| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 7: Computer gibt alle 30 Minuten ein Standbild mit lauten Tönen aus den Lautsprechern von sich.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
12.02.2015, 21:50
| #1 |
| |  Windows 7: Computer gibt alle 30 Minuten ein Standbild mit lauten Tönen aus den Lautsprechern von sich. Guten Tag, Ich hatte bis jetzt noch nie Probleme mit meinem Computer jedoch tritt seit neuem immer wieder das Problem auf, dass der PC beim arbeiten, spielen oder Videos gucken einfach plötzlich hängen bleibt. Dies tritt ca. jede halbe Stunde nach starten des Computers auf und hört auch erst wieder auf wenn ich diesen wieder neustarte, weswegen ich mich langsam frage, was mit meinem Pc los ist. Seit letzter Zeit tritt es auch immer wieder auf, dass der Pc kurzzeitig extrem langsam wird und ich fast garnichts mehr machen kann. Ich bin mir nicht sicher ob es sich hier um einen Virus bzw. Trojaner handelt oder einfach um einen Hardwarefehler. Da mir dieses Forum aber seriöser erscheint als die meisten anderen wollte ich mich hier nach einer möglichen Lösung erkundigen. Informationen zu dem Pc: Ich habe einen Acer Aspire M3920, der ca. 2 1/2 Jahre alt ist, mit einem Intel Core i7 - 2600 CPU und 2x 3,40 GHz Prozessor. Ich habe einen Installierten Arbeitsspeicher von 8 GB und ein 64 - Bit-Windows 7-Betriebssystem. Ausserdem habe ich eine NVIDIA GeForce GT 545 Grafikkarte und zwei 500GB Festplatten. Hier der defogger_disable_log: Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 16:55 on 11/02/2015 (Oli)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
HKCU:DAEMON Tools Lite -> Removed
Checking for services/drivers...
-=E.O.F=-
Hier der FRST.log Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-02-2015 01
Ran by Oli (administrator) on OLI-PC on 11-02-2015 16:57:34
Running from C:\Users\Oli\Downloads
Loaded Profiles: Oli (Available profiles: Oli)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Flux Software LLC) C:\Users\Oli\AppData\Local\FluxSoftware\Flux\flux.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
() C:\OEM\USBDECTION\USBS3S4Detection.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
Failed to access process -> dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11464296 2010-09-03] (Realtek Semiconductor)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1686480 2015-01-20] (Bitdefender)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-27] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] => C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] => C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [MDS_Menu] => C:\Program Files (x86)\Acer Arcade Deluxe\MediaEspresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [618600 2010-12-03] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30872168 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-01-20] (Bitdefender)
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\Run: [f.lux] => C:\Users\Oli\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\MountPoints2: {1b634be4-8dd5-11e4-8359-bc0543069b27} - K:\setup.exe
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\MountPoints2: {96b30731-5923-11e4-9954-f80f4115c4a8} - K:\pushinst.exe
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\MountPoints2: {aad482b0-8773-11e4-83ca-bc0543069b27} - K:\setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-10-24] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll (Egis Technology Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
AutoConfigURL: [.DEFAULT] => file://C:\Program Files (x86)\Framed Display\bin\Pac9064.js
AutoConfigURL: [S-1-5-21-1681462963-1446202873-651016115-1000] => file://C:\Program Files (x86)\Framed Display\bin\Pac8807.js
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1681462963-1446202873-651016115-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.searchmania.info/?l=1&q={searchTerms}&pid=2356&r=2014/12/09&hid=736609318061665309&lg=EN&cc=DE&unqvl=70
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.searchmania.info/?l=1&q={searchTerms}&pid=2356&r=2014/12/09&hid=736609318061665309&lg=EN&cc=DE&unqvl=70
SearchScopes: HKU\S-1-5-21-1681462963-1446202873-651016115-1000 -> DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.searchmania.info/?l=1&q={searchTerms}&pid=2356&r=2014/12/09&hid=736609318061665309&lg=EN&cc=DE&unqvl=70
SearchScopes: HKU\S-1-5-21-1681462963-1446202873-651016115-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3325580&octid=EB_ORIGINAL_CTID&ISID=MD3242011-7D5F-4A05-B7E7-9EC2ACE72FCE&SearchSource=58&CUI=&UM=2&UP=SP49CE3589-E030-4B96-9B1F-53FBE885A650&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-1681462963-1446202873-651016115-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1681462963-1446202873-651016115-1000 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.searchmania.info/?l=1&q={searchTerms}&pid=2356&r=2014/12/09&hid=736609318061665309&lg=EN&cc=DE&unqvl=70
