Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Jeden Tag 4-5 mal Bluescreen

Jeden Tag 4-5 mal Bluescreen


Log-Analyse und Auswertung: Jeden Tag 4-5 mal Bluescreen

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Seite 2 von 3 1 2 3
Alt 11.10.2014, 10:57   #16
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Zitat:
NVIDIA Network Service
Bitte mal deinstallieren.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 12.10.2014, 10:07   #17
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


wo finde ich das?
__________________
Alt 13.10.2014, 09:15   #18
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Unter den installierten Programmen.
__________________
__________________
Alt 13.10.2014, 13:55   #19
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


da habe ich nur
Nivida Controller Treiber
Nivida 3D Treiber
Nivida Grafiktreiber
Nivida Hd Audiotreiber
Nivida Physx.systemsoftware

Und seit vorgstern ,sagt BITDEFENDER mir 10 mal am Tag

Diese werbseite Tinyurl.com/cvmbq8n ist mit maleware infiziert,aber auf diese seite gehe ich garnicht?

Alt 14.10.2014, 09:57   #20
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Wann genau meldet es? Auf welcher Seite im netz bist du dann?

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Jetzt solltest Du das Programm sehen und deinstallieren können.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 14.10.2014, 10:51   #21
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Ich bin auf normalen seiten unterwegs,Zb Ebay,Googl suche Boerse.to

Aber was mir noch auffällt,Das cmd fenster öffnet sich öffters für einen bruch teil einer sekunde.

Und mit FRST ,Schreibt mir immer No fixlist.txt found?hab sie schon auf dem Desktop,und in den Ordner Kopiert.

so hat geklappt:-)

Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-10-2014 02
Ran by Rick at 2014-10-14 11:43:28 Run:1
Running from C:\Users\Rick\Desktop\software\PC
Loaded Profile: Rick (Available profiles: Rick)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden

*****************

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service\\SystemComponent => value deleted successfully.

==== End of Fixlog ====
Das Nivida Network finde ich aber immer noch nicht:-(

Alt 15.10.2014, 09:37   #22
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


In welchem Browser? Kommen die Bluescreens noch?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 15.10.2014, 11:19   #23
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Benutz nur firefox,hatte sonst immer googlechrom aber der ist jetzt immer auf spansich:-) und bekomme ihn nicht umgestellt:-)

Alt 15.10.2014, 20:50   #24
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Revo Uninstaller - Download - Filepony
damit Chrome deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren.

Dann:
https://support.google.com/chrome/answer/3296214?hl=de




Revo Uninstaller - Download - Filepony
damit Firefox deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren.

Dann:
https://support.mozilla.org/de/kb/fi...einfach-loesen
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 16.10.2014, 08:30   #25
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Also hab es mit Revo gelöscht und neuinstalliert,Trozdem ist chrom nur auf Spanisch,

Alt 16.10.2014, 18:36   #26
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


auch zurückgesetzt?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 16.10.2014, 19:00   #27
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


ja ich denke schon das ,zurück setzen war:-)hab die schritte genau nachgemacht

Alt 17.10.2014, 17:11   #28
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Das Zurücksetzen wird in dem Link beschrieben, und nicht mit Revo gemacht.

Poste mal ein frisches FRST log bitte. Sonst noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 18.10.2014, 09:18   #29
Slana
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Ja hab ich mit Revo gemacht,und dann Zurückgestezt

Ne sonst habe ich eigentlich keine Probleme ,ausser das er den Bluesreen jetzt schon fast im 30minuten abstand macht:-)


