Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Dieses Programm wurde durch Gruppenrechtlinien blockiert..... (https://www.trojaner-board.de/157958-programm-wurde-gruppenrechtlinien-blockiert.html)

polybeer 24.08.2014 21:06
Dieses Programm wurde durch Gruppenrechtlinien blockiert.....
 
Hallo,
ich bin neu auf diesem Forum, da ich umbedingt Eure Hilfe benötige, da ich ziemlich am frustrieren...Also beschreibe einfach mal mein Problem. Habe versucht mein Virusschutzprogramm zu starten ,, AVG´´, und dann kam folgende Nachricht: Dieses Programm wurde durch eine Gruppenrichtlinie blockiert. Weitere Informationen erhalten Sie vom Systemadminstrator. Desweiteren kommen noch andere folgende Probleme auf. Zum Beispiel beim Neustart erscheint sofort diese Nachricht von RegSvr32: Fehler beim Laden des Moduls ´´C:/ProgramData/OqboRinoj/OqboRinoj.dat´´ Stellen SIe sicher , dass die Binärdatei am angegeben Pfad gespeichert ist, oder debuggen Sie die Datei, um Probleme mit der binären Datei oder abhängigen DLL-Dateien auszuschließen. Unzulässiger Zugriff auf einen Speicherbereich. Desweiteren ist seit dem Zeitraum, ebenfalls mein Internet sehr langsam- heißt ich habe einen andauernden hohen Ping bei Spielen und mein PC empfängt manchmal kein Internet- obwohl steht das ich Internetzugriff habe. Auf meinem zweitem Rechner ist es nicht so. Ich weiß nicht ob es helfen kann...aber das ist alels was ich verfolgen konnte und hoffe auf eine schnelle Antwort.

MfG polybeer

schrauber 24.08.2014 21:12
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


polybeer 24.08.2014 21:22
Hi,

also hier erstmal die FRST.txt:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2014 03
Ran by Filip (administrator) on FILIP-PC on 24-08-2014 22:19:08
Running from C:\Users\Filip\Downloads
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Meskisift Corporatien) C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Program Files (x86)\LPT\srpts.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Smartbar) C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Meskisift Corporatien) C:\Windows\SysWOW64\ydxaviicki.exe
() C:\Program Files (x86)\LPT\srptsl.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
() C:\Users\Filip\AppData\Local\LPT\srptm.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.215\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.104\deploy\LolClient.exe
(Meskisift Corporatien) C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe
(Meskisift Corporatien) C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe
(Meskisift Corporatien) C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe
(Meskisift Corporatien) C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Meskisift Corporatien) C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Filip\AppData\Local\Smartbar\Application\Lrcnta.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13651672 2013-09-03] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Daxey] => C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe [305175 2014-08-18] (Meskisift Corporatien)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2640408 2014-08-12] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [191528 2014-07-04] (Geek Software GmbH)
HKLM-x32\...\Run: [Daxey] => C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe [305175 2014-08-18] (Meskisift Corporatien)
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\Run: [Spotify Web Helper] => C:\Users\Filip\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1178168 2014-07-17] (Spotify Ltd)
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\Run: [OqboRinoj] => regsvr32.exe "C:\ProgramData\OqboRinoj\OqboRinoj.dat"
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\Run: [Browser Infrastructure Helper] => C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.exe [28968 2014-07-21] (Smartbar)