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
Toolbar: HKU\S-1-5-21-1681462963-1446202873-651016115-1000 -> Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Tcpip\..\Interfaces\{281170D5-942F-4E85-B785-714DB3C9D71B}: [NameServer] 192.168.178.169,192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Oli\AppData\Roaming\Mozilla\Firefox\Profiles\x1rvy1gl.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1681462963-1446202873-651016115-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF user.js: detected! => C:\Users\Oli\AppData\Roaming\Mozilla\Firefox\Profiles\x1rvy1gl.default\user.js
FF Extension: Lightbeam - C:\Users\Oli\AppData\Roaming\Mozilla\Firefox\Profiles\x1rvy1gl.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2015-01-21]
FF Extension: Adblock Plus - C:\Users\Oli\AppData\Roaming\Mozilla\Firefox\Profiles\x1rvy1gl.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-29]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-12-27]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-12-27]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKU\S-1-5-21-1681462963-1446202873-651016115-1000\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - No Path
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2015-01-20] (Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [814976 2015-02-07] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [182304 2015-01-26] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-01-16] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-02-09] (Hi-Rez Studios) [File not signed]
S4 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-01-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-01-16] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-01-08] ()
S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604344 2015-01-30] (AVG Technologies)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-01-30] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-01-30] (AVG Technologies)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1545376 2015-01-20] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2014-09-25] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-05-16] (BitDefender)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-25] (AVM Berlin)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2013-11-13] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2015-01-20] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-12-28] (Disc Soft Ltd)
R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [714368 2010-10-25] (AVM GmbH)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [155912 2015-01-20] (BitDefender LLC)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-01-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-09-09] (TuneUp Software)
S3 USBTINSP; C:\Windows\System32\DRIVERS\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 X6va027; \??\C:\Windows\SysWOW64\Drivers\X6va027 [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-11 16:57 - 2015-02-11 16:58 - 00020382 _____ () C:\Users\Oli\Downloads\FRST.txt
2015-02-11 16:57 - 2015-02-11 16:57 - 02134016 _____ (Farbar) C:\Users\Oli\Desktop\FRST64.exe
2015-02-11 16:55 - 2015-02-11 16:55 - 00000538 _____ () C:\Users\Oli\Desktop\defogger_disable.log
2015-02-11 16:54 - 2015-02-11 16:54 - 00050477 _____ () C:\Users\Oli\Downloads\Defogger.exe
2015-02-11 16:26 - 2015-02-11 16:26 - 00000000 ____D () C:\Users\Oli\AppData\Local\Doctor Entertainment AB
2015-02-11 16:20 - 2015-02-11 16:20 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT
2015-02-11 16:20 - 2015-02-11 16:20 - 00000003 _____ () C:\Windows\system32\HRUPPROG.EXIT
2015-02-11 00:04 - 2015-02-11 01:09 - 112002924 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part25.rar.part
2015-02-11 00:03 - 2015-02-11 01:39 - 380120532 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part24.rar
2015-02-11 00:03 - 2015-02-11 01:20 - 187842664 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part15.rar
2015-02-11 00:03 - 2015-02-11 01:18 - 143028544 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part22.rar
2015-02-11 00:03 - 2015-02-11 01:16 - 123659580 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part13.rar.part
2015-02-11 00:03 - 2015-02-11 01:15 - 210669228 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part19.rar.part
2015-02-11 00:03 - 2015-02-11 01:09 - 174450540 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part21.rar
2015-02-11 00:03 - 2015-02-11 01:09 - 173548848 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part12.rar
2015-02-11 00:03 - 2015-02-11 01:09 - 137134140 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part20.rar.part
2015-02-11 00:03 - 2015-02-11 01:09 - 137015076 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part18.rar