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-10-2014
Ran by Rick (administrator) on RICK-PC on 18-10-2014 10:16:23
Running from C:\Users\Rick\Desktop\software\PC
Loaded Profile: Rick (Available profiles: Rick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(HQPureQual) C:\Program Files (x86)\HQPureQualV1.8\99dcd2cb-42fc-414d-832e-db99f522ca63.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1621072 2014-10-15] (Bitdefender)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [1601856 2014-06-23] (IObit)
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [780080 2014-10-15] (Bitdefender)
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\MountPoints2: {294fc286-3b2f-11e4-a33d-bb1a54a9f080} - L:\pushinst.exe
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\MountPoints2: {3b6e5cb3-40a4-11e4-b2f7-bc0543032e9a} - raf-cactw.exe
HKU\S-1-5-21-836877220-131416204-1113294202-1000\...\MountPoints2: {d70f8a71-40ba-11e4-9846-bc0543032e9a} - raf-cactw.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x466F40E648CFCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_l4M6Qi_XIb0P66FqniX_Zq-7embI57uvGa-lM_-Qk-_M_x9c2KVCrzaa_NgkFZCfY6p6dTFV8Td8jECCU3DNA4bUP_Z6sA61CnDUIZQ8CmXkrClFnmr46F8B1x9j8g8mEzikSkIMqBxsaeiofr54Q,,&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - (No Name) - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_dsites_14_37_ff&cd=2XzuyEtN2Y1L1Qzu0B0CtDyDyEtAtDtAtB0Ezy0AyEtCyD0AtN0D0Tzu0SzyzzyBtN1L2XzutAtFtBtFyDtFtCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyCzzyDyDyEyCtCtDtGyByE0AyDtGyB0F0F0FtGtC0AyByCtGtCtAtC0DtD0B0C0EyCtDtA0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAzyyByD0FtCtDtAtGyC0E0FyDtGyE0DzyyBtGzytAzz0BtGtAyE0DyB0F0F0AyB0BtC0F0A2Q&cr=110716430&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_dsites_14_37_ff&cd=2XzuyEtN2Y1L1Qzu0B0CtDyDyEtAtDtAtB0Ezy0AyEtCyD0AtN0D0Tzu0SzyzzyBtN1L2XzutAtFtBtFyDtFtCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyCzzyDyDyEyCtCtDtGyByE0AyDtGyB0F0F0FtGtC0AyByCtGtCtAtC0DtD0B0C0EyCtDtA0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAzyyByD0FtCtDtAtGyC0E0FyDtGyE0DzyyBtGzytAzz0BtGtAyE0DyB0F0F0AyB0BtC0F0A2Q&cr=110716430&ir=
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = 
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_l4M6Qi_XIb0P66FqniX_Zq-7embI57uvGa-lM_-Qk-_M_x9c2KVCrzaa_NgkFZCfY6p6dTFV8Td8jECCU3DNA4bUP_Z6sA61CnDUIZQ8CmXkrClFnmr46F8B1x9j8g8mEzikSkIMqBxsaeiofr54Q,,&q={searchTerms}
BHO: HQPureQualV1.8 -> {11111111-1111-1111-1111-110611381131} -> C:\Program Files (x86)\HQPureQualV1.8\HQPureQualV1.8-bho64.dll (HQPureQual)
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} ->  No File
BHO-x32: HQPureQualV1.8 -> {11111111-1111-1111-1111-110611381131} -> C:\Program Files (x86)\HQPureQualV1.8\HQPureQualV1.8-bho.dll (HQPureQual)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll (Adblock)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default
FF SelectedSearchEngine: Search By ZoneAlarm
FF Homepage: google.de
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF user.js: detected! => C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\user.js
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Ads Removal - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\Extensions\adremoveext@adremoveext.net [2014-10-15]
FF Extension: FT DeepDark - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2014-09-22]
FF Extension: Adblock Plus - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-13]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-10-10]
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-10-10]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKCU\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Rick\AppData\Roaming\Mozilla\Firefox\Profiles\gmf3loh3.default\extensions\cliqz@cliqz.com
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [Not Found]