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\Run: [AbohrUmowe] => regsvr32.exe "C:\ProgramData\AbohrUmowe\AbohrUmowe.dat"
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\Run: [Daxey] => C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe [305175 2014-08-18] (Meskisift Corporatien)
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\MountPoints2: E - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\MountPoints2: {077fdbf0-cb57-11e3-a943-806e6f6e6963} - "D:\Install Navigator.exe"
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\MountPoints2: {3b05ed79-cb3b-11e3-914f-74d435188725} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\MountPoints2: {478549e5-cb31-11e3-9a30-ec66f57956cc} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-914060979-1334188566-253463880-1000\...\MountPoints2: {a355cf39-cb3d-11e3-924f-0e041371762b} - H:\SETUP.EXE
Startup: C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Magician.lnk
ShortcutTarget: Samsung Magician.lnk -> C:\Program Files (x86)\Samsung Magician\Samsung Magician.exe (Samsung Electronics.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb-C6ebmx5Q600Vjt3TstjQ9se2bJr_9mWIK_FV8OgnE0iA8NdsmtPBjS0DtDiOBofrTz4dGvRAJdVPsndCYYyGcX4WWJWOkk-oQPUPXkYZdLu35Gd6tDLMK-BiPqXr1G_ZZlF6JeR5LRbAzyxva3hML3w-aDEl5w,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb-C6ebmx5Q600Vjt3TstjQ9se2bJr_9mWIK_FV8OgnE0iA8NdsmtPBjS0DtDiOBofndobo8WynPmNmq3jAP_XdeiCJTOG-1ezg0Ecp0im41D4i1D3hd9ZFXXXZKyP5LTZjeKy-4KMkk8RlE9w4BbDt-9A9rIRbhA,,
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb-C6ebmx5Q600Vjt3TstjQ9se2bJr_9mWIK_FV8OgnE0iA8NdsmtPBjS0DtDiOBofrTz4dGvRAJdVPsndCYYyGcX4WWJWOkk-oQPUPXkYZdLu35Gd6tDLMK-BiPqXr1G_ZZlF6JeR5LRbAzyxva3hML3w-aDEl5w,,&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb-C6ebmx5Q600Vjt3TstjQ9se2bJr_9mWIK_FV8OgnE0iA8NdsmtPBjS0DtDiOBofrTz4dGvRAJdVPsndCYYyGcX4WWJWOkk-oQPUPXkYZdLu35Gd6tDLMK-BiPqXr1G_ZZlF6JeR5LRbAzyxva3hML3w-aDEl5w,,&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb-C6ebmx5Q600Vjt3TstjQ9se2bJr_9mWIK_FV8OgnE0iA8NdsmtPBjS0DtDiOBofrTz4dGvRAJdVPsndCYYyGcX4WWJWOkk-oQPUPXkYZdLu35Gd6tDLMK-BiPqXr1G_ZZlF6JeR5LRbAzyxva3hML3w-aDEl5w,,&q={searchTerms}
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb-C6ebmx5Q600Vjt3TstjQ9se2bJr_9mWIK_FV8OgnE0iA8NdsmtPBjS0DtDiOBofrTz4dGvRAJdVPsndCYYyGcX4WWJWOkk-oQPUPXkYZdLu35Gd6tDLMK-BiPqXr1G_ZZlF6JeR5LRbAzyxva3hML3w-aDEl5w,,&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StMBGUhCtXlT7G1muS_BRDXuH_N6QVFdlkuDDcdAb-C6ebmx5Q600Vjt3TstjQ9se2bJr_9mWIK_FV8OgnE0iA8NdsmtPBjS0DtDiOBofrTz4dGvRAJdVPsndCYYyGcX4WWJWOkk-oQPUPXkYZdLu35Gd6tDLMK-BiPqXr1G_ZZlF6JeR5LRbAzyxva3hML3w-aDEl5w,,&q={searchTerms}
BHO: Yahoo Community Smartbar (by Linkury)Engine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO-x32: Yahoo Community Smartbar (by Linkury)Engine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: AVG SafeGuard toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.9.786\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.9.786\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Toolbar: HKLM-x32 - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll (AVG Secure Search)

FireFox:
========
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.9\\npsitesafety.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

Chrome:
=======
CHR Extension: (Skype Click to Call) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-04-24]
CHR Extension: (Google Wallet) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-24]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1473792 2014-05-13] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [345984 2014-07-03] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-16] (LogMeIn, Inc.)
