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\McAfee
2014-03-15 14:27 - 2014-03-15 14:27 - 00541592 _____ (McAfee, Inc.) C:\Users\Maximilian\Downloads\MVTInstaller.exe
2014-03-15 14:17 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-03-15 14:03 - 2014-03-15 14:03 - 00001966 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera  Mail.lnk
2014-03-15 14:03 - 2014-03-15 14:03 - 00001958 _____ () C:\Users\Maximilian\Desktop\Opera  Mail.lnk
2014-03-15 14:03 - 2014-03-15 14:03 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Opera Mail
2014-03-15 14:03 - 2014-03-15 14:03 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Opera Mail
2014-03-15 13:59 - 2014-03-15 13:57 - 12101952 _____ (Opera Software ASA) C:\Users\Maximilian\Downloads\Opera-Mail-1.0-1040.i386.exe
2014-03-15 13:54 - 2014-03-15 13:54 - 00001133 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-03-15 13:54 - 2014-03-15 13:54 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Opera Software
2014-03-15 13:54 - 2014-03-15 13:54 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Opera Software
2014-03-15 13:54 - 2014-03-15 13:54 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-15 13:53 - 2014-03-15 13:53 - 34741696 _____ (Opera Software ASA) C:\Users\Maximilian\Downloads\Opera_20.0.1387.77_Setup.exe
2014-03-15 13:41 - 2014-03-14 19:35 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-15 13:25 - 2012-07-26 08:21 - 00021469 _____ () C:\Windows\setupact.log
2014-03-15 13:13 - 2014-03-15 13:13 - 00002090 _____ () C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Thunderbird
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Mozilla
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Thunderbird
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\ProgramData\Mozilla
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-03-15 13:13 - 2014-03-15 13:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-15 13:12 - 2014-03-15 13:12 - 21987088 _____ (Mozilla) C:\Users\Maximilian\Downloads\Thunderbird_Setup_24.3.0.exe
2014-03-15 08:20 - 2014-03-15 08:10 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\vlc
2014-03-15 07:38 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-03-15 07:22 - 2014-03-15 07:22 - 00002080 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-03-15 07:22 - 2014-03-14 18:13 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Pokki
2014-03-15 07:20 - 2014-03-15 07:20 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\clear.fi
2014-03-14 22:45 - 2014-03-14 22:45 - 00002023 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-03-14 22:44 - 2014-03-14 22:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-14 22:44 - 2014-03-14 22:44 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-03-14 22:05 - 2014-03-14 22:05 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-03-14 22:05 - 2014-03-14 22:05 - 00000000 ____D () C:\Program Files\VideoLAN
2014-03-14 22:04 - 2014-03-14 22:04 - 00001196 _____ () C:\Users\Maximilian\Desktop\Startfenster.lnk
2014-03-14 22:04 - 2014-03-14 22:04 - 00001196 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk
2014-03-14 20:57 - 2014-03-14 20:57 - 00038741 _____ () C:\Users\Maximilian\Downloads\Live-USB.htm
2014-03-14 19:40 - 2014-03-14 18:13 - 00000000 ____D () C:\Users\Maximilian
2014-03-14 19:35 - 2014-03-14 19:35 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-14 19:35 - 2014-03-14 19:35 - 00003870 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-14 19:35 - 2014-03-14 19:34 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Google
2014-03-14 19:35 - 2014-03-14 19:34 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-14 19:34 - 2014-03-14 19:34 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Deployment
2014-03-14 19:34 - 2014-03-14 19:34 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Apps\2.0
2014-03-14 19:33 - 2014-03-14 19:33 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Macromedia
2014-03-14 18:25 - 2014-03-14 18:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-03-14 18:18 - 2014-03-14 18:18 - 00000000 ____D () C:\ProgramData\Pokki
2014-03-14 18:16 - 2014-03-14 18:16 - 00000000 ____D () C:\Users\Maximilian\AppData\Roaming\Atheros
2014-03-14 18:16 - 2013-08-12 14:34 - 00000000 ___HD () C:\OEM
2014-03-14 18:15 - 2014-03-14 18:15 - 00001442 _____ () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ___RD () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ___RD () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ____D () C:\ProgramData\OEM_YAHOO
2014-03-14 18:15 - 2014-03-14 18:15 - 00000000 ____D () C:\Program Files\Accessory Store
2014-03-14 18:15 - 2014-03-14 18:14 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\Packages
2014-03-14 18:15 - 2013-08-28 04:41 - 00003550 _____ () C:\Windows\System32\Tasks\Norton Online Backup ARA
2014-03-14 18:15 - 2013-08-28 04:41 - 00000000 ____D () C:\ProgramData\Norton
2014-03-14 18:14 - 2014-03-14 18:14 - 00000000 ____D () C:\Users\Maximilian\AppData\Local\VirtualStore
2014-03-14 18:14 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-03-14 18:14 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\WinStore
2014-03-14 18:13 - 2014-03-14 18:13 - 00000020 ___SH () C:\Users\Maximilian\ntuser.ini
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Vorlagen
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Startmenü
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Netzwerkumgebung
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Lokale Einstellungen
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Eigene Dateien
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Druckumgebung
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Documents\Eigene Musik
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Documents\Eigene Bilder
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\AppData\Local\Verlauf
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\AppData\Local\Anwendungsdaten
2014-03-14 18:13 - 2014-03-14 18:13 - 00000000 _SHDL () C:\Users\Maximilian\Anwendungsdaten
2014-03-14 17:51 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-03-14 17:50 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Programme
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-03-14 17:48 - 2014-03-14 17:48 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-03-14 17:48 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows NT
2014-03-14 17:48 - 2012-07-26 06:37 - 00000000 __RHD () C:\Users\Default