2015-02-11 00:03 - 2015-02-11 01:09 - 125445540 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part14.rar.part
2015-02-11 00:03 - 2015-02-11 01:09 - 123703140 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part23.rar.part
2015-02-11 00:03 - 2015-02-11 01:09 - 115776672 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part17.rar.part
2015-02-11 00:03 - 2015-02-11 01:08 - 174283560 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part16.rar.part
2015-02-11 00:03 - 2015-02-11 00:11 - 16377762 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part26.rar
2015-02-11 00:02 - 2015-02-11 01:15 - 179373568 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part07.rar.part
2015-02-11 00:02 - 2015-02-11 01:13 - 136079988 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part04.rar
2015-02-11 00:02 - 2015-02-11 01:12 - 220724328 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part05.rar
2015-02-11 00:02 - 2015-02-11 01:09 - 223030104 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part09.rar
2015-02-11 00:02 - 2015-02-11 01:09 - 213538868 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part06.rar
2015-02-11 00:02 - 2015-02-11 01:09 - 171462308 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part08.rar
2015-02-11 00:02 - 2015-02-11 01:09 - 170064048 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part11.rar
2015-02-11 00:02 - 2015-02-11 01:09 - 122804352 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part10.rar
2015-02-11 00:01 - 2015-02-11 01:09 - 184954308 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part03.rar
2015-02-11 00:01 - 2015-02-11 01:09 - 127439136 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part02.rar.part
2015-02-11 00:00 - 2015-02-11 01:07 - 252100420 _____ () C:\Users\Oli\Downloads\DY_LI.UE_M2.part01.rar
2015-02-10 23:58 - 2015-02-11 01:15 - 157521672 _____ () C:\Users\Oli\Downloads\SpoXCoXColl-ElAm.part4.rar.part
2015-02-10 23:58 - 2015-02-11 01:13 - 158777652 _____ () C:\Users\Oli\Downloads\SpoXCoXColl-ElAm.part5.rar
2015-02-10 23:58 - 2015-02-11 01:11 - 219311504 _____ () C:\Users\Oli\Downloads\SpoXCoXColl-ElAm.part1.rar
2015-02-10 23:58 - 2015-02-11 01:09 - 297771308 _____ () C:\Users\Oli\Downloads\SpoXCoXColl-ElAm.part2.rar
2015-02-10 23:58 - 2015-02-11 01:09 - 291046912 _____ () C:\Users\Oli\Downloads\SpoXCoXColl-ElAm.part3.rar
2015-02-10 16:23 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-02-10 16:23 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-02-10 16:23 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-02-10 16:19 - 2015-02-10 16:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-02-10 15:50 - 2015-02-10 15:50 - 00002768 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-02-10 15:50 - 2015-02-10 15:50 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-10 15:50 - 2015-02-10 15:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-10 15:50 - 2015-02-10 15:50 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-10 14:03 - 2015-02-10 14:03 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-02-10 14:03 - 2015-02-10 14:03 - 00000000 ____D () C:\ProgramData\Sun
2015-02-10 14:03 - 2015-02-10 14:03 - 00000000 ____D () C:\ProgramData\Oracle
2015-02-10 14:03 - 2015-02-10 14:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-10 14:03 - 2015-02-10 14:03 - 00000000 ____D () C:\Program Files (x86)\Java
2015-02-03 15:36 - 2015-02-03 18:12 - 00000000 ____D () C:\MicroVolts Package
2015-02-02 20:57 - 2015-02-02 20:57 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2015-02-02 20:57 - 2015-02-02 20:57 - 00000000 ____D () C:\Users\Oli\AppData\Local\FluxSoftware
2015-01-28 15:47 - 2015-01-28 15:47 - 00000000 ____D () C:\Users\Oli\AppData\Local\DayZCommander
2015-01-28 15:47 - 2015-01-28 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dotjosh Studios
2015-01-28 15:47 - 2015-01-28 15:47 - 00000000 ____D () C:\Program Files (x86)\Dotjosh Studios
2015-01-28 15:40 - 2015-02-08 06:00 - 00000000 ____D () C:\Users\Oli\AppData\Local\ArmA 2 OA
2015-01-28 15:40 - 2015-01-28 15:40 - 00000000 ____D () C:\ProgramData\Bohemia Interactive Studio
2015-01-28 15:39 - 2015-01-28 15:39 - 00003392 _____ () C:\Windows\System32\Tasks\{A0FF6DB5-B870-42D4-A25E-074E2FA98FD5}
2015-01-28 15:38 - 2015-01-28 17:52 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-01-28 15:38 - 2015-01-28 17:41 - 00000000 ____D () C:\Users\Oli\Documents\ArmA 2
2015-01-28 15:38 - 2015-01-28 15:38 - 00000000 ____D () C:\Users\Oli\AppData\Local\ArmA 2
2015-01-28 15:38 - 2015-01-28 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-01-27 19:27 - 2015-01-31 18:10 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\NVIDIA
2015-01-27 19:26 - 2015-01-27 19:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-27 17:30 - 2015-01-30 17:08 - 00000000 ____D () C:\Users\Oli\AppData\Local\Warframe
