Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
.scr Datei ausversehen heruntergeladen.

.scr Datei ausversehen heruntergeladen.


Plagegeister aller Art und deren Bekämpfung: .scr Datei ausversehen heruntergeladen.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 24.11.2015, 03:35   #1
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.


Hallo Zusammen,

Ich hab ausversehen eine Datei heruntergeladen, welche auf den Namen "img-1624.png.scr" hört. Ich die Datei nicht geöffnet, sondern gleich gelöscht.
Ich weiss nur nicht wie gefährlich so eine Datei sein kann. In einem älteren Forumbeitrag wurde der Betroffene angewiesen, einen FRST-Scan und TDSSKiller-Scan
durchzuführen. Nachfolgend werde ich die Ergebnisse dieser Scans posten, was könnt ihr daraus lesen? Ist mein Computer von einem Virus befallen? Falls ich bei der Ersellung
dieses Beitrages was Falsch gemacht habe - Entschuldigung.

Vielen Dank für euren Rat!

FRST.txt:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-11-2015
Ran by Nerdy By Nerds (administrator) on MATRIX (24-11-2015 02:38:08)
Running from C:\Users\Nerdy By Nerds\Desktop
Loaded Profiles: Nerdy By Nerds (Available Profiles: Jeremy J. Erb & Nerdy By Nerds)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\lpksetup.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Tanuki Software, Ltd.) C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Oracle Corporation) C:\Program Files (x86)\PS3 Media Server\jre64\bin\java.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-06] (Apple Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-07-08] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [uTorrent] => C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Voobly] => C:\Program Files (x86)\Voobly\voobly.exe [159744 2015-01-19] (Voobly)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\MountPoints2: {5d4390e4-1303-11e1-8728-806e6f6e6963} - D:\setup\rsrc\Autorun.exe
AppInit_DLLs: C:\PROGRA~3\WinSpeed\WINSPE~1.DLL => C:\ProgramData\WinSpeed\WinSpeed_x64.dll [4513280 2013-12-26] ()
AppInit_DLLs-x32: c:\progra~2\contin~1\sprote~1.dll => No File
AppInit_DLLs-x32:  c:\progra~3\winspeed\winspeed.dll => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
Startup: C:\Users\Jeremy J. Erb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-05-08]
ShortcutTarget: Curse.lnk -> C:\Users\Nerdy By Nerds\AppData\Roaming\Curse Client\Bin\Curse.exe (No File)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20C2A4C4-DFF1-4232-9CFC-010DD5A40F60}: [DhcpNameServer] 91.138.126.128 91.138.1.128
Tcpip\..\Interfaces\{6E745053-D0A6-4597-BEDD-2F3537336362}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA8B5644-3D53-487C-A063-F6BA6AAC75B7}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.simplespeedy.info/?l=1&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-13] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-13] (Oracle Corporation)
BHO-x32: Avira Savings Advisor BHO -> {A18A516C-AA41-46A9-92DB-60208917E442} -> C:\Program Files (x86)\avira\Internet Explorer\avira32.dll [2013-12-11] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll [No File]
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Extension: Greasemonkey - C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]

