Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Schadsoftware?

Schadsoftware?


Plagegeister aller Art und deren Bekämpfung: Schadsoftware?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 2 von 3 1 2 3
Alt 17.10.2014, 23:47   #16
schrauber
/// the machine
/// TB-Ausbilder
 
Schadsoftware? - Standard

Schadsoftware?


Sieht schon besser aus. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 18.10.2014, 00:30   #17
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


Nicht dass ich wüsste,blos ich hätt ne frage wie ich eset neu installieren kann da ichs in meinem CCleaner programm nicht finde
__________________
Alt 18.10.2014, 15:53   #18
schrauber
/// the machine
/// TB-Ausbilder
 
Schadsoftware? - Standard

Schadsoftware?


Siehst Du es in WIndows Systemsteuerung oder mit Revo?
__________________
__________________
Alt 18.10.2014, 21:35   #19
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


Also in der Systemsteuerung und Revo seh ichs nich

Alt 19.10.2014, 14:05   #20
schrauber
/// the machine
/// TB-Ausbilder
 
Schadsoftware? - Standard

Schadsoftware?


Dann einfach drüber installieren.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.10.2014, 20:23   #21
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


Ok ich habs probiert und am Ende kam eine Fehlermeldung in der etwas davon stand ein programm zu downloaden von ESET und das is etwas für ehrfahrene Personen.... naja ich und ehrfahren

Alt 21.10.2014, 18:08   #22
schrauber
/// the machine
/// TB-Ausbilder
 
Schadsoftware? - Standard

Schadsoftware?


Geht das ein wenig genauer?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 22.10.2014, 19:04   #23
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


[IMG][IMG]http://img5.fotos-

[IMG][/IMG]

Alt 23.10.2014, 11:18   #24
schrauber
/// the machine
/// TB-Ausbilder
 
Schadsoftware? - Standard

Schadsoftware?


Bild bitte als Anhang posten.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 23.10.2014, 18:48   #25
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


so hier? [IMG][/IMG]

Alt 23.10.2014, 18:50   #26
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


ich hab das mit den anhängen erst nicht gefunden ...
Angehängte Grafiken
Dateityp: png ESETPROBLEM.PNG (110,0 KB, 127x aufgerufen)

Alt 24.10.2014, 16:21   #27
schrauber
/// the machine
/// TB-Ausbilder
 
Schadsoftware? - Standard

Schadsoftware?


Ja, das Programm laden und ausführen.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.10.2014, 22:41   #28
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


,,Im System wurde kein Schadcode gefunden´´

Alt 25.10.2014, 18:59   #29
schrauber
/// the machine
/// TB-Ausbilder
 
Schadsoftware? - Standard

Schadsoftware?


Poste mal bitte ein frisches FRST log.

Also das einzige Problem was noch besteht ist dass Du ESET nicht installieren kannst?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 26.10.2014, 00:36   #30
deluxius
 
Schadsoftware? - Standard

Schadsoftware?


