Der Computer gibt einen lauten Piepton von sich während er hochfährt und brauch total lange um hochzufahren.
Kann das ein Trojaner sein?
FRST Logfile:
Code:
Alles auswählen Aufklappen ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-01-2014
Ran by User (administrator) on USER-PC on 25-01-2014 06:14:27
Running from C:\Users\User\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuardBhvScanner.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuard.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuardScanner.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuardUpdate.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [BullGuard] - C:\Program Files\BullGuard Ltd\BullGuard Antivirus\bullguard.exe [1810272 2012-11-26] (BullGuard Ltd.)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM-x32\...\Run: [BiosNotice] - C:\Program Files (x86)\BIOSTAR\BiosNotice\BiosNotice.exe [1003008 2010-10-13] ()
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IndexSearch] - C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] - C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] - C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe [328992 2010-02-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] - C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] - C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] - C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2010-10-28] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-19] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
MountPoints2: {49a955c9-0537-11e1-b2aa-806e6f6e6963} - D:\setup.exe
MountPoints2: {613fbd11-1738-11e1-9fee-003067ca5bd7} - K:\LaunchU3.exe -a
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x9CC674BC6A5DCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 05 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 06 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 07 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 08 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 09 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 10 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9 21 C:\Windows\SysWOW64\BGLsp.dll [54624] (BullGuard Ltd.)
Winsock: Catalog9-x64 01 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 02 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 03 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 04 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 05 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 06 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 07 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 08 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 09 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 10 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Winsock: Catalog9-x64 21 C:\Windows\system32\BGLsp.dll [63840] (BullGuard Ltd.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\r78m8omn.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKCU\...\Thunderbird\Extensions: [{0E810812-F4BB-4309-942A-755587587A5E}] - C:\Program Files\BullGuard Ltd\BullGuard Antivirus\Files32\Spamfilter\TbSpamfilter
FF Extension: BullGuard Spamfilter - C:\Program Files\BullGuard Ltd\BullGuard Antivirus\Files32\Spamfilter\TbSpamfilter [2011-11-25]
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-25]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-25]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-25]
CHR Extension: (Google-Suche) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-25]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-25]
CHR Extension: (Google Mail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-25]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-28] (Avira Operations GmbH & Co. KG)
R2 BsBhvScan; C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuardBhvScanner.exe [368480 2012-08-24] (BullGuard Ltd.)
R2 BsFileScan; C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BsFileScan.dll [274784 2012-08-24] (BullGuard Ltd.)
R2 BsMailProxy; C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BsMailProxy\BsMailProxy.dll [515424 2012-11-26] (BullGuard Ltd.)
R2 BsMain; C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BsMain.dll [285536 2012-11-26] (BullGuard Ltd.)
R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuardScanner.exe [201056 2012-08-24] (BullGuard Ltd.)
R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard Antivirus\BullGuardUpdate.exe [382304 2013-02-25] (BullGuard Ltd.)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-28] (Avira Operations GmbH & Co. KG)
R1 BdSpy; C:\Windows\System32\DRIVERS\BdSpy.sys [66272 2011-11-25] (BullGuard Ltd.)
R1 BIOS; C:\Windows\system32\drivers\BIOS64.sys [14136 2009-07-15] (BIOSTAR Group)
R1 BIOS; C:\Windows\SysWOW64\drivers\BIOS64.sys [14136 2009-07-15] (BIOSTAR Group)
R1 BS_I2cIo; C:\Windows\system32\drivers\BS_I2c64.sys [15408 2010-05-17] (BIOSTAR Group)
R1 NovaShieldFilterDriver; C:\Windows\System32\DRIVERS\NSKernel.sys [256072 2012-04-28] (NovaShield, Inc.)
R1 NovaShieldTDIDriver; C:\Windows\System32\DRIVERS\NSNetmon.sys [25160 2012-04-28] (NovaShield, Inc.)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [848384 2011-02-11] (Realtek Semiconductor Corporation )
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [290376 2012-04-28] (BitDefender S.R.L.)
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-25 06:13 - 2014-01-25 06:14 - 00014229 _____ C:\Users\User\Downloads\FRST.txt
2014-01-25 06:07 - 2014-01-25 06:07 - 00000000 ____D C:\FRST
2014-01-25 06:06 - 2014-01-25 06:07 - 02077696 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-01-25 06:06 - 2014-01-25 06:06 - 00000512 _____ C:\Windows\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2014-01-24 08:20 - 2014-01-25 06:03 - 00000224 _____ C:\Windows\setupact.log
2014-01-24 08:20 - 2014-01-24 08:20 - 00000000 _____ C:\Windows\setuperr.log
2014-01-16 10:52 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-16 10:52 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-16 10:52 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-16 10:52 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-16 10:52 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-16 10:52 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-16 10:52 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-16 10:52 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-16 10:52 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
==================== One Month Modified Files and Folders =======
2014-01-25 06:14 - 2014-01-25 06:13 - 00014229 _____ C:\Users\User\Downloads\FRST.txt
2014-01-25 06:14 - 2011-11-25 09:53 - 00000000 ____D C:\ProgramData\BullGuard
2014-01-25 06:12 - 2009-07-14 05:45 - 00021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-25 06:12 - 2009-07-14 05:45 - 00021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-25 06:09 - 2011-04-12 08:43 - 00656044 _____ C:\Windows\system32\perfh007.dat
2014-01-25 06:09 - 2011-04-12 08:43 - 00130676 _____ C:\Windows\system32\perfc007.dat
2014-01-25 06:09 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-25 06:08 - 2011-11-02 10:47 - 01732061 _____ C:\Windows\WindowsUpdate.log
2014-01-25 06:07 - 2014-01-25 06:07 - 00000000 ____D C:\FRST
2014-01-25 06:07 - 2014-01-25 06:06 - 02077696 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-01-25 06:06 - 2014-01-25 06:06 - 00000512 _____ C:\Windows\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2014-01-25 06:03 - 2014-01-24 08:20 - 00000224 _____ C:\Windows\setupact.log
2014-01-25 06:03 - 2013-10-25 08:30 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-25 06:03 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-25 05:40 - 2013-10-25 08:30 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-24 20:31 - 2012-03-28 09:34 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-24 08:20 - 2014-01-24 08:20 - 00000000 _____ C:\Windows\setuperr.log
2014-01-21 08:08 - 2012-03-28 09:34 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-21 08:08 - 2012-03-28 09:34 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-21 08:08 - 2011-11-25 11:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-21 08:08 - 2011-11-03 08:28 - 00000000 ____D C:\Users\User\AppData\Local\Adobe
2014-01-17 18:15 - 2009-07-14 05:45 - 00301256 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-16 11:47 - 2013-10-25 08:33 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-16 10:53 - 2013-08-15 11:39 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 10:49 - 2011-11-03 08:18 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-06 13:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-01 14:23 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-30 11:05 - 2013-11-18 09:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\avgnt.exe
C:\Users\User\AppData\Local\Temp\_is192B.exe
C:\Users\User\AppData\Local\Temp\_isAAEF.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-20 15:37
==================== End Of Log ============================
--- --- ---