Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software)

Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software)


Log-Analyse und Auswertung: Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software)

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 02.04.2015, 11:46   #1
Maporo
 
Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software) - Standard

Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software)


Hallo liebes Trojaner-Board-Team,
wir haben uns einen neuen Acer Aspire XC-605 Desktop PC gekauft. Windows 8.1 und McAffee Software (Testversion) sind vorinstalliert. Zusätzlich habeb wir noch I-Tunes und Firefox vorgestern installiert. Heute kam beim Öffnen von Firefox diese

Fehlermeldung:hxxp://www.siteadvisor.com/restricted.html?domain=http:%2F%2Fhomepage-web.com%2F%3Fs=acer%26m=tab&originalURL=-1711304786&pip=false&premium=false&client_uid=3333156820&client_ver=3.7.2.194&client_type=IEPlugin&suite=true&aff_id=662-175&locale=de_de&ui=1&os_ver=6.3.0.0

und ob wir wrklich diese Seite besuchen wollen: hxxp://homepage-web.com/?s=acer&m=tab

Ich habe die ersten Scans, die ihr vorgeschlagen habt durchgeführt und packe euch den Text des FRST scans bei.

Hoffentlich könnt ihr mir helfen.
Vielen Dank Maporo
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by MEINS (administrator) on WURSTEBROT on 02-04-2015 12:35:50
Running from C:\Users\MEINS\Downloads
Loaded Profiles: MEINS (Available profiles: MEINS)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.3.336.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Pokki) C:\Users\MEINS\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Pokki) C:\Users\MEINS\AppData\Local\Pokki\Engine\HostAppService.exe
(Pokki) C:\Users\MEINS\AppData\Local\Pokki\Engine\HostAppService.exe
(Pokki) C:\Users\MEINS\AppData\Local\Pokki\Engine\StartMenuIndexer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Users\MEINS\Downloads\Defogger.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [643064 2014-09-17] (McAfee, Inc.)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65280 2015-03-12] (Acer Incorporated)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [90880 2015-03-04] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] ( (Atheros Communications))
HKU\S-1-5-21-2403373867-418344544-55061293-1001\...\Run: [Pokki] => "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll (Acer Incorporated)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2403373867-418344544-55061293-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage-web.com/?s=acer&m=start
HKU\S-1-5-21-2403373867-418344544-55061293-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2403373867-418344544-55061293-1001 -> DefaultScope {E7977B64-D843-11E4-825F-3010B35E4163} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=acer&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2403373867-418344544-55061293-1001 -> {88BC956D-FB63-4107-8C65-46F6A9B4F5E4} URL = 
SearchScopes: HKU\S-1-5-21-2403373867-418344544-55061293-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2403373867-418344544-55061293-1001 -> {E7977B64-D843-11E4-825F-3010B35E4163} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=acer&q={searchTerms}
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-01-28] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-01-13] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-01-13] (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 193.189.244.202 193.189.244.194

FireFox:
========
FF ProfilePath: C:\Users\MEINS\AppData\Roaming\Mozilla\Firefox\Profiles\3jyn58bg.default
FF NewTab: hxxp://homepage-web.com/?s=acer&m=tab
FF DefaultSearchEngine: Web Search
FF SelectedSearchEngine: Web Search
FF Homepage: hxxp://homepage-web.com/?s=acer&m=start
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-01-13] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-01-13] ()
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2015-03-31] ()
FF SearchPlugin: C:\Users\MEINS\AppData\Roaming\Mozilla\Firefox\Profiles\3jyn58bg.default\searchplugins\Web Search.xml [2015-04-01]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-07-14]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-07-14]