Chrome: 
=======
CHR Profile: C:\Users\Rick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Ads Removal) - C:\Users\Rick\AppData\Local\Google\Chrome\User Data\Default\Extensions\fopdddcinljmpmioaklghcalngfhbaen [2014-10-18]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-10-15] (Bitdefender)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-05-15] (IObit)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-15] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1523752 2014-10-15] (Bitdefender)
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [528896 2014-09-13] (Fuyu LIMITED) [File not signed]
S2 Update ClearThink; "C:\Program Files (x86)\ClearThink\updateClearThink.exe" [X]
S2 vsmon; "C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service [X]
S2 ZAPrivacyService; "C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-05-16] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-05-16] (BitDefender)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2013-11-13] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R0 CryptBox; C:\Windows\SysWow64\drivers\CryptBox.sys [221312 2013-12-10] (Abelssoft GmbH)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (FSPro Labs)
R3 fwlanusb4; C:\Windows\System32\DRIVERS\fwlanusb4.sys [1293824 2010-10-22] (AVM GmbH)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-07-02] (BitDefender S.R.L.)
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450968 2014-04-24] (Check Point Software Technologies Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-18 10:09 - 2014-10-18 10:09 - 00335832 _____ () C:\Windows\Minidump\101814-20966-01.dmp
2014-10-18 09:48 - 2014-10-18 09:48 - 00295216 _____ () C:\Windows\Minidump\101814-21668-01.dmp
2014-10-17 13:23 - 2010-12-12 12:45 - 1465618432 _____ () C:\Users\Rick\Desktop\Der.Polarexpress.German.2004.HDRip.AC3.XviD-thelegion.avi
2014-10-16 20:23 - 2014-10-16 20:24 - 00000000 ____D () C:\Users\Rick\Downloads\Die.Schluempfe.2.2013.BDRip.AC3.German.XviD-POE
2014-10-16 20:09 - 2014-10-16 20:10 - 00295184 _____ () C:\Windows\Minidump\101614-34273-01.dmp
2014-10-16 20:02 - 2014-10-16 20:02 - 00295200 _____ () C:\Windows\Minidump\101614-33899-01.dmp
2014-10-16 12:20 - 2014-10-16 12:21 - 00295216 _____ () C:\Windows\Minidump\101614-20295-01.dmp
2014-10-16 11:33 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 11:33 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 11:33 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 11:33 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-16 11:33 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-16 11:33 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 11:33 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 11:33 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 11:33 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 11:33 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 11:33 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 11:33 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 11:33 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 11:33 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 11:33 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-16 11:33 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 11:33 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 11:33 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-16 11:33 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-16 11:33 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-16 11:33 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 11:33 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 11:33 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-16 11:33 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-16 11:33 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-16 11:33 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 11:33 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-16 11:33 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-16 11:33 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 11:33 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 11:33 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-16 11:33 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-16 11:33 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-16 11:33 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-16 11:33 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 11:33 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-16 11:33 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 11:33 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 11:33 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 11:33 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-16 11:33 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-16 11:33 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-16 11:33 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-16 