ganz genau eset macht mir als einziges noch sorgen
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-10-2014
Ran by david (administrator) on DAVID-PC on 26-10-2014 01:34:46
Running from C:\Users\david\Desktop
Loaded Profile: david (Available profiles: david & VERSUCH)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Spotify Ltd) C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Nico Mak Computing) C:\Program Files\File Association Helper\FAHWindow.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Spotify Ltd) C:\Users\david\AppData\Roaming\Spotify\spotify.exe
() C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
() C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.224\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.8\deploy\LoLPatcher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.114\deploy\LolClient.exe
(PC-Doctor, Inc.) C:\Program Files\My Dell\imstrayicon.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2195824 2012-02-01] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5581888 2014-02-24] (ESET)
HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe [729272 2014-01-28] (Nico Mak Computing)
HKLM-x32\...\Run: [Dell Registration] => C:\Program Files (x86)\System Registration\prodreg.exe [4165440 2011-08-04] (Dell, Inc.)
HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [AccuWeatherWidget] => C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [968048 2012-02-01] ()
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2236816 2013-07-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [StereoLinksInstall] => C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe [1058592 2013-08-09] (NVIDIA Corporation)
HKU\S-1-5-21-243866017-1107141967-568923311-1001\...\Run: [Spotify Web Helper] => C:\Users\david\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-03] (Spotify Ltd)
HKU\S-1-5-21-243866017-1107141967-568923311-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1938624 2014-10-21] (Valve Corporation)
HKU\S-1-5-21-243866017-1107141967-568923311-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-243866017-1107141967-568923311-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-243866017-1107141967-568923311-1001\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_152_Plugin.exe [854192 2014-10-04] (Adobe Systems Incorporated)
HKU\S-1-5-18\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - !{1BB22D38-A411-4B13-A746-C2A4F4EC7344} -  No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM-x32 - No Name - !{1BB22D38-A411-4B13-A746-C2A4F4EC7344} -  No File
Toolbar: HKLM-x32 - No Name - !{5018CFD2-804D-4C99-9F81-25EAEA2769DE} -  No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default
FF NewTab: 
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: 
FF Homepage: 
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\david\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\david\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Extension: Amazon-Icon - C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default\Extensions\amazon-icon@giga.de [2014-04-16]
FF Extension: Stylish - C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2012-10-08]
FF Extension: NoScript - C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-10-07]
FF Extension: Adblock Plus - C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-09-08]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-08-14]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-04-22]
FF Extension: No Name - C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default\extensions\battlefieldheroespatcher@ea.com [Not Found]
FF Extension: No Name - C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default\extensions\battlefieldplay4free@ea.com [Not Found]
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [Not Found]
FF Extension: No Name - C:\Program Files (x86)\LyricsPal\125.xpi [Not Found]
FF Extension: No Name - C:\Program Files (x86)\FromDocToPDF_65\bar\1.bin [Not Found]
FF Extension: No Name - C:\Users\david\AppData\Roaming\Mozilla\Firefox\Profiles\2mmwkhvz.default\extensions\{2894a412-e091-6466-9ab8-ea76561654ca} [Not Found]

Chrome: 
=======
CHR HomePage: Default -> chrome://newtab
CHR Profile: C:\Users\david\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-20]
CHR Extension: (Google Drive) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05]
CHR Extension: (YouTube) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-20]
CHR Extension: (Google-Suche) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-20]
CHR Extension: (Stylish) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2013-07-03]
CHR Extension: (AdBlock) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-07-03]
CHR Extension: (Skype Click to Call) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-07-20]
CHR Extension: (Google Wallet) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Battlefield Play4Free) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2014-04-06]
CHR Extension: (Google Mail) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-20]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88400 2014-10-21] (Perfect World Entertainment Inc)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [448384 2014-08-04] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-04-11] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S2 eins1425; C:\Windows\eins1425.dll [705736 2014-10-24] (ESET)
S2 eins2635; C:\Windows\eins2635.dll [705736 2014-10-22] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1343408 2014-02-24] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-09-17] (NVIDIA Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3191392 2014-05-15] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-09-17] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-06-21] ()
S2 AviraUpgradeService; "C:\Windows\TEMP\AVSETUP_53f13fa6\avupgsvc.exe" /TEMPSTART:""C:\Windows\TEMP\AVSETUP_53f13fa6\setup.exe" /NOTEMPCLEANUP /CLEANUPSRCFILES"