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-03-31]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-03-31]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Windows (R) Win 7 DDK provider) [File not signed]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2840832 2015-03-12] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [347200 2015-03-31] (WildTangent)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-11] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [155368 2015-02-19] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [562200 2015-01-13] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-30] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.3.336.0\McCSPServiceHost.exe [422632 2014-11-21] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [601864 2015-01-07] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1050952 2014-11-06] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [221832 2014-10-01] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189920 2014-10-01] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [233216 2014-06-23] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-12] (Qualcomm Atheros Communications, Inc.)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-12-24] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72136 2014-10-01] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181584 2014-10-01] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313680 2014-10-01] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70608 2014-10-01] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [526360 2014-10-01] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786304 2014-10-01] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [447440 2014-09-19] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96600 2014-09-19] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348560 2014-10-01] (McAfee, Inc.)
R2 RtkIOAC60; C:\Windows\system32\DRIVERS\RtkIOAC60.sys [29912 2013-07-19] (Realtek semiconductor corp)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-02 12:35 - 2015-04-02 12:35 - 00029271 _____ () C:\Users\MEINS\Downloads\Addition.txt
2015-04-02 12:34 - 2015-04-02 12:35 - 00017845 _____ () C:\Users\MEINS\Downloads\FRST.txt
2015-04-02 12:34 - 2015-04-02 12:35 - 00000000 ____D () C:\FRST
2015-04-02 12:31 - 2015-04-02 12:31 - 02095616 _____ (Farbar) C:\Users\MEINS\Downloads\FRST64.exe
2015-04-02 12:30 - 2015-04-02 12:31 - 00000472 _____ () C:\Users\MEINS\Downloads\defogger_disable.log
2015-04-02 12:30 - 2015-04-02 12:30 - 00000000 _____ () C:\Users\MEINS\defogger_reenable
2015-04-02 12:29 - 2015-04-02 12:30 - 00050477 _____ () C:\Users\MEINS\Downloads\Defogger.exe
2015-04-02 12:01 - 2015-04-02 12:01 - 00000060 _____ () C:\Users\MEINS\Desktop\fixlist.txt
2015-04-02 11:52 - 2015-04-02 11:52 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2015-04-02 11:52 - 2015-04-02 11:52 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2015-04-02 11:42 - 2015-04-02 11:43 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-02 11:41 - 2015-02-26 21:14 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-02 11:26 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-04-02 11:26 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-04-02 11:21 - 2015-04-02 11:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-04-02 11:17 - 2015-04-02 11:17 - 00000000 ____D () C:\Users\Public\OEM
2015-04-01 17:09 - 2015-04-01 17:09 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-04-01 14:20 - 2015-04-02 11:03 - 00000000 ____D () C:\Users\MEINS\AppData\Local\CrashDumps
2015-04-01 10:00 - 2015-04-01 10:00 - 00000000 ____D () C:\Users\MEINS\AppData\Local\Acer Aspire R7 Tutorial
2015-03-31 17:56 - 2015-03-31 17:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-03-31 17:55 - 2015-03-31 17:55 - 00000000 ____D () C:\Windows\PCHEALTH
2015-03-31 17:54 - 2015-03-31 17:54 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-03-31 17:53 - 2015-03-31 17:53 - 00000000 ____D () C:\Users\MEINS\AppData\Local\Microsoft Help
2015-03-31 17:53 - 2015-03-31 17:53 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-03-31 17:53 - 2015-03-31 17:53 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2015-03-31 17:53 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2015-03-31 17:52 - 2015-04-02 11:53 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-31 17:52 - 2015-03-31 17:52 - 00000000 __RHD () C:\MSOCache
2015-03-31 17:46 - 2015-03-31 17:47 - 00000000 ____D () C:\Users\MEINS\AppData\Roaming\Apple Computer
2015-03-31 17:46 - 2015-03-31 17:46 - 00001769 _____ () C:\Users\Public\Desktop\iTunes.lnk
2015-03-31 17:46 - 2015-03-31 17:46 - 00000000 ____D () C:\Users\MEINS\AppData\Local\Apple Computer
2015-03-31 17:46 - 2015-03-31 17:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-03-31 17:46 - 2012-10-03 16:14 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2015-03-31 17:45 - 2015-03-31 17:46 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-03-31 17:45 - 2015-03-31 17:46 - 00000000 ____D () C:\Program Files\iTunes
2015-03-31 17:45 - 2015-03-31 17:45 - 00002535 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Users\MEINS\AppData\Local\Apple
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\ProgramData\Apple Computer
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\ProgramData\Apple
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Program Files\iPod
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Program Files\Bonjour
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2015-03-31 17:45 - 2015-03-31 17:45 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2015-03-31 17:37 - 2015-03-31 17:43 - 152428336 _____ (Apple Inc.) C:\Users\MEINS\Downloads\itunes6464setup.exe
2015-03-31 17:32 - 2015-03-31 17:33 - 00000000 ____D () C:\Users\MEINS\AppData\Roaming\Mozilla