2015-01-27 15:58 - 2015-01-27 15:58 - 00000000 ____D () C:\Users\Oli\Documents\WB Games
2015-01-26 22:58 - 2015-02-11 00:12 - 00000000 ___RD () C:\Users\Oli\Desktop\Spiele
2015-01-26 21:38 - 2015-01-26 21:38 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\.mono
2015-01-26 21:37 - 2015-01-26 21:37 - 00182304 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2015-01-26 21:29 - 2015-01-26 21:29 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Robocraft
2015-01-26 21:29 - 2015-01-26 21:29 - 00000000 ____D () C:\Games
2015-01-25 03:00 - 2015-01-25 03:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft ASP.NET
2015-01-24 23:45 - 2015-01-24 23:45 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2015-01-24 23:45 - 2015-01-09 23:27 - 00621200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-01-24 23:44 - 2015-01-09 20:47 - 04173527 _____ () C:\Windows\system32\nvcoproc.bin
2015-01-24 23:43 - 2015-01-13 05:15 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-01-24 23:43 - 2015-01-13 05:15 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-01-24 23:43 - 2015-01-13 05:15 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 32102544 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 25459856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 24765584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 20465296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 17250776 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 13295552 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 13210248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 10774544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 10714488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 10274448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-01-24 23:43 - 2015-01-10 09:07 - 03607184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 03245712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 02902456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434725.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 01556808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434725.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00994712 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00969360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00942736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00929424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00906384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00877488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00353040 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00305320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-01-24 23:43 - 2015-01-10 09:07 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-01-24 23:38 - 2015-02-10 13:52 - 00001351 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2015-01-24 23:38 - 2015-01-24 23:49 - 00000000 ____D () C:\Users\Oli\AppData\Local\NVIDIA Corporation
2015-01-24 23:38 - 2015-01-24 23:39 - 00000000 ____D () C:\Users\Oli\AppData\Local\NVIDIA
2015-01-24 23:38 - 2015-01-16 07:40 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-01-24 23:38 - 2015-01-16 07:40 - 01278920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-01-24 23:38 - 2015-01-16 07:39 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-01-24 23:38 - 2015-01-16 07:39 - 01514528 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-01-24 23:38 - 2014-11-22 11:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-01-24 23:38 - 2014-11-22 11:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-01-24 23:38 - 2014-11-22 11:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-01-24 20:44 - 2015-01-24 20:49 - 00000000 ____D () C:\Users\Oli\Documents\Heroes of the Storm
2015-01-24 20:10 - 2015-01-24 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2015-01-24 19:56 - 2015-02-01 14:17 - 00000000 ____D () C:\Program Files (x86)\Heroes of the Storm
2015-01-24 19:49 - 2015-02-10 15:51 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\TS3Client
2015-01-24 19:49 - 2015-01-24 19:49 - 00001166 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-01-24 19:49 - 2015-01-24 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-01-24 19:49 - 2015-01-24 19:49 - 00000000 ____D () C:\Program Files (x86)\TeamSpeak 3 Client
2015-01-23 17:13 - 2015-01-23 17:14 - 00000000 ____D () C:\Users\Oli\AppData\Local\Ubisoft Game Launcher
2015-01-23 17:13 - 2015-01-23 17:13 - 00000000 ____D () C:\Users\Oli\AppData\Local\Supraball_Launcher
2015-01-23 16:47 - 2015-02-11 00:06 - 00000000 ____D () C:\ProgramData\Package Cache
2015-01-23 16:47 - 2015-01-23 16:47 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-01-23 16:47 - 2015-01-23 16:47 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supraball
2015-01-23 16:46 - 2015-01-23 16:46 - 00000000 ____D () C:\Program Files (x86)\Supraball