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S4 aswSP; No ImagePath
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-10-08] (BitRaider)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 ESETOlmarikOlmascoCleaner; C:\Windows\system32\Drivers\ESETOlmarikOlmascoCleaner.sys [157384 2014-10-24] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-09-13] (Duplex Secure Ltd.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-25 01:17 - 2014-10-25 01:18 - 00000000 ____D () C:\Windows\LastGood
2014-10-25 00:52 - 2014-10-25 01:12 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-25 00:49 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-10-25 00:49 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-10-25 00:49 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-10-25 00:49 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-10-25 00:49 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-10-25 00:49 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-10-25 00:49 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-10-25 00:49 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-10-25 00:14 - 2014-10-25 00:14 - 00003138 _____ () C:\Windows\System32\Tasks\{20AE32C5-5E54-4544-9E32-A7CD905020E0}
2014-10-25 00:12 - 2014-10-25 00:14 - 00002712 _____ () C:\Users\david\Downloads\~ESETUninstaller.log
2014-10-25 00:12 - 2014-10-25 00:12 - 00671432 _____ (ESET) C:\Users\david\Downloads\ESETUninstaller.exe
2014-10-25 00:09 - 2014-10-25 00:09 - 00001967 _____ () C:\Users\david\Desktop\ESET Smart Security.lnk
2014-10-25 00:00 - 2014-10-25 00:01 - 00000000 ____D () C:\Users\david\AppData\Roaming\Arc
2014-10-25 00:00 - 2014-10-25 00:00 - 00001842 _____ () C:\Users\Public\Desktop\Arc.lnk
2014-10-25 00:00 - 2014-10-25 00:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment
2014-10-24 23:59 - 2014-10-25 00:00 - 00000000 ____D () C:\Program Files (x86)\Perfect World Entertainment
2014-10-24 23:56 - 2014-10-24 23:57 - 09686176 _____ (Perfect World Entertainment) C:\Users\david\Downloads\ArcInstall_v20140625a.exe
2014-10-24 23:40 - 2014-10-24 23:40 - 00157384 _____ () C:\Windows\system32\Drivers\ESETOlmarikOlmascoCleaner.sys
2014-10-24 23:39 - 2014-10-24 23:39 - 00705736 _____ (ESET) C:\Windows\eins1425.dll
2014-10-24 23:39 - 2014-10-24 23:37 - 81780736 _____ () C:\Windows\eins1425.msi
2014-10-22 20:01 - 2014-10-22 20:01 - 00705736 _____ (ESET) C:\Windows\eins2635.dll
2014-10-22 20:01 - 2014-10-22 19:59 - 81780736 _____ () C:\Windows\eins2635.msi
2014-10-21 06:51 - 2014-10-21 06:51 - 00000000 ____D () C:\Users\david\AppData\Local\My Games
2014-10-17 18:00 - 2014-10-17 18:00 - 08478720 _____ () C:\Users\david\Downloads\hamachi_2.2.0.236.msi
2014-10-16 18:48 - 2014-10-16 18:48 - 00043177 _____ () C:\Users\david\Desktop\Addition.txt
2014-10-16 18:47 - 2014-10-26 01:34 - 00000520 _____ () C:\Users\david\Desktop\FRST.txt
2014-10-14 16:24 - 2014-10-16 01:08 - 00000000 ____D () C:\Users\david\Desktop\TrojanerBoard
2014-10-13 18:51 - 2014-10-13 18:52 - 01660616 _____ (ESET) C:\Users\david\Downloads\eset_smart_security_live_installer (1).exe
2014-10-13 18:40 - 2014-10-13 18:40 - 00001034 _____ () C:\Users\david\Desktop\checkup.txt
2014-10-13 18:17 - 2014-10-13 18:17 - 00854417 _____ () C:\Users\david\Downloads\SecurityCheck.exe
2014-10-13 16:03 - 2014-10-13 16:03 - 02347384 _____ (ESET) C:\Users\david\Downloads\esetsmartinstaller_deu.exe
2014-10-12 16:13 - 2014-10-26 01:34 - 00000000 ____D () C:\Users\david\Desktop\FRST-OlderVersion
2014-10-12 16:08 - 2014-10-12 16:08 - 01705755 _____ (Thisisu) C:\Users\david\Downloads\JRT.exe
2014-10-12 16:08 - 2014-10-12 16:08 - 00000000 ____D () C:\Windows\ERUNT
2014-10-12 16:03 - 2014-10-12 16:03 - 00000000 _____ () C:\Users\david\Downloads\C6E7.tmp
2014-10-12 16:01 - 2014-10-12 16:01 - 01375089 _____ () C:\Users\david\Downloads\AdwCleaner_3.311.exe
2014-10-12 16:01 - 2014-10-12 16:01 - 01375089 _____ () C:\Users\david\Downloads\AdwCleaner_3.311 (1).exe