2015-03-31 17:32 - 2015-03-31 17:33 - 00000000 ____D () C:\Users\MEINS\AppData\Local\Mozilla
2015-03-31 17:32 - 2015-03-31 17:32 - 00001171 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-31 17:32 - 2015-03-31 17:32 - 00001159 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-31 17:32 - 2015-03-31 17:32 - 00000000 ____D () C:\ProgramData\Mozilla
2015-03-31 17:32 - 2015-03-31 17:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-31 17:32 - 2015-03-31 17:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-31 17:29 - 2015-04-02 12:21 - 00003938 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{8932EE2A-E9BC-4898-BDF2-60AAE71EB1D4}
2015-03-31 17:29 - 2015-03-31 17:29 - 00003334 _____ () C:\Windows\System32\Tasks\AcerCloud
2015-03-31 17:29 - 2015-03-31 17:29 - 00000000 __SHD () C:\Users\MEINS\AppData\Local\EmieUserList
2015-03-31 17:29 - 2015-03-31 17:29 - 00000000 __SHD () C:\Users\MEINS\AppData\Local\EmieSiteList
2015-03-31 17:28 - 2015-03-31 17:28 - 00002028 _____ () C:\Users\Public\Desktop\Acer Portal.lnk
2015-03-31 17:26 - 2015-03-31 17:26 - 00002001 _____ () C:\Users\Public\Desktop\abMedia.lnk
2015-03-31 17:25 - 2015-03-31 17:25 - 00000000 ____D () C:\ProgramData\BlueStacks
2015-03-31 17:24 - 2015-03-31 17:25 - 00000000 ____D () C:\Users\MEINS\AppData\Roaming\WildTangent
2015-03-31 17:23 - 2015-03-31 17:23 - 00002005 _____ () C:\Users\Public\Desktop\abPhoto.lnk
2015-03-31 17:23 - 2015-03-31 17:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-03-31 17:19 - 2015-04-02 12:21 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2403373867-418344544-55061293-1001
2015-03-31 17:19 - 2015-03-31 17:19 - 00001969 _____ () C:\Users\Public\Desktop\abDocs.lnk
2015-03-31 17:18 - 2015-03-31 17:18 - 00000000 ____D () C:\Users\Public\Pokki
2015-03-31 17:17 - 2015-04-01 09:53 - 00002330 _____ () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2015-03-31 17:17 - 2015-03-31 17:17 - 00002159 _____ () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
2015-03-31 17:15 - 2015-04-02 11:20 - 00000000 ____D () C:\Users\MEINS\AppData\Local\clear.fi
2015-03-31 17:15 - 2015-03-31 17:15 - 00002625 _____ () C:\Users\Public\Desktop\eBay.lnk
2015-03-31 17:15 - 2015-03-31 17:15 - 00000000 ____D () C:\Users\MEINS\PicStream
2015-03-31 17:15 - 2015-03-31 17:15 - 00000000 ____D () C:\Users\MEINS\Documents\Bluetooth Folder
2015-03-31 17:15 - 2015-03-31 17:15 - 00000000 ____D () C:\Users\MEINS\AppData\Roaming\Macromedia
2015-03-31 17:15 - 2015-03-31 17:15 - 00000000 ____D () C:\Users\MEINS\AppData\Roaming\Atheros
2015-03-31 17:15 - 2015-03-31 17:15 - 00000000 ____D () C:\Users\MEINS\AppData\Local\BMExplorer
2015-03-31 17:15 - 2015-03-31 17:15 - 00000000 ____D () C:\Program Files (x86)\OEM
2015-03-31 17:14 - 2015-03-31 17:14 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-31 17:14 - 2015-03-31 17:14 - 00000000 ____D () C:\Windows\oem
2015-03-31 17:14 - 2015-03-31 17:14 - 00000000 ____D () C:\Users\MEINS\AppData\Local\iGware
2015-03-31 17:14 - 2015-03-31 17:14 - 00000000 ____D () C:\Users\MEINS\AppData\Local\AOP SDK
2015-03-31 17:12 - 2015-04-02 12:30 - 00000000 ____D () C:\Users\MEINS
2015-03-31 17:12 - 2015-04-02 12:14 - 00000000 ____D () C:\Users\MEINS\AppData\Local\Packages
2015-03-31 17:12 - 2015-04-02 11:00 - 00000000 ____D () C:\Users\MEINS\AppData\Local\Pokki
2015-03-31 17:12 - 2015-03-31 17:12 - 00001780 _____ () C:\Users\Public\Desktop\Online kaufen.lnk
2015-03-31 17:12 - 2015-03-31 17:12 - 00001450 _____ () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-03-31 17:12 - 2015-03-31 17:12 - 00000180 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-03-31 17:12 - 2015-03-31 17:12 - 00000020 ___SH () C:\Users\MEINS\ntuser.ini
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Vorlagen
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Startmenü
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Netzwerkumgebung
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Lokale Einstellungen
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Eigene Dateien
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Druckumgebung
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Documents\Eigene Musik
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Documents\Eigene Bilder
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\AppData\Local\Verlauf
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\AppData\Local\Anwendungsdaten
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 _SHDL () C:\Users\MEINS\Anwendungsdaten
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 ____D () C:\Users\MEINS\AppData\Roaming\Adobe
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 ____D () C:\Users\MEINS\AppData\Local\VirtualStore
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 ____D () C:\Users\MEINS\AppData\Local\OEM
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 ____D () C:\ProgramData\OEM_YAHOO
2015-03-31 17:12 - 2015-03-31 17:12 - 00000000 ____D () C:\Program Files\Accessory Store
2015-03-31 17:12 - 2014-07-14 17:35 - 00000000 ___RD () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-31 17:12 - 2014-03-18 12:33 - 00000000 ___RD () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-31 17:12 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-03-31 17:12 - 2014-03-18 12:13 - 00000369 _____ () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-03-31 17:12 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-31 17:12 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\MEINS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Startmenü
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Programme
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\ProgramData\Startmenü
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\ProgramData\Dokumente
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2015-03-31 17:05 - 2015-03-31 17:05 - 00000000 _SHDL () C:\Dokumente und Einstellungen