R2 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [34088 2014-07-21] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-10] ()
R2 SecurityCenterServer1108173335; C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe [305175 2014-08-18] (Meskisift Corporatien) [File not signed]
R2 vToolbarUpdater18.1.9; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [1820184 2014-08-12] (AVG Secure Search)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [236312 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [191768 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [323352 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130328 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [273176 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-12] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-04-24] (Disc Soft Ltd)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 Lycosa; C:\Windows\System32\drivers\Lycosa.sys [18816 2008-01-17] (Razer USA Ltd.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 rzp1endpt; C:\Windows\System32\DRIVERS\rzp1endpt.sys [39080 2013-11-15] (Razer Inc)
S3 rzvmouse; C:\Windows\System32\DRIVERS\rzvmouse.sys [30888 2013-11-15] (Razer Inc)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-01-15] (Anchorfree Inc.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21584 2013-05-06] ()
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 22:19 - 2014-08-24 22:19 - 00023078 _____ () C:\Users\Filip\Downloads\FRST.txt
2014-08-24 22:19 - 2014-08-24 22:19 - 00000000 ____D () C:\FRST
2014-08-24 22:18 - 2014-08-24 22:18 - 02103296 _____ (Farbar) C:\Users\Filip\Downloads\FRST64.exe
2014-08-24 22:18 - 2014-08-24 22:18 - 01095168 _____ (Farbar) C:\Users\Filip\Downloads\FRST.exe
2014-08-24 20:52 - 2014-08-24 20:52 - 00000000 ___HD () C:\ProgramData\{9A88E103-A20A-4EA5-8636-C73B709A5BF8}
2014-08-24 20:11 - 2014-08-24 20:11 - 00000000 ____D () C:\ProgramData\Windows Genuine Advantage
2014-08-24 20:11 - 2014-08-24 20:11 - 00000000 ____D () C:\ProgramData\AbohrUmowe
2014-08-24 15:43 - 2014-08-24 15:43 - 00000218 _____ () C:\Users\Filip\Desktop\Half-Life.url
2014-08-24 10:44 - 2014-08-24 10:44 - 00139488 _____ () C:\Windows\SysWOW64\XMLOperations.xml
2014-08-23 15:18 - 2014-08-23 15:18 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-08-23 15:18 - 2014-08-23 15:18 - 00000000 ____D () C:\Users\Filip\AppData\Local\TuneUp Software
2014-08-23 15:18 - 2014-08-23 15:18 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-08-23 15:16 - 2014-08-23 15:16 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-08-23 15:15 - 2014-08-23 15:15 - 00002677 _____ () C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-08-23 15:15 - 2014-08-23 15:15 - 00000000 ____D () C:\Users\Filip\AppData\Local\Smartbar
2014-08-23 15:15 - 2014-08-23 15:15 - 00000000 ____D () C:\Users\Filip\AppData\Local\LPT
2014-08-23 15:13 - 2014-08-23 15:13 - 00001088 _____ () C:\Users\Filip\Desktop\Cheat Engine.lnk
2014-08-23 15:13 - 2014-08-23 15:13 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\OpenCandy
2014-08-23 15:13 - 2014-08-23 15:13 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2014-08-23 15:12 - 2014-08-23 15:12 - 00389606 _____ () C:\Users\Filip\Downloads\Wrath of the Lamb Version 1.48 (CT Version 1.0 Final).CT
2014-08-23 15:11 - 2014-08-23 15:13 - 09052192 _____ (Cheat Engine ) C:\Users\Filip\Downloads\CheatEngine64.exe