2014-10-12 15:56 - 2014-10-12 15:56 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-10-12 15:40 - 2014-10-12 15:56 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-12 15:40 - 2014-10-12 15:40 - 00001104 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-10-12 15:40 - 2014-10-12 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-10-12 15:40 - 2014-10-12 15:40 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-12 15:40 - 2014-10-12 15:40 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-10-12 15:40 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-12 15:40 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-12 15:40 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-10-12 15:39 - 2014-10-12 15:39 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\david\Downloads\mbam-setup-2.0.2.1012.exe
2014-10-12 12:20 - 2014-10-12 12:21 - 04965896 _____ (Piriform Ltd) C:\Users\david\Downloads\ccsetup418.exe
2014-10-12 12:19 - 2014-10-12 12:19 - 00003206 _____ () C:\Windows\System32\Tasks\{536105BA-DC87-4426-BF21-07E3D6160448}
2014-10-11 23:01 - 2014-10-11 23:01 - 01660616 _____ (ESET) C:\Users\david\Downloads\eset_smart_security_live_installer.exe
2014-10-11 22:54 - 2014-10-11 22:54 - 00033935 _____ () C:\ComboFix.txt
2014-10-11 20:04 - 2014-10-11 22:54 - 00000000 ____D () C:\Qoobox
2014-10-11 20:04 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-10-11 20:04 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-10-11 20:04 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-10-11 20:04 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-10-11 20:04 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-10-11 20:04 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-10-11 20:04 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-10-11 20:04 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-10-11 20:01 - 2014-10-11 22:53 - 00000000 ____D () C:\Windows\erdnt
2014-10-11 20:00 - 2014-10-11 20:00 - 05582481 ____R (Swearware) C:\Users\david\Downloads\ComboFix.exe
2014-10-11 20:00 - 2014-10-11 20:00 - 05582481 ____R (Swearware) C:\Users\david\Desktop\ComboFix.exe
2014-10-11 19:09 - 2014-10-11 19:09 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\david\Downloads\revosetup95.exe
2014-10-10 21:18 - 2014-10-10 21:18 - 00000000 ____D () C:\Windows\pss
2014-10-10 20:56 - 2014-10-26 01:34 - 00000000 ____D () C:\FRST
2014-10-10 20:55 - 2014-10-26 01:34 - 02112512 _____ (Farbar) C:\Users\david\Desktop\FRST64.exe
2014-10-10 20:55 - 2014-10-10 20:55 - 02109952 _____ (Farbar) C:\Users\david\Downloads\FRST64.exe
2014-10-10 19:12 - 2014-10-10 19:13 - 00000000 ____D () C:\Users\david\AppData\Roaming\SpaceEngineers
2014-10-06 21:21 - 2014-10-06 22:00 - 764194469 _____ ( ) C:\Users\david\Downloads\Call_of_Pripyat_Complete_v1.0.2_Setup.exe
2014-10-03 10:50 - 2014-10-03 10:50 - 00000000 ____D () C:\Users\david\Documents\Paradox Interactive
2014-09-29 20:45 - 2014-09-29 20:45 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-09-29 20:33 - 2014-09-17 06:51 - 01538880 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-09-29 20:33 - 2014-09-17 06:51 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-09-29 20:33 - 2014-09-17 06:51 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-09-29 20:33 - 2014-09-14 01:48 - 18106152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SETEA63.tmp
2014-09-29 20:33 - 2014-09-14 01:48 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434411.dll
2014-09-29 20:33 - 2014-09-14 01:48 - 01539272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434411.dll
2014-09-29 20:33 - 2013-08-27 07:53 - 13419112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-09-29 20:33 - 2013-08-27 07:53 - 00021638 _____ () C:\Windows\system32\nvinfo.pb
2014-09-29 18:41 - 2014-09-29 18:41 - 00000000 ____D () C:\NVIDIA
2014-09-29 18:34 - 2014-09-17 04:10 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-09-29 18:34 - 2014-09-17 04:10 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-09-29 18:32 - 2014-09-04 21:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-09-29 18:32 - 2014-09-04 21:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-09-29 18:29 - 2014-09-29 18:32 - 319671744 _____ (NVIDIA Corporation) C:\Users\david\Downloads\344.11-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-09-29 01:11 - 2014-09-29 01:11 - 06626832 _____ (TeamViewer GmbH) C:\Users\david\Downloads\TeamViewer_Setup_de.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-26 01:25 - 2013-07-03 15:26 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-26 01:14 - 2012-06-23 16:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-26 01:10 - 2012-06-23 16:19 - 00000000 ____D () C:\Users\david\AppData\Roaming\Skype