Chrome: 
=======
CHR Profile: C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-29]
CHR Extension: (Google Drive) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
CHR Extension: (Google-Suche) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Docs Offline) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-29]
CHR Extension: (Google Mail) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-29]
CHR HKLM-x32\...\Chrome\Extension: [cojnmaaohncijldefpkpkkakjonfmgeb] - C:\Program Files (x86)\avira\Chrome\avira-1.5.14.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [45056 2013-01-31] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3645432 2014-07-18] (devolo AG)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2010-11-22] (Nalpeiron Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-31] ()
R2 PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [384280 2012-11-27] (Tanuki Software, Ltd.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2014-11-04] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R1 archlp; C:\Windows\SysWow64\drivers\archlp.sys [161792 2009-02-06] ()
S1 Aspi32; no ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-02-19] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ElgatoGC656Y; C:\Windows\System32\Drivers\ElgatoGC656.sys [94440 2014-07-07] (UB658)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-10-13] ()
S3 hcwhdpvr; C:\Windows\System32\DRIVERS\hcwhdpvr.sys [189952 2010-06-23] (Hauppauge, Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-02] (Logitech Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52320 2013-08-07] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27816 2014-12-30] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [33448 2014-08-21] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-24 02:38 - 2015-11-24 02:39 - 00027949 _____ C:\Users\Nerdy By Nerds\Desktop\FRST.txt
2015-11-24 02:37 - 2015-11-24 02:38 - 00000000 ____D C:\FRST
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Downloads\FRST64.exe
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Downloads\tdsskiller.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
2015-11-23 22:43 - 2015-11-23 22:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\LocalLow\uTorrent
2015-11-18 19:22 - 2015-11-18 19:22 - 01107319 _____ C:\Users\Nerdy By Nerds\Downloads\ER Dokumente.zip
2015-11-18 02:02 - 2015-11-18 02:02 - 00135972 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e07.720p.hdtv.x264.killers.rartv.torrent
2015-11-17 19:09 - 2015-11-17 19:09 - 00046320 _____ C:\Users\Nerdy By Nerds\Desktop\test.mmmacro
2015-11-17 18:44 - 2015-11-17 18:44 - 00757560 _____ (Jitbit Software ) C:\Users\Nerdy By Nerds\Downloads\MacroRecorderSetup.exe
2015-11-17 18:44 - 2015-11-17 18:44 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macro Recorder
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2015-11-17 17:58 - 2015-11-17 17:58 - 00844200 _____ (MurGee Softwares ) C:\Users\Nerdy By Nerds\Downloads\setup.exe
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Auto-Mouse-Clicker
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Mouse Clicker v4.0
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Program Files (x86)\Auto Mouse Clicker v4.0
2015-11-15 18:52 - 2015-11-15 18:52 - 00004544 _____ C:\Users\Nerdy By Nerds\Desktop\New Journal Document.jnt
2015-11-15 18:52 - 2015-11-15 18:52 - 00000000 _____ C:\Users\Nerdy By Nerds\Desktop\New Text Document.txt
2015-11-13 20:34 - 2015-11-13 20:34 - 00011237 _____ C:\Users\Nerdy By Nerds\Downloads\helsinki.zip
2015-11-12 22:56 - 2015-11-12 22:56 - 29302298 _____ C:\Users\Nerdy By Nerds\Downloads\KiesMac_2.0.0.13023_10_1.dmg
2015-11-10 23:40 - 2015-11-10 23:40 - 05286088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-09 17:10 - 2015-11-09 17:10 - 00133972 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e06.720p.hdtv.x264.killers.rartv.torrent
2015-11-09 17:09 - 2015-11-09 17:09 - 00133813 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.walking.dead.s06e05.720p.hdtv.x264.fleet.rartv.torrent
2015-11-08 20:27 - 2015-11-12 18:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 19:12 - 2015-11-08 19:12 - 00929872 _____ (Google Inc.) C:\Users\Nerdy By Nerds\Downloads\ChromeSetup.exe
2015-11-08 16:00 - 2015-11-08 16:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Flavio Fotos
2015-11-07 19:11 - 2015-11-07 19:11 - 00153765 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e05.720p.hdtv.x264.killers.rartv.torrent
2015-11-07 19:11 - 2015-11-07 19:11 - 00124773 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e04.720p.hdtv.x264.0sec.rartv.torrent
2015-11-07 19:10 - 2015-11-07 19:10 - 00141034 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e03.720p.hdtv.x264.fleet.rartv.torrent
2015-11-07 19:07 - 2015-11-07 19:07 - 00007277 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e01.hdtv.x264.killers.ettv (1).torrent
2015-11-07 19:03 - 2015-11-07 19:03 - 00007277 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e01.hdtv.x264.killers.ettv.torrent
2015-11-07 00:45 - 2015-11-07 00:45 - 00007201 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising (2).xml
2015-11-06 21:33 - 2015-11-06 21:33 - 00001832 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising (1).xml
2015-11-06 19:02 - 2015-11-06 19:02 - 00001692 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising.xml
2015-11-06 18:51 - 2015-11-22 18:33 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Empire Rising
2015-11-06 18:01 - 2015-11-06 19:10 - 352186801 ____N C:\Users\Nerdy By Nerds\Desktop\MVI_1036.MOV
2015-11-05 00:10 - 2015-11-05 00:10 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-05 00:09 - 2015-11-05 00:09 - 28849904 _____ C:\Users\Nerdy By Nerds\Downloads\vlc-2.2.1-win32.exe
2015-11-05 00:09 - 2015-11-05 00:09 - 00000000 ____D C:\Program Files (x86)\New folder