2014-08-23 12:26 - 2014-08-23 12:26 - 00000508 _____ () C:\Users\Filip\Downloads\importieren.bin
2014-08-19 11:55 - 2014-08-19 11:55 - 02764855 _____ (Blizzard Entertainment) C:\Users\Filip\Downloads\Downloader_Diablo2_enGB (2).exe
2014-08-19 11:46 - 2014-08-19 11:46 - 02764855 _____ (Blizzard Entertainment) C:\Users\Filip\Downloads\Downloader_Diablo2_enGB (1).exe
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-08-18 13:39 - 2014-08-24 22:00 - 00000804 _____ () C:\Windows\Tasks\Security Center Update - 1108173335.job
2014-08-18 13:39 - 2014-08-18 17:13 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\Ohiploos
2014-08-18 13:39 - 2014-08-18 13:39 - 00003816 _____ () C:\Windows\System32\Tasks\Security Center Update - 1108173335
2014-08-18 13:39 - 2014-07-20 13:24 - 00305175 _____ (Meskisift Corporatien) C:\Windows\SysWOW64\ydxaviicki.exe
2014-08-18 13:32 - 2014-08-18 13:32 - 00000000 ____D () C:\ProgramData\OqboRinoj
2014-08-16 14:55 - 2014-08-16 14:55 - 00300920 _____ () C:\Users\Filip\Downloads\setup (3).exe
2014-08-16 14:29 - 2014-08-16 14:29 - 00300920 _____ () C:\Users\Filip\Downloads\setup (2).exe
2014-08-16 14:19 - 2014-08-16 14:19 - 00300920 _____ () C:\Users\Filip\Downloads\setup (1).exe
2014-08-16 13:29 - 2014-08-16 13:29 - 00300920 _____ () C:\Users\Filip\Downloads\setup.exe
2014-08-14 13:26 - 2014-08-14 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-08-14 13:26 - 2014-08-14 13:26 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-08-14 13:26 - 2009-03-18 18:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2014-08-12 17:09 - 2014-08-12 17:09 - 02764856 _____ (Blizzard Entertainment) C:\Users\Filip\Downloads\Downloader_Diablo2_enGB.exe
2014-08-06 00:12 - 2014-08-06 00:12 - 00741447 _____ () C:\Users\Filip\Downloads\8483.zip
2014-08-06 00:02 - 2014-08-06 00:02 - 00998178 _____ () C:\Users\Filip\Downloads\8313.zip
2014-08-05 23:59 - 2014-08-05 23:59 - 00696977 _____ () C:\Users\Filip\Downloads\8413.zip
2014-08-05 18:04 - 2014-08-05 18:06 - 37989726 _____ () C:\Users\Filip\Downloads\DropZone-Intro_FINAL2_25-07-2014_NEW.zip
2014-07-25 09:52 - 2014-08-04 18:52 - 00000000 ____D () C:\Users\Filip\AppData\Local\QQSM
2014-07-25 08:59 - 2014-07-25 08:59 - 00001034 _____ () C:\Users\Public\Desktop\Hazard Ops.lnk
2014-07-25 08:59 - 2014-07-25 08:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-25 08:54 - 2014-07-25 08:59 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 22:19 - 2014-08-24 22:19 - 00023078 _____ () C:\Users\Filip\Downloads\FRST.txt
2014-08-24 22:19 - 2014-08-24 22:19 - 00000000 ____D () C:\FRST
2014-08-24 22:19 - 2014-04-24 15:17 - 00000000 ____D () C:\Users\Filip\AppData\Local\PMB Files
2014-08-24 22:18 - 2014-08-24 22:18 - 02103296 _____ (Farbar) C:\Users\Filip\Downloads\FRST64.exe
2014-08-24 22:18 - 2014-08-24 22:18 - 01095168 _____ (Farbar) C:\Users\Filip\Downloads\FRST.exe
2014-08-24 22:15 - 2014-04-23 23:51 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-24 22:05 - 2009-07-14 06:45 - 00021248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-24 22:05 - 2009-07-14 06:45 - 00021248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-24 22:03 - 2011-04-12 09:43 - 00703596 _____ () C:\Windows\system32\perfh007.dat
2014-08-24 22:03 - 2011-04-12 09:43 - 00150734 _____ () C:\Windows\system32\perfc007.dat