2014-10-26 01:00 - 2013-06-02 22:16 - 00000000 ____D () C:\Users\david\AppData\Roaming\Spotify
2014-10-26 00:38 - 2012-06-23 16:41 - 00000000 ____D () C:\Users\david\AppData\Roaming\TS3Client
2014-10-26 00:25 - 2012-06-24 18:15 - 00001138 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-243866017-1107141967-568923311-1001UA.job
2014-10-26 00:25 - 2012-06-24 18:15 - 00001116 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-243866017-1107141967-568923311-1001Core.job
2014-10-25 22:25 - 2013-07-03 15:26 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-25 19:43 - 2014-01-02 12:25 - 02074834 _____ () C:\Windows\WindowsUpdate.log
2014-10-25 19:40 - 2009-07-14 06:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-25 19:40 - 2009-07-14 06:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-25 14:20 - 2013-07-01 13:47 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-25 14:00 - 2013-05-21 18:36 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-10-25 09:27 - 2012-11-01 17:03 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{963751FF-E6A0-461A-9D15-630985D8D304}
2014-10-25 02:00 - 2012-06-30 11:37 - 00000000 ____D () C:\Users\david\AppData\Local\Adobe
2014-10-25 01:23 - 2012-06-23 20:58 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-25 01:23 - 2012-01-27 09:33 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-25 01:18 - 2013-09-17 19:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-10-25 01:17 - 2012-01-27 09:33 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-24 23:59 - 2012-01-27 10:58 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-24 23:35 - 2014-08-27 23:16 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-10-24 22:20 - 2013-07-03 15:26 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-24 22:20 - 2013-07-03 15:26 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-24 03:16 - 2013-06-24 22:20 - 00000000 ____D () C:\Users\david\AppData\Local\Spotify
2014-10-22 20:05 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-22 15:10 - 2014-01-01 20:14 - 00034419 _____ () C:\Windows\setupact.log
2014-10-22 15:09 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-21 06:51 - 2012-06-29 13:21 - 00000000 ____D () C:\Users\david\Documents\My Games
2014-10-20 21:40 - 2012-06-29 15:57 - 00000000 ____D () C:\Users\david\AppData\Local\ArmA 2 OA
2014-10-20 13:11 - 2012-01-27 11:20 - 00000000 ____D () C:\ProgramData\Sonic
2014-10-20 13:08 - 2014-01-07 16:07 - 01374990 _____ () C:\Windows\PFRO.log
2014-10-19 20:32 - 2013-03-23 18:55 - 00000000 ____D () C:\Users\david\AppData\Local\CrashDumps
2014-10-18 14:10 - 2014-01-06 03:51 - 00680055 _____ () C:\Windows\DirectX.log
2014-10-12 16:28 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-12 16:03 - 2013-11-23 13:09 - 00000000 ____D () C:\AdwCleaner
2014-10-12 12:48 - 2012-09-09 17:58 - 00000000 ____D () C:\Users\david\AppData\Local\Apps\2.0
2014-10-12 12:24 - 2012-06-27 19:00 - 00000784 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-12 12:24 - 2012-06-27 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-12 12:24 - 2012-06-27 19:00 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-11 22:54 - 2009-07-14 05:20 - 00000000 ____D () C:\Users\Default
2014-10-11 22:48 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-10-10 19:55 - 2014-09-08 20:25 - 00000000 ____D () C:\Users\david\Desktop\Cracks
2014-10-09 21:07 - 2012-06-23 16:25 - 00000000 ____D () C:\ProgramData\Origin
2014-10-05 13:11 - 2014-08-11 02:34 - 00000000 ____D () C:\Users\david\Documents\BattleIslands
2014-10-04 22:03 - 2012-06-23 16:32 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-04 22:03 - 2012-06-23 16:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-04 22:03 - 2012-01-27 10:40 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-03 10:02 - 2012-07-01 08:18 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-29 20:49 - 2013-09-17 19:46 - 00001349 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-09-29 18:38 - 2013-12-21 19:21 - 00000000 ____D () C:\Users\david\AppData\Local\NVIDIA Corporation
2014-09-29 18:34 - 2012-01-27 09:33 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-09-29 01:12 - 2012-07-18 17:29 - 00000000 ____D () C:\Users\david\AppData\Roaming\TeamViewer
2014-09-28 20:48 - 2012-10-03 16:54 - 00007599 _____ () C:\Users\david\AppData\Local\Resmon.ResmonCfg