11:33 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 11:33 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-16 11:33 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-16 11:33 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-16 11:33 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-16 11:33 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 11:33 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-16 11:33 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 11:33 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 11:33 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-16 11:33 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 11:33 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-10-16 11:33 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-10-16 11:33 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-10-16 11:33 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-10-16 11:33 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-10-16 11:33 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-16 11:33 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-16 11:32 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 11:32 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-16 11:32 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-16 11:32 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-16 11:32 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 11:32 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-16 11:32 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-16 11:32 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 11:32 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 11:32 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 11:32 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-16 11:32 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 11:32 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-16 11:32 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-16 11:32 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-16 11:32 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-16 11:32 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-16 11:32 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 11:32 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-15 15:01 - 2014-10-15 15:01 - 00295208 _____ () C:\Windows\Minidump\101514-14726-01.dmp
2014-10-15 09:50 - 2014-10-15 09:50 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\dvdcss
2014-10-13 14:33 - 2014-10-13 14:33 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Yahoo!
2014-10-13 14:26 - 2014-10-13 14:26 - 00001173 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2014-10-13 14:26 - 2014-10-13 14:26 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\IObit
2014-10-10 16:27 - 2014-10-18 10:09 - 586459271 _____ () C:\Windows\MEMORY.DMP
2014-10-10 16:27 - 2014-10-10 16:27 - 00295184 _____ () C:\Windows\Minidump\101014-18064-01.dmp
2014-10-10 16:20 - 2014-10-10 16:20 - 00002076 _____ () C:\Users\Rick\Desktop\JDownloader 2.lnk
2014-10-10 16:20 - 2014-10-10 16:20 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-10-10 16:18 - 2014-10-10 16:18 - 00076440 _____ (AppWork GmbH) C:\Users\Rick\Downloads\WebInstaller_2002.exe
2014-10-10 16:13 - 2014-10-10 16:13 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2014-10-10 16:13 - 2014-10-10 16:13 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2014-10-10 15:45 - 2014-10-10 15:45 - 00495300 _____ () C:\ProgramData\1412948387.bdinstall.bin
2014-10-10 15:43 - 2014-10-10 15:43 - 00000684 ____H () C:\bdr-cf01
2014-10-10 15:43 - 2014-10-10 15:43 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-10-10 15:43 - 2014-10-10 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-10-10 15:42 - 2014-10-10 15:48 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Bitdefender
2014-10-10 15:42 - 2014-10-10 15:43 - 00253404 ____H () C:\bdr-ld01
2014-10-10 15:42 - 2014-10-10 15:43 - 00009216 ____H () C:\bdr-ld01.mbr
2014-10-10 15:42 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz
2014-10-10 15:42 - 2014-05-16 13:04 - 00647752 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-10-10 15:42 - 2014-05-16 13:01 - 01260120 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-10-10 15:42 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys
2014-10-10 15:42 - 2013-11-04 15:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2014-10-10 15:42 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01
2014-10-10 15:40 - 2014-10-10 15:43 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-10-10 15:40 - 2014-10-10 15:40 - 00000000 ____D () C:\Program Files\Bitdefender
2014-10-10 15:40 - 2014-07-02 17:47 - 00419616 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-10-10 15:40 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2014-10-10 15:39 - 2014-10-10 15:40 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-10-10 15:32 - 2014-10-10 15:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-10 15:11 - 2014-10-10 15:11 - 07040424 _____ () C:\Users\Rick\Downloads\bitdefender_isecurity_2015.exe