2015-01-21 15:48 - 2015-01-30 22:01 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Curse Client
2015-01-21 15:48 - 2015-01-21 15:48 - 00001014 _____ () C:\Users\Oli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2015-01-21 15:48 - 2015-01-21 15:48 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Curse
2015-01-20 18:06 - 2015-01-20 18:06 - 00155912 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2015-01-20 18:06 - 2015-01-20 18:06 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2015-01-20 18:06 - 2015-01-20 18:06 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll
2015-01-17 13:43 - 2015-01-27 22:43 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox.bak
2015-01-17 12:24 - 2015-01-17 12:24 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Awesomium
2015-01-17 12:23 - 2015-01-30 18:02 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2015-01-17 12:23 - 2015-01-30 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-01-17 12:23 - 2015-01-17 12:23 - 00000000 ____D () C:\Program Files (x86)\Hi-Rez Studios
2015-01-13 21:06 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-13 21:05 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-13 21:05 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-13 21:05 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-13 21:05 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-13 21:05 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-13 21:05 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-13 21:05 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-13 21:05 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-13 21:05 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-13 21:05 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-13 21:05 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-13 21:05 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-11 16:57 - 2014-12-27 03:06 - 00000000 ____D () C:\FRST
2015-02-11 16:57 - 2014-10-21 14:57 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Skype
2015-02-11 16:55 - 2014-12-27 03:04 - 00000574 _____ () C:\Users\Oli\defogger_reenable
2015-02-11 16:52 - 2014-12-27 03:29 - 01981803 ____N () C:\Windows\WindowsUpdate.log
2015-02-11 16:49 - 2009-07-14 05:45 - 00018512 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-11 16:49 - 2009-07-14 05:45 - 00018512 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-11 16:47 - 2014-10-21 23:24 - 00699544 _____ () C:\Windows\system32\perfh007.dat
2015-02-11 16:47 - 2014-10-21 23:24 - 00149426 _____ () C:\Windows\system32\perfc007.dat
2015-02-11 16:47 - 2009-07-14 06:13 - 01620900 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-11 16:41 - 2014-10-21 13:36 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-11 16:41 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-11 16:35 - 2014-12-27 03:49 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-11 16:30 - 2014-10-25 02:38 - 00000382 _____ () C:\Windows\Tasks\Acer Registration - Reminder Recall task.job
2015-02-11 16:26 - 2014-11-17 17:32 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-11 00:06 - 2014-12-22 23:13 - 00000000 ____D () C:\Users\Oli\Desktop\bild
2015-02-11 00:00 - 2014-10-25 02:38 - 00003446 _____ () C:\Windows\System32\Tasks\Acer Registration - Reminder Recall task
2015-02-10 23:24 - 2014-11-17 17:43 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-02-10 16:24 - 2014-10-21 15:04 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Riot Games
2015-02-10 16:11 - 2014-12-27 03:48 - 00000000 ____D () C:\Users\Oli\AppData\Local\Adobe
2015-02-10 16:11 - 2014-10-21 14:48 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\Adobe
2015-02-10 15:51 - 2014-12-19 20:07 - 00000000 ____D () C:\Users\Oli\AppData\Roaming\DAEMON Tools Lite
2015-02-10 15:11 - 2010-10-27 12:36 - 00000000 ___HD () C:\OEM
2015-02-10 15:11 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-10 15:11 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-10 15:11 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-10 15:11 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-10 13:52 - 2014-10-21 13:33 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-02-10 12:01 - 2014-12-25 23:15 - 00000000 ____D () C:\Program Files (x86)\OppTOOn
2015-02-10 12:01 - 2014-12-09 21:44 - 00000000 ____D () C:\Program Files (x86)\BuyNsaave
2015-02-10 11:38 - 2014-12-25 23:25 - 00000000 ____D () C:\Program Files (x86)\OOptOone
2015-02-10 11:38 - 2014-12-23 17:05 - 00000000 ____D () C:\ProgramData\50Coupons
2015-02-10 11:38 - 2014-12-16 16:24 - 00000000 ____D () C:\ProgramData\ExstraSavings
2015-02-10 11:38 - 2014-12-09 21:44 - 00000000 ____D () C:\Program Files (x86)\YOutubeeAddBLLoeckeo
2015-02-10 11:38 - 2014-12-09 21:44 - 00000000 ____D () C:\Program Files (x86)\BuyNsoaVe
2015-02-09 21:49 - 2014-11-16 14:25 - 00000000 ____D () C:\Users\Oli\AppData\Local\osu!