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-02 12:33 - 2014-10-09 21:18 - 01745212 _____ () C:\Windows\WindowsUpdate.log
2015-04-02 12:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-04-02 12:05 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-04-02 12:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-04-02 11:42 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-04-02 11:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-01 17:12 - 2014-10-05 01:15 - 00764340 _____ () C:\Windows\system32\perfh007.dat
2015-04-01 17:12 - 2014-10-05 01:15 - 00159160 _____ () C:\Windows\system32\perfc007.dat
2015-04-01 17:12 - 2014-03-18 12:03 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-01 17:09 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery
2015-04-01 17:09 - 2013-08-22 16:46 - 00019058 _____ () C:\Windows\setupact.log
2015-04-01 14:16 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-31 17:58 - 2014-07-14 17:40 - 00000000 ____D () C:\Program Files (x86)\McAfee
2015-03-31 17:58 - 2013-08-22 16:44 - 00418712 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-31 17:57 - 2014-03-18 11:54 - 00007280 _____ () C:\Windows\PFRO.log
2015-03-31 17:57 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-03-31 17:55 - 2014-10-09 20:45 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-03-31 17:54 - 2014-07-14 17:40 - 00000000 ____D () C:\ProgramData\McAfee
2015-03-31 17:54 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-03-31 17:53 - 2014-07-14 17:40 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2015-03-31 17:53 - 2014-03-18 11:45 - 00000000 ____D () C:\Windows\ShellNew
2015-03-31 17:52 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-03-31 17:45 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore
2015-03-31 17:28 - 2014-10-09 20:29 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-03-31 17:28 - 2014-10-09 20:29 - 00000000 ____D () C:\Program Files (x86)\Acer
2015-03-31 17:25 - 2014-07-14 17:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-03-31 17:25 - 2014-07-14 17:38 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games
2015-03-31 17:24 - 2014-07-14 17:38 - 00000000 ____D () C:\ProgramData\WildTangent
2015-03-31 17:22 - 2014-10-09 20:29 - 00000000 ____D () C:\ProgramData\OEM
2015-03-31 17:18 - 2014-10-09 20:29 - 00000884 _____ () C:\Users\Public\Desktop\Acer Care Center.lnk
2015-03-31 17:18 - 2014-10-09 20:29 - 00000000 ____D () C:\ProgramData\Acer
2015-03-31 17:18 - 2014-07-14 18:16 - 00000000 ___HD () C:\OEM
2015-03-31 17:15 - 2014-10-09 20:24 - 00000000 ____D () C:\ProgramData\Atheros
2015-03-31 17:12 - 2014-07-14 18:17 - 00000000 ____D () C:\Windows\Panther
2015-03-31 17:08 - 2014-07-14 17:19 - 00000000 ____D () C:\Users\Administrator
2015-03-31 17:06 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2015-03-31 17:05 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT
2015-03-31 17:05 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default