2014-10-10 14:54 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-10 14:54 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-10-10 14:54 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-10 14:54 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-10 10:21 - 2014-10-10 10:21 - 00000000 ____D () C:\Users\Rick\.appwork
2014-10-10 10:00 - 2014-10-10 10:00 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-10-07 12:10 - 2014-10-10 14:47 - 00000000 ____D () C:\Users\Rick\Downloads\Edge.of.Tomorrow.2014.German.DL.720p.BluRay.x264-MOViEADDiCTS
2014-10-07 11:15 - 2014-10-18 10:16 - 00000000 ____D () C:\FRST
2014-10-04 13:53 - 2014-10-13 14:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2014-10-04 13:53 - 2014-10-13 14:26 - 00000000 ____D () C:\ProgramData\IObit
2014-10-04 13:53 - 2014-10-04 13:53 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-09-30 08:34 - 2014-10-03 09:36 - 00000000 ____D () C:\Users\Rick\Downloads\Bibi
2014-09-29 12:28 - 2014-10-10 14:47 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-09-29 12:28 - 2014-09-29 12:28 - 00001105 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2014-09-29 12:28 - 2014-09-29 12:28 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Canneverbe Limited
2014-09-29 12:28 - 2014-09-29 12:28 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-09-28 15:04 - 2014-09-28 15:04 - 00000000 ____D () C:\Users\Rick\Downloads\Neuer Ordner
2014-09-27 00:12 - 2014-09-29 16:04 - 00000000 ____D () C:\Users\Rick\Downloads\Aggro Berlin - Ansage Nr. 3
2014-09-26 14:39 - 2014-09-26 14:42 - 1028653056 _____ () C:\Users\Rick\Downloads\ubuntu-14.04.1-desktop-amd64.iso
2014-09-23 16:37 - 2014-09-24 08:10 - 00000000 ____D () C:\Users\Rick\Downloads\Transformers.4.Aera.des.Untergangs.German.DL.AC3.Dubbed.1080p.BluRay.x264-PsO
2014-09-23 08:59 - 2014-10-10 14:47 - 00000000 ____D () C:\Windows\pss
2014-09-22 20:07 - 2014-09-22 20:07 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\FastStone
2014-09-22 19:45 - 2014-10-10 15:12 - 00000000 ___RD () C:\Users\Rick\Dropbox
2014-09-22 19:44 - 2014-09-22 19:44 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-22 19:43 - 2014-10-10 14:49 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Dropbox
2014-09-20 14:58 - 2014-09-20 15:06 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\dll-files.com
2014-09-20 14:58 - 2014-09-20 14:58 - 01970176 _____ () C:\Windows\SysWOW64\D3DX9.dll
2014-09-20 14:58 - 2014-09-20 14:58 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-20 14:58 - 2014-09-15 17:48 - 00019392 _____ (Dll-Files.com) C:\Windows\system32\roboot64.exe
2014-09-20 11:02 - 2014-09-20 11:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-09-20 10:56 - 2014-09-20 10:56 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-09-20 10:55 - 2014-09-20 10:55 - 01101648 _____ () C:\Users\Rick\Downloads\Virtual CloneDrive - CHIP-Installer.exe
2014-09-20 10:37 - 2014-10-18 10:09 - 00000000 ____D () C:\Windows\Minidump
2014-09-19 09:26 - 2014-09-19 09:26 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-09-19 09:25 - 2014-09-19 09:25 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Opera Software
2014-09-19 09:25 - 2014-09-19 09:25 - 00000000 ____D () C:\Users\Rick\AppData\Local\Opera Software
2014-09-19 09:21 - 2014-09-19 09:21 - 00431135 _____ () C:\Windows\system32\Drivers\vsconfig.xml
2014-09-19 09:21 - 2014-09-19 09:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
2014-09-19 09:19 - 2014-09-19 09:29 - 00000000 ____D () C:\Program Files (x86)\CheckPoint
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\RHEng
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\OpenCandy
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\ProgramData\CheckPoint
2014-09-19 09:19 - 2014-09-19 09:19 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-09-19 09:18 - 2014-09-19 21:40 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\DVDVideoSoft
2014-09-19 09:10 - 2014-09-19 09:29 - 00000373 _____ () C:\Users\Rick\cryptboxdrives.xml
2014-09-19 09:09 - 2014-10-10 14:47 - 00000000 ____D () C:\Program Files (x86)\CryptBox
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\Users\Rick\Documents\My Safes
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\Abelssoft
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\Users\Rick\AppData\Local\Abelssoft
2014-09-19 09:09 - 2014-09-19 09:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CryptBox
2014-09-19 09:09 - 2013-12-10 12:50 - 00221312 _____ (Abelssoft GmbH) C:\Windows\SysWOW64\Drivers\CryptBox.sys
2014-09-18 14:00 - 2014-09-18 14:00 - 00000000 __SHD () C:\Users\Rick\AppData\Local\EmieUserList
2014-09-18 14:00 - 2014-09-18 14:00 - 00000000 __SHD () C:\Users\Rick\AppData\Local\EmieSiteList