2015-10-30 22:09 - 2015-10-30 22:09 - 00737117 _____ C:\Users\Nerdy By Nerds\Downloads\DarkCode_final.ts3_style
2015-10-29 08:01 - 2015-10-29 08:01 - 00143180 _____ C:\Users\Nerdy By Nerds\Downloads\The.Walking.Dead.S06E03.1080p.WEB-DL.Dual.Audio.Dublado.torrent
2015-10-28 23:39 - 2015-10-28 23:39 - 00141811 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.walking.dead.season.5.complete.1080p.web.dl.dd5.1.h.264.cyphanix.nl.en.subs.torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-24 02:38 - 2014-11-08 17:23 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Skype
2015-11-24 02:37 - 2015-01-05 00:33 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent
2015-11-24 02:25 - 2014-11-06 23:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\TS3Client
2015-11-24 02:25 - 2011-03-26 02:54 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-24 02:18 - 2011-05-23 00:15 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-24 02:12 - 2014-02-14 16:12 - 00000322 _____ C:\Windows\Tasks\Funmoods.job
2015-11-24 01:40 - 2013-03-10 23:43 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-24 01:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2015-11-23 22:55 - 2011-02-13 00:09 - 01266005 ____N C:\Windows\WindowsUpdate.log
2015-11-23 22:53 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-23 22:53 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-23 22:43 - 2011-11-20 00:24 - 00000144 _____ C:\service.log
2015-11-23 22:42 - 2014-04-07 19:33 - 00000000 ____D C:\ProgramData\PMS
2015-11-23 22:42 - 2011-05-23 00:15 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-23 22:41 - 2013-02-12 20:10 - 00000444 ____H C:\Windows\Tasks\schedule!1143840799.job
2015-11-23 22:41 - 2011-11-20 00:55 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-11-23 22:41 - 2011-02-13 13:06 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-23 22:41 - 2011-02-13 12:11 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-23 22:41 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-20 20:40 - 2015-09-26 22:14 - 00157696 _____ C:\Windows\ERUNT.exe
2015-11-19 17:07 - 2013-08-10 12:16 - 00737390 _____ C:\Windows\system32\perfh00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00735432 _____ C:\Windows\system32\perfh013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00675688 _____ C:\Windows\system32\perfh00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00473428 _____ C:\Windows\system32\perfh00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00384278 _____ C:\Windows\system32\perfh00D.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00171272 _____ C:\Windows\system32\perfc00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00158472 _____ C:\Windows\system32\perfc00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00153100 _____ C:\Windows\system32\perfc013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00101518 _____ C:\Windows\system32\perfc00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00084756 _____ C:\Windows\system32\perfc00D.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00731980 _____ C:\Windows\system32\perfh010.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00146844 _____ C:\Windows\system32\perfc010.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00737650 _____ C:\Windows\system32\perfh00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00470948 _____ C:\Windows\system32\perfh001.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00149578 _____ C:\Windows\system32\perfc00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00094770 _____ C:\Windows\system32\perfc001.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00697272 _____ C:\Windows\system32\perfh007.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00149240 _____ C:\Windows\system32\perfc007.dat
2015-11-19 17:07 - 2009-07-14 06:13 - 07620544 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 02:13 - 2014-11-06 19:19 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\vlc
2015-11-19 00:12 - 2014-11-07 21:22 - 00001456 _____ C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-11-17 19:19 - 2015-03-12 00:51 - 00000000 ____D C:\temp
2015-11-14 14:11 - 2009-07-14 05:45 - 05215112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 02:03 - 2014-11-06 20:08 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe
2015-11-13 23:17 - 2014-11-08 15:29 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Battle.net
2015-11-13 20:43 - 2014-11-08 22:03 - 00000132 _____ C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-11-13 20:34 - 2014-11-06 17:55 - 00165760 _____ C:\Users\Nerdy By Nerds\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-13 15:34 - 2014-01-24 15:17 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-11-13 15:27 - 2014-01-24 15:11 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-12 17:52 - 2015-05-16 01:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-10 23:40 - 2013-03-10 23:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 23:40 - 2013-03-10 23:43 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 23:40 - 2011-06-14 23:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-08 19:13 - 2011-05-23 00:15 - 00004122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-08 19:13 - 2011-05-23 00:15 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-06 21:20 - 2015-09-10 12:32 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Foto Familien Album
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieUserList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieSiteList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieBrowserModeList
2015-11-05 00:10 - 2011-02-13 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-30 12:58 - 2011-02-13 16:37 - 00000000 ____D C:\ProgramData\Skype
2015-10-29 21:06 - 2014-11-07 13:54 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Audacity
2015-10-26 00:51 - 2014-11-06 17:54 - 00000000 ____D C:\Users\Nerdy By Nerds