Some content of TEMP:
====================
C:\Users\david\AppData\Local\Temp\InstHelper.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-17 04:28

==================== End Of Log ============================
--- --- ---
Antwort
Seite 2 von 3 1 2 3

Themen zu Schadsoftware?
fehlercode 0x0, fehlercode 0xc0000005, fehlercode 0xc000041d, fehlercode windows, pum.disabled.securitycenter, pup.optional.dealply.a, pup.optional.installcore.a, pup.optional.mysearchdial.a, pup.optional.opencandy, pup.optional.pcspeedup.a, pup.optional.qone8, snap.do entfernen, virus oder malware, win32/dealply.b, win32/dealply.d, win32/psw.papras.cx, win32/psw.papras.dj, win32/somoto.d, win32/toolbar.babylon.i, win32/toolbar.linkury.d, win32/toolbar.mywebsearch.aa, win32/toolbar.mywebsearch.t, win32/toolbar.mywebsearch.w, win32/toolbar.mywebsearch.x, win64/toolbar.mywebsearch.a


« Firefox & Chrome öffnen automatisch Seiten mit Werbung | System völlig versucht »


Ähnliche Themen: Schadsoftware?


  1. Schadsoftware versendet E-Mails
    Plagegeister aller Art und deren Bekämpfung - 15.11.2015 (27)
  2. Outbound schadsoftware eingefangen!
    Log-Analyse und Auswertung - 04.11.2015 (48)
  3. mystartsearch / oursurfing Schadsoftware?
    Plagegeister aller Art und deren Bekämpfung - 07.07.2015 (13)
  4. Wo zentral Schadsoftware melden?
    Diskussionsforum - 13.05.2015 (4)
  5. Möglicherweiße Schadsoftware im Büro
    Plagegeister aller Art und deren Bekämpfung - 19.01.2015 (9)
  6. schadsoftware, uTop.it
    Log-Analyse und Auswertung - 03.12.2014 (28)
  7. Rechner langsam - Schadsoftware?
    Plagegeister aller Art und deren Bekämpfung - 24.06.2014 (7)
  8. Schadsoftware auf Webserver (PHP)
    Alles rund um Mac OSX & Linux - 23.05.2014 (5)
  9. mit PC Cleaner Schadsoftware gefunden
    Plagegeister aller Art und deren Bekämpfung - 31.01.2014 (15)
  10. Schadsoftware will auf Posteingang zugreifen
    Plagegeister aller Art und deren Bekämpfung - 04.05.2013 (11)
  11. Schadsoftware auf Webseiten der Sparkasse
    Nachrichten - 20.02.2013 (0)
  12. Unbekannte Schadsoftware - Fernsteuerung, etc.
    Plagegeister aller Art und deren Bekämpfung - 16.11.2010 (13)
  13. Schadsoftware eingefangen? (LosAlamos, msa.exe, etc)
    Log-Analyse und Auswertung - 16.02.2010 (7)
  14. Unbekannte Schadsoftware
    Log-Analyse und Auswertung - 02.01.2009 (0)
  15. PC auf Schadsoftware überprüfen
    Antiviren-, Firewall- und andere Schutzprogramme - 04.09.2008 (5)
  16. Verdacht auf Schadsoftware
    Log-Analyse und Auswertung - 21.06.2008 (7)
  17. Wie kommt Schadsoftware auf den Rechner?
    Plagegeister aller Art und deren Bekämpfung - 07.09.2004 (6)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Schadsoftware? - Sieht schon besser aus. Noch Probleme? - Schadsoftware?...
Archiv
Du betrachtest: Schadsoftware? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131