Some content of TEMP:
====================
C:\Users\Maximilian\AppData\Local\Temp\install_reader11_de_mssd_aaa_aih.exe
C:\Users\Maximilian\AppData\Local\Temp\oct10DE.tmp.exe
C:\Users\Maximilian\AppData\Local\Temp\PrefJsonCpp.exe
C:\Users\Maximilian\AppData\Local\Temp\pyl28EA.tmp.exe
C:\Users\Maximilian\AppData\Local\Temp\pyl5DF0.tmp.exe
C:\Users\Maximilian\AppData\Local\Temp\pyl65AB.tmp.exe
C:\Users\Maximilian\AppData\Local\Temp\sqlite3.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-08-12 13:41

==================== End Of Log ============================
--- --- ---

--- --- ---







Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Maximilian at 2014-03-15 20:53:31
Running from C:\Users\Maximilian\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Acer Games (HKCU\...\Pokki_03d432a7e610c3e908213e7689d4342ce2111caf) (Version: 1.1.7.42206 - Pokki)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.3005 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2022 - Acer Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 12.10.100.30314 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1124.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{E3CA751C-E133-0BF1-3151-7A6D3FB88015}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Broadcom Card Reader Driver Installer (HKLM\...\{67AA948F-8D83-4566-B84A-7CAABCF64E3F}) (Version: 16.0.2.3 - Broadcom Corporation)
Broadcom NetLink Controller (HKLM\...\{D1D7ED66-5C08-40A0-AEC0-B6DF977697BB}) (Version: 16.0.2.1 - Broadcom Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2013.0314.1033.17070 - Ihr Firmenname) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0314.1033.17070 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0314.1033.17070 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2013.0314.1033.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0314.1032.17070 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0314.1033.17070 - Advanced Micro Devices, Inc.) Hidden
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2016 - Acer Incorporated)
Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
ETDWare PS/2-X64 11.6.23.203_WHQL (HKLM\...\Elantech) (Version: 11.6.23.203 - ELAN Microelectronic Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3006 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.3.1520 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3234 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3010 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 7.5.0.3093 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.3.0 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.3.0 (x86 de)) (Version: 24.3.0 - Mozilla)
MusicBee 2.3 (HKLM-x32\...\MusicBee) (Version: 2.3 - Steven Mayall)
Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.7.0.24 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.3.0.14 - Symantec Corporation) Hidden
OEM Application Profile (HKLM-x32\...\{ECA361B3-855E-EEAB-C4E9-FFA6F25A4DF4}) (Version: 1.00.0000 - Ihr Firmenname)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2008 - Acer)
OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
Opera Mail 1.0 (HKCU\...\Opera 1.0.1040) (Version: 1.0.1040 - Opera Software ASA)
Opera Stable 20.0.1387.77 (HKLM-x32\...\Opera 20.0.1387.77) (Version: 20.0.1387.77 - Opera Software ASA)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Pokki (HKCU\...\Pokki) (Version: 0.266.1.172 - Pokki)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.224 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.49 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6865 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun)
==================== Restore Points =========================
15-03-2014 14:22:10 Installed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
15-03-2014 14:23:12 Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
==================== Hosts content: ==========================
2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0C0093D6-F6F1-4512-A9F6-3CF809365B60} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] ()
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2EA9D176-04A9-4AC9-A2D6-0F7BCBB9BE29} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-14] (Google Inc.)
Task: {3EA1F02B-86A5-44C6-B063-40629104515A} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.3.0.14\\Ara.exe [2013-02-04] (Symantec Corporation)