2014-08-24 22:03 - 2009-07-14 07:13 - 01631126 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-24 22:00 - 2014-08-18 13:39 - 00000804 _____ () C:\Windows\Tasks\Security Center Update - 1108173335.job
2014-08-24 22:00 - 2014-04-23 22:31 - 01711767 _____ () C:\Windows\WindowsUpdate.log
2014-08-24 21:57 - 2014-05-31 00:09 - 00000000 ____D () C:\Users\Filip\AppData\Local\LogMeIn Hamachi
2014-08-24 21:57 - 2014-04-24 14:13 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-24 21:57 - 2014-04-23 23:51 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-24 21:57 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-24 21:57 - 2009-07-14 06:51 - 00121906 _____ () C:\Windows\setupact.log
2014-08-24 21:09 - 2014-04-24 16:04 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-24 21:08 - 2014-04-24 19:47 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\Spotify
2014-08-24 20:54 - 2014-04-24 20:02 - 00000000 ____D () C:\Users\Filip\AppData\Local\Spotify
2014-08-24 20:52 - 2014-08-24 20:52 - 00000000 ___HD () C:\ProgramData\{9A88E103-A20A-4EA5-8636-C73B709A5BF8}
2014-08-24 20:44 - 2014-04-24 13:57 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\Skype
2014-08-24 20:11 - 2014-08-24 20:11 - 00000000 ____D () C:\ProgramData\Windows Genuine Advantage
2014-08-24 20:11 - 2014-08-24 20:11 - 00000000 ____D () C:\ProgramData\AbohrUmowe
2014-08-24 20:09 - 2014-04-24 14:19 - 00000000 ____D () C:\Users\Filip\AppData\Local\Battle.net
2014-08-24 20:09 - 2014-04-24 13:57 - 00000000 ____D () C:\ProgramData\Skype
2014-08-24 19:13 - 2014-04-25 08:36 - 00000000 ____D () C:\Users\Filip\AppData\Local\AVG SafeGuard toolbar
2014-08-24 15:43 - 2014-08-24 15:43 - 00000218 _____ () C:\Users\Filip\Desktop\Half-Life.url
2014-08-24 10:49 - 2014-04-24 01:26 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-24 10:44 - 2014-08-24 10:44 - 00139488 _____ () C:\Windows\SysWOW64\XMLOperations.xml
2014-08-24 10:44 - 2010-11-21 05:47 - 00157512 _____ () C:\Windows\PFRO.log
2014-08-23 21:35 - 2014-04-24 15:17 - 00000000 ____D () C:\ProgramData\PMB Files
2014-08-23 18:22 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-23 15:18 - 2014-08-23 15:18 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-08-23 15:18 - 2014-08-23 15:18 - 00000000 ____D () C:\Users\Filip\AppData\Local\TuneUp Software
2014-08-23 15:18 - 2014-08-23 15:18 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-08-23 15:18 - 2014-04-24 01:27 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\TuneUp Software
2014-08-23 15:16 - 2014-08-23 15:16 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-08-23 15:15 - 2014-08-23 15:15 - 00002677 _____ () C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-08-23 15:15 - 2014-08-23 15:15 - 00000000 ____D () C:\Users\Filip\AppData\Local\Smartbar
2014-08-23 15:15 - 2014-08-23 15:15 - 00000000 ____D () C:\Users\Filip\AppData\Local\LPT
2014-08-23 15:13 - 2014-08-23 15:13 - 00001088 _____ () C:\Users\Filip\Desktop\Cheat Engine.lnk
2014-08-23 15:13 - 2014-08-23 15:13 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\OpenCandy
2014-08-23 15:13 - 2014-08-23 15:13 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2014-08-23 15:13 - 2014-08-23 15:11 - 09052192 _____ (Cheat Engine ) C:\Users\Filip\Downloads\CheatEngine64.exe
2014-08-23 15:12 - 2014-08-23 15:12 - 00389606 _____ () C:\Users\Filip\Downloads\Wrath of the Lamb Version 1.48 (CT Version 1.0 Final).CT
2014-08-23 12:26 - 2014-08-23 12:26 - 00000508 _____ () C:\Users\Filip\Downloads\importieren.bin