==================== Files in the root of some directories =======

2014-11-08 22:03 - 2015-11-13 20:43 - 0000132 _____ () C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-11-07 21:22 - 2015-11-19 00:12 - 0001456 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-12-17 05:48 - 2015-10-11 10:13 - 0007168 _____ () C:\Users\Nerdy By Nerds\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 21:44 - 2014-11-10 21:44 - 0007605 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Resmon.ResmonCfg
2013-08-25 21:49 - 2013-08-25 21:49 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-02-13 16:38 - 2011-02-13 16:38 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-08-17 17:30 - 2011-08-17 17:31 - 0000000 _____ () C:\ProgramData\Yes

Some files in TEMP:
====================
C:\Users\Jeremy J. Erb\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\avgnt.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptjafqk.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2250463518738937912.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2379732162636497944.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna3653581951061083711.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\swt-win32-3349.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-20 15:56

==================== End of FRST.txt ============================
--- --- ---

--- --- ---

 

Themen zu .scr Datei ausversehen heruntergeladen.
.scr datei, .scr trojaner, befallen, compu, computer, daraus, datei, dnsapi.dll, ergebnisse, euren, falsch, gefährlich, hallo zusammen, launch, namen, nicht, poste, posten, scans, virus, zusammen, ältere


« Chrome hat eine dauerhafte, sehr geringe Downloadgeschwindigkeit | Malwarebytes plötzlicher fund Trojan.Tagak gestern noch alles ok »


Ähnliche Themen: .scr Datei ausversehen heruntergeladen.


  1. .scr Datei heruntergeladen
    Plagegeister aller Art und deren Bekämpfung - 25.09.2015 (6)
  2. Windows 7: DHL-Email - Zip Datei heruntergeladen und geöffnet
    Log-Analyse und Auswertung - 11.06.2015 (26)
  3. DHL Trojaner - zib heruntergeladen und geöffnet - Datei ist verschwunden
    Log-Analyse und Auswertung - 30.04.2015 (13)
  4. Windows 7: Fake DHL Mail. Datei heruntergeladen und entpackt.
    Plagegeister aller Art und deren Bekämpfung - 24.03.2015 (15)
  5. Windows 8.1 - Paketankündigung_zu_Ihrer_Sendung_083747799393 - Zip Datei heruntergeladen
    Log-Analyse und Auswertung - 14.03.2015 (18)
  6. scr. Datei heruntergeladen, Link war als png. Datei angegeben
    Plagegeister aller Art und deren Bekämpfung - 05.01.2015 (3)
  7. Fake E-Mail mit anhang erhalten. Dummerweise (.zip) datei heruntergeladen aber nicht geöffnet.
    Plagegeister aller Art und deren Bekämpfung - 08.08.2014 (16)
  8. Anhang in einer Email geöffnet, Zip-Datei ausversehen ausgeführt, jetzt deutliche Leistungseinbußen, Trojaner
    Plagegeister aller Art und deren Bekämpfung - 24.07.2014 (13)
  9. Trojaner in Email als zip heruntergeladen, enthaltene Datei aber nicht ausgeführt - Infektion?
    Plagegeister aller Art und deren Bekämpfung - 05.07.2014 (3)
  10. Trojaner in Email als zip heruntergeladen, enthaltene Datei aber nicht ausgeführt - Infektion?
    Plagegeister aller Art und deren Bekämpfung - 06.06.2014 (4)
  11. exe Datei heruntergeladen, nicht aufgestarten, nicht löschbar
    Plagegeister aller Art und deren Bekämpfung - 04.12.2013 (1)
  12. Mahnung mit Zip- Datei heruntergeladen und geöffnet
    Log-Analyse und Auswertung - 30.08.2013 (13)
  13. Mahnung mit Zip- Datei heruntergeladen und geöffnet
    Mülltonne - 25.08.2013 (2)
  14. Mahnung Zip Datei heruntergeladen und geöffnet
    Plagegeister aller Art und deren Bekämpfung - 24.08.2013 (7)
  15. Mahnung Zip Datei heruntergeladen und geöffnet - möglicher Befall
    Plagegeister aller Art und deren Bekämpfung - 23.08.2013 (11)
  16. Ausversehen unbekannte Malware geöffnet
    Plagegeister aller Art und deren Bekämpfung - 20.03.2013 (20)
  17. Trojaner Virenmeldung WIN32/Bublik.B, ich habe ausversehen die Mail mit einer ZIP-Datei geöffnet.
    Log-Analyse und Auswertung - 25.02.2013 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema .scr Datei ausversehen heruntergeladen. - Hallo Zusammen, Ich hab ausversehen eine Datei heruntergeladen, welche auf den Namen "img-1624.png.scr" hört. Ich die Datei nicht geöffnet, sondern gleich gelöscht. Ich weiss nur nicht wie gefährlich so eine - .scr Datei ausversehen heruntergeladen....
Archiv
Du betrachtest: .scr Datei ausversehen heruntergeladen. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131