Task: {5C2CCA78-F589-4CEF-A6A3-9F831AE617BA} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {6FD81D0C-585D-4F39-B869-E12133FCE6D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-14] (Google Inc.)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {AB96B97B-39C2-46A2-876A-EEB6AE199033} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\system32\dism.exe [2012-07-26] (Microsoft Corporation)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {E46225B2-E87E-4E0F-86A1-1EE4C462392A} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {E6102338-9D7E-47AD-B68A-27886F0C0907} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-06-18] (Acer Incorporate)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-04-15 10:23 - 2013-04-15 10:23 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-04-15 10:20 - 2013-04-15 10:20 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-04-15 10:25 - 2013-04-15 10:25 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2014-03-15 13:41 - 2014-03-15 01:50 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2013-08-28 04:43 - 2013-02-20 21:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2014-03-15 13:41 - 2014-03-15 01:50 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libglesv2.dll
2014-03-15 13:41 - 2014-03-15 01:50 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libegl.dll
2014-03-15 13:41 - 2014-03-15 01:50 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-15 13:41 - 2014-03-15 01:50 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-15 13:41 - 2014-03-15 01:50 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
2013-08-28 04:13 - 2013-05-08 21:23 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-03-15 13:13 - 2014-01-31 23:35 - 03019376 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2014-03-15 13:13 - 2014-01-31 23:36 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2014-03-15 13:13 - 2014-01-31 23:36 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Bluetooth USB Adapter
Description: Bluetooth USB Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/15/2014 04:30:28 PM) (Source: Desktop Window Manager) (User: )
Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8898008d) festgestellt.
Error: (03/15/2014 02:29:46 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:28:46 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:52 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:46 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:41 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:36 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:26:43 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:25:41 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:24:39 PM) (Source: AVLogEvent) (User: NT-AUTORITÄT)
Description: a7f42014
System errors:
=============
Error: (03/15/2014 08:11:22 PM) (Source: DCOM) (User: STUDIUM)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (03/15/2014 08:10:52 PM) (Source: DCOM) (User: STUDIUM)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (03/15/2014 08:10:22 PM) (Source: DCOM) (User: STUDIUM)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (03/15/2014 07:45:35 PM) (Source: DCOM) (User: STUDIUM)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (03/15/2014 02:30:45 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Anti-Spam Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (03/15/2014 02:30:45 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst McAfee Anti-Spam Service erreicht.
Error: (03/15/2014 02:30:45 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Proxy Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (03/15/2014 02:30:45 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst McAfee Proxy Service erreicht.
Error: (03/15/2014 02:30:45 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Personal Firewall Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (03/15/2014 02:30:45 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst McAfee Personal Firewall Service erreicht.
Microsoft Office Sessions:
=========================
Error: (03/15/2014 04:30:28 PM) (Source: Desktop Window Manager)(User: )
Description: 0x8898008d
Error: (03/15/2014 02:29:46 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:28:46 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:52 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:46 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:41 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:27:36 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:26:43 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:25:41 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
Error: (03/15/2014 02:24:39 PM) (Source: AVLogEvent)(User: NT-AUTORITÄT)
Description: a7f42014
==================== Memory info ===========================
Percentage of memory in use: 23%
Total physical RAM: 7912.27 MB
Available physical RAM: 6041.43 MB
Total Pagefile: 12520.27 MB
Available Pagefile: 10517.81 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:449.19 GB) (Free:409.39 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 5182A499)
Partition: GPT Partition Type.
==================== End Of Log ============================
 