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-18 10:14 - 2009-07-14 19:58 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-10-18 10:14 - 2009-07-14 19:58 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-10-18 10:14 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-18 10:13 - 2014-09-13 12:18 - 01598401 _____ () C:\Windows\WindowsUpdate.log
2014-10-18 10:10 - 2014-09-13 15:40 - 00002430 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5_user.job
2014-10-18 10:10 - 2014-09-13 15:40 - 00002430 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-5.job
2014-10-18 10:10 - 2014-09-13 15:40 - 00001434 _____ () C:\Windows\Tasks\99dcd2cb-42fc-414d-832e-db99f522ca63.job
2014-10-18 10:10 - 2014-09-13 15:39 - 00002756 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-1.job
2014-10-18 10:10 - 2014-09-13 15:39 - 00002094 _____ () C:\Windows\Tasks\222c4171-bae8-4a36-817c-972819bf0a0e-2.job
2014-10-18 10:10 - 2014-09-13 15:39 - 00000618 _____ () C:\Windows\Tasks\d9cccbe0-999e-4161-894c-a490dfb9e297.job
2014-10-18 10:10 - 2014-09-13 14:02 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-18 10:10 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-18 10:10 - 2009-07-14 06:51 - 00028621 _____ () C:\Windows\setupact.log
2014-10-18 09:56 - 2009-07-14 06:45 - 00023168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-18 09:56 - 2009-07-14 06:45 - 00023168 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-18 09:49 - 2014-09-13 14:09 - 00000000 ____D () C:\Users\Rick\AppData\Local\Google
2014-10-18 09:34 - 2014-09-16 14:30 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-17 17:32 - 2014-09-13 16:08 - 00000000 ____D () C:\Users\Rick\AppData\Roaming\vlc
2014-10-17 16:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-10-17 13:24 - 2014-09-13 15:13 - 00000000 ____D () C:\Users\Rick\AppData\Local\JDownloader v2.0
2014-10-16 19:52 - 2009-07-14 06:45 - 00267816 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-16 19:50 - 2014-09-13 20:09 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-16 12:20 - 2014-09-13 15:00 - 00444630 _____ () C:\Windows\PFRO.log
2014-10-16 09:27 - 2014-09-13 14:09 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-16 09:26 - 2014-09-16 14:08 - 00001421 _____ () C:\Users\Rick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-15 18:06 - 2014-09-16 14:29 - 00000000 ____D () C:\Users\Rick\Downloads\Teach.Me.2.XXX.DVDRip.x264-SLiEZE
2014-10-15 18:03 - 2014-09-13 14:48 - 00000000 ____D () C:\Users\Rick\Desktop\software
2014-10-15 09:57 - 2014-09-13 15:38 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-10-14 11:25 - 2014-09-16 14:25 - 00000000 ____D () C:\Program Files (x86)\Yahoo!
2014-10-13 14:24 - 2014-09-13 14:45 - 00000000 ____D () C:\ProgramData\374311380
2014-10-10 16:27 - 2014-09-13 14:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-10 15:50 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\Offline Web Pages
2014-10-10 15:48 - 2014-09-13 15:52 - 00000000 ____D () C:\ProgramData\BDLogging
2014-10-10 14:49 - 2014-09-13 12:18 - 00000000 ____D () C:\Users\Rick
2014-10-10 14:47 - 2014-09-16 14:38 - 00000000 ____D () C:\Program Files\My Lockbox
2014-10-10 14:47 - 2014-09-13 15:38 - 00000000 ____D () C:\Program Files (x86)\HQPureQualV1.8
2014-10-10 14:47 - 2014-09-13 15:29 - 00000000 ____D () C:\Program Files\WinRAR
2014-10-10 14:47 - 2014-09-13 14:43 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-10-10 14:47 - 2014-09-13 14:08 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-10-10 14:47 - 2014-09-13 13:46 - 00000000 ____D () C:\Program Files (x86)\avmwlanstick
2014-10-10 14:47 - 2009-07-14 20:18 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-10 14:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\AdvancedInstallers
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Speech
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\com
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-10-10 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-09-24 12:37 - 2014-09-13 16:12 - 00000446 _____ () C:\Windows\system32\checkdnsid.xml