==================== Files in the root of some directories =======

2014-10-09 20:21 - 2014-10-09 20:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\MEINS\AppData\Local\Temp\oct54AF.tmp.exe
C:\Users\MEINS\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-14 17:18

==================== End Of Log ============================
--- --- ---
 

Themen zu Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software)
administrator, bonjour, browser, defender, desktop, explorer, explorer.exe, firefox, hotkey, microsoft, mozilla, newtab, omnibox, realtek, registry, rundll, services.exe, sicherheitswarnung, software, svchost.exe, system, system32, trojan.autoit, windows, winlogon.exe


« PC friert kurz ein inklusive Maus u. Tastatur | Pua/somoto.gen2 ? Virusentfernung »


Ähnliche Themen: Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software)


  1. Acer Aspire E1 - 571G -> Virus eingefangen...
    Log-Analyse und Auswertung - 14.12.2014 (11)
  2. Sicherheitswarnung beim öffnen von Firefox, Schadsoftware?
    Plagegeister aller Art und deren Bekämpfung - 29.01.2014 (11)
  3. iminent immer beim öffnen von neuem Tab
    Plagegeister aller Art und deren Bekämpfung - 17.10.2013 (5)
  4. Win XP GVU Trojaner auf Acer Aspire One entfernen
    Plagegeister aller Art und deren Bekämpfung - 04.09.2013 (26)
  5. absturz meines acer aspire beim spielen
    Log-Analyse und Auswertung - 12.07.2011 (0)
  6. Touchpen für Acer Aspire one 721 (Laptop)?
    Netzwerk und Hardware - 26.12.2010 (3)
  7. Acer Aspire 8730 - Aufrüsten ?
    Netzwerk und Hardware - 13.11.2010 (11)
  8. Acer Aspire 8370 Systemrecover
    Mülltonne - 16.09.2010 (0)
  9. Siemens Recovery auf Acer Aspire 5710Z
    Alles rund um Windows - 12.05.2010 (2)
  10. Acer Aspire hängt nach 10 minuten!
    Alles rund um Windows - 25.07.2009 (1)
  11. Neuer Acer aspire --> Startprobleme
    Alles rund um Windows - 14.07.2009 (0)
  12. Acer Aspire 5601 immer langsamer
    Plagegeister aller Art und deren Bekämpfung - 13.12.2008 (0)
  13. Abstürze Acer Aspire 1694
    Alles rund um Windows - 19.02.2008 (9)
  14. Abstürze Acer Aspire 1610
    Netzwerk und Hardware - 15.08.2007 (5)
  15. Hardwareproblem mit Notebook Acer Aspire 1610
    Netzwerk und Hardware - 13.09.2006 (1)
  16. PCI-Kommunikationscontroller Acer Aspire T620 gesucht
    Netzwerk und Hardware - 21.10.2005 (1)
  17. Acer Aspire 1307LC
    Netzwerk und Hardware - 06.05.2003 (16)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software) - Hallo liebes Trojaner-Board-Team, wir haben uns einen neuen Acer Aspire XC-605 Desktop PC gekauft. Windows 8.1 und McAffee Software (Testversion) sind vorinstalliert. Zusätzlich habeb wir noch I-Tunes und Firefox vorgestern - Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software)...

Alle Zeitangaben in WEZ +1. Es ist jetzt 06:12 Uhr.

Kontakt - Trojaner-Board - Archiv - Datenschutzerklärung - Nach oben

Copyright ©2000-2025, Trojaner-Board
Archiv
Du betrachtest: Sicherheitswarnung beim Öffnen von Firefox bei neuem Acer Aspire PC (vorinstalierte MC Affee Software) auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19