Themen zu SM.de in Google Chrome - Wie entfernen?
branding, chrome, direkt, entfernen, explorer, fehler, folge, folgende, frage, fragen, gekauft, google, guten, installiert, internet, internet explorer, kostenlose, launch, link, mcafee, office, opera, pokki, problem, scan, scannen, sm.de, suche, tool, vlc-player, wie entfernen?, wildtangent games, windows, windowsapps


« Bildschirm zeigt nur noch (horizontale) weiße und graue Streifen | Snap.do löschen funktioniert nicht »


Ähnliche Themen: SM.de in Google Chrome - Wie entfernen?


  1. Download Protect 2.2.8 als extension in Google Chrome - laesst sich nicht entfernen
    Log-Analyse und Auswertung - 27.08.2015 (11)
  2. ESET hat Diverses gefunden, Laptop extrem langsam, andauernde Fehlermeldungen Chrome"Ups Google Chrome ...."
    Plagegeister aller Art und deren Bekämpfung - 19.07.2015 (165)
  3. "UniDealsi" Erweiterung in Google Chrome lässt sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 13.02.2015 (11)
  4. Positive finds in google chrome entfernen?
    Plagegeister aller Art und deren Bekämpfung - 12.02.2015 (3)
  5. Google Chrome - öffnet eine andere Seite beim Starten von Google Chrome (Win7)
    Plagegeister aller Art und deren Bekämpfung - 19.01.2015 (29)
  6. Download protect lässt sich aus Google Chrome nicht entfernen !
    Plagegeister aller Art und deren Bekämpfung - 23.06.2014 (13)
  7. Download Proctect aus Google Chrome entfernen
    Log-Analyse und Auswertung - 20.05.2014 (5)
  8. Win 7: Google Chrome/Mozilla firefox lässt vermehrt Werbung auf Webseiten zu & Google Suchergebnisse scheinen manipuliert zu sein
    Log-Analyse und Auswertung - 29.04.2014 (8)
  9. snapdo entfernen google chrome
    Plagegeister aller Art und deren Bekämpfung - 20.03.2014 (16)
  10. Browservirus lässt sich nicht entfernen "DocTooTXTConvert" Add on Google chrome
    Plagegeister aller Art und deren Bekämpfung - 17.02.2014 (3)
  11. Delta Search entfernen nicht möglich. Windows 7, google chrome
    Plagegeister aller Art und deren Bekämpfung - 22.08.2013 (3)
  12. Google chrome snapdo entfernen
    Plagegeister aller Art und deren Bekämpfung - 02.08.2013 (15)
  13. snap.do unter google Chrome komplett entfernen
    Log-Analyse und Auswertung - 19.04.2013 (2)
  14. search plus site in Google Chrome und PUP.Blabber entfernen
    Plagegeister aller Art und deren Bekämpfung - 20.02.2013 (10)
  15. yhs.delta-search Startseite in Google Chrome und Programm Spyhunter 4 entfernen
    Log-Analyse und Auswertung - 19.02.2013 (24)
  16. Google Chrome leitet Trojaner-Board Treffer bei Google auf dollarade.com um!
    Diskussionsforum - 07.02.2012 (18)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema SM.de in Google Chrome - Wie entfernen? - Guten Tag! Computer gerade heute erst gekauft und schon den ersten dicken Fehler gemacht. Zumindest habe ich nämlich jetzt in Google Chrome (Internet Explorer bzw. Opera habe ich noch nicht - SM.de in Google Chrome - Wie entfernen?...
Archiv
Du betrachtest: SM.de in Google Chrome - Wie entfernen? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131