Some content of TEMP:
====================
C:\Users\Rick\AppData\Local\Temp\13057424320621140387.exe
C:\Users\Rick\AppData\Local\Temp\JDSetup130574243148608109.exe
C:\Users\Rick\AppData\Local\Temp\proxy_vole8393861953432842947.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-26 18:08

==================== End Of Log ============================
--- --- ---
Alt 18.10.2014, 16:16   #30
schrauber
/// the machine
/// TB-Ausbilder
 
Jeden Tag 4-5 mal Bluescreen - Standard

Jeden Tag 4-5 mal Bluescreen


Ich würde IOBIT und ZoneAlarm/CheckPoint entfernen.

Zu dem Bluescreen:
Das Programm von Nvidia muss runter.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort
Seite 2 von 3 1 2 3

Themen zu Jeden Tag 4-5 mal Bluescreen
bluescree, bluescreen, fehlercode 0x40000015, fehlercode 0xc0000005, fehlercode 0xc0000096, fehlercode 0xc000041d, fehlercode 28, fehlercode 490@01010004, fehlercode windows, guten, morgen, richtig, woche, wochen, zusammen


« Keine Internetverbindung zu manchen Seiten + Popups | nach Installation von adobe reader Probleme mit öffnen andere Programme »


Ähnliche Themen: Jeden Tag 4-5 mal Bluescreen


  1. Bluescreen Problem-Anleitung für Bluescreen nicht anwenbar bei Bildschirm Freeze
    Alles rund um Windows - 04.04.2015 (18)
  2. Auf jeden Browser öffnen sich Popups.
    Log-Analyse und Auswertung - 16.01.2015 (7)
  3. Win32:Dropper taucht jeden Tag auf
    Plagegeister aller Art und deren Bekämpfung - 16.12.2014 (16)
  4. Habe Problem mit jeden Browser
    Plagegeister aller Art und deren Bekämpfung - 02.11.2014 (5)
  5. Windows 7: Jeden Tag mehrere Virus-Meldungen
    Log-Analyse und Auswertung - 04.08.2014 (19)
  6. rundll32.exe jeden alle jeden 2ten systemstart die ganze zeit am laufen. was könnte das sein?
    Plagegeister aller Art und deren Bekämpfung - 18.11.2013 (17)
  7. Jeden Tag Bluescreens
    Plagegeister aller Art und deren Bekämpfung - 21.09.2010 (24)
  8. Fast jeden Tag BlueScreen's + Langsamer PC
    Alles rund um Windows - 20.03.2009 (41)
  9. Finde jeden Tag 120 Trojaner. Was tun?
    Plagegeister aller Art und deren Bekämpfung - 10.01.2009 (8)
  10. jeden zweiten tag neue malware?!?
    Log-Analyse und Auswertung - 23.02.2008 (3)
  11. Bluescreen durch smit fraud, einen tag später wieder bluescreen
    Log-Analyse und Auswertung - 05.02.2008 (3)
  12. Jeden Tag / fast jede Std. ein Hackangriff
    Log-Analyse und Auswertung - 22.10.2007 (6)
  13. Bin für jeden Rat dankbar
    Plagegeister aller Art und deren Bekämpfung - 20.05.2006 (4)
  14. Jeden Mittwoch startet ein Casino Spiel!
    Plagegeister aller Art und deren Bekämpfung - 18.07.2005 (5)
  15. CWS.Jksearch jeden Tag
    Log-Analyse und Auswertung - 20.07.2004 (17)
  16. trojaner jeden tag neu trotz programmen
    Plagegeister aller Art und deren Bekämpfung - 25.04.2004 (8)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Jeden Tag 4-5 mal Bluescreen - Zitat: NVIDIA Network Service Bitte mal deinstallieren. - Jeden Tag 4-5 mal Bluescreen...
Archiv
Du betrachtest: Jeden Tag 4-5 mal Bluescreen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131