2015-02-05 19:35 - 2014-12-27 03:49 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 19:35 - 2014-12-27 03:49 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-05 19:35 - 2014-12-27 03:49 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-02-02 02:54 - 2014-10-24 22:46 - 00000000 ____D () C:\Users\Oli\AppData\Local\Battle.net
2015-02-01 16:14 - 2015-01-08 20:33 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-02-01 16:14 - 2015-01-08 20:33 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-01-30 18:02 - 2014-11-17 18:00 - 00000000 ____D () C:\Users\Oli\Documents\My Games
2015-01-30 17:23 - 2014-12-09 21:40 - 00041784 _____ (AVG Technologies) C:\Windows\system32\TURegOpt.exe
2015-01-30 17:22 - 2014-12-19 20:22 - 00044856 _____ (AVG Technologies) C:\Windows\system32\uxtuneup.dll
2015-01-30 17:22 - 2014-12-19 20:22 - 00036664 _____ (AVG Technologies) C:\Windows\SysWOW64\uxtuneup.dll
2015-01-30 17:22 - 2014-12-09 21:40 - 00030520 _____ (AVG Technologies) C:\Windows\system32\authuitu.dll
2015-01-30 17:22 - 2014-12-09 21:40 - 00025912 _____ (AVG Technologies) C:\Windows\SysWOW64\authuitu.dll
2015-01-30 11:27 - 2014-10-24 22:47 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2015-01-30 10:13 - 2014-12-27 22:30 - 00002956 _____ () C:\Windows\System32\Tasks\{5EF27505-84C7-497F-AB42-F55A6A936F07}
2015-01-28 15:24 - 2014-12-27 04:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-27 05:36 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2015-01-26 23:05 - 2014-11-22 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-01-26 22:34 - 2014-11-02 00:29 - 00000000 ____D () C:\Program Files (x86)\MicroVolts
2015-01-24 23:45 - 2014-10-21 13:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-24 23:45 - 2014-10-21 13:32 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-24 23:44 - 2014-10-21 13:32 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-24 20:44 - 2014-10-24 22:46 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2015-01-24 18:13 - 2009-07-14 06:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-01-22 17:23 - 2014-11-09 14:04 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2015-01-20 18:05 - 2014-12-27 04:18 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2015-01-20 18:05 - 2014-12-27 03:41 - 00084336 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll
2015-01-17 12:23 - 2010-10-27 12:00 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-14 20:51 - 2014-12-27 03:48 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 20:48 - 2014-12-27 03:48 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Files in the root of some directories =======
2014-12-27 02:59 - 2014-12-27 02:59 - 0000004 _____ () C:\Users\Oli\AppData\Roaming\appdataFr2.bin
2014-12-27 03:46 - 2014-12-27 03:46 - 0606612 _____ () C:\ProgramData\1419648067.bdinstall.bin
2014-10-21 13:53 - 2014-10-21 13:56 - 0017320 _____ () C:\ProgramData\ArcadeDeluxe5.log
2010-10-27 12:08 - 2010-03-02 23:59 - 0131984 _____ () C:\ProgramData\FullRemove.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-02-08 15:09
==================== End Of Log ============================
|
| Themen zu Windows 7: Computer gibt alle 30 Minuten ein Standbild mit lauten Tönen aus den Lautsprechern von sich. |
| acer aspire, bingbar, bitdefender 2015, bonjour, browser, computer, festplatte, firefox, flash player, frage, google, helper, home, hängen, installation, langsam, mozilla, realtek, registry, rundll, scan, software, starten, svchost.exe, teamspeak, trojaner, virus, windows, windows 7 64-bit |
Baum-Darstellung