2014-08-22 18:28 - 2014-04-24 15:32 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-08-22 18:27 - 2014-04-30 17:56 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\TS3Client
2014-08-22 18:27 - 2014-04-24 14:19 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-08-19 11:55 - 2014-08-19 11:55 - 02764855 _____ (Blizzard Entertainment) C:\Users\Filip\Downloads\Downloader_Diablo2_enGB (2).exe
2014-08-19 11:46 - 2014-08-19 11:46 - 02764855 _____ (Blizzard Entertainment) C:\Users\Filip\Downloads\Downloader_Diablo2_enGB (1).exe
2014-08-18 17:13 - 2014-08-18 13:39 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\Ohiploos
2014-08-18 14:13 - 2014-08-18 14:13 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-08-18 13:39 - 2014-08-18 13:39 - 00003816 _____ () C:\Windows\System32\Tasks\Security Center Update - 1108173335
2014-08-18 13:32 - 2014-08-18 13:32 - 00000000 ____D () C:\ProgramData\OqboRinoj
2014-08-16 14:55 - 2014-08-16 14:55 - 00300920 _____ () C:\Users\Filip\Downloads\setup (3).exe
2014-08-16 14:29 - 2014-08-16 14:29 - 00300920 _____ () C:\Users\Filip\Downloads\setup (2).exe
2014-08-16 14:19 - 2014-08-16 14:19 - 00300920 _____ () C:\Users\Filip\Downloads\setup (1).exe
2014-08-16 14:18 - 2014-04-23 23:51 - 00002178 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-16 13:29 - 2014-08-16 13:29 - 00300920 _____ () C:\Users\Filip\Downloads\setup.exe
2014-08-14 13:26 - 2014-08-14 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-08-14 13:26 - 2014-08-14 13:26 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-08-14 13:26 - 2014-05-31 00:09 - 00000929 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-08-12 17:09 - 2014-08-12 17:09 - 02764856 _____ (Blizzard Entertainment) C:\Users\Filip\Downloads\Downloader_Diablo2_enGB.exe
2014-08-12 11:14 - 2014-04-25 08:36 - 00050976 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-08-12 11:14 - 2014-04-25 08:35 - 00000000 ____D () C:\Program Files (x86)\AVG SafeGuard toolbar
2014-08-11 22:42 - 2014-04-24 16:17 - 00000000 ____D () C:\ProgramData\Origin
2014-08-11 22:36 - 2014-04-24 16:17 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-08-10 22:56 - 2014-04-24 16:26 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\Origin
2014-08-10 22:54 - 2014-04-24 11:12 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-08-07 15:30 - 2014-04-24 19:44 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-08-07 15:29 - 2014-04-25 10:55 - 00000000 ____D () C:\Program Files (x86)\StarCraft II
2014-08-06 00:12 - 2014-08-06 00:12 - 00741447 _____ () C:\Users\Filip\Downloads\8483.zip
2014-08-06 00:02 - 2014-08-06 00:02 - 00998178 _____ () C:\Users\Filip\Downloads\8313.zip
2014-08-05 23:59 - 2014-08-05 23:59 - 00696977 _____ () C:\Users\Filip\Downloads\8413.zip
2014-08-05 18:06 - 2014-08-05 18:04 - 37989726 _____ () C:\Users\Filip\Downloads\DropZone-Intro_FINAL2_25-07-2014_NEW.zip
2014-08-04 18:52 - 2014-07-25 09:52 - 00000000 ____D () C:\Users\Filip\AppData\Local\QQSM
2014-07-28 18:54 - 2014-06-23 16:18 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\TeamViewer
2014-07-25 09:52 - 2014-07-24 21:57 - 00000000 ____D () C:\ProgramData\Solid State Networks
2014-07-25 08:59 - 2014-07-25 08:59 - 00001034 _____ () C:\Users\Public\Desktop\Hazard Ops.lnk
2014-07-25 08:59 - 2014-07-25 08:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hazard Ops
2014-07-25 08:59 - 2014-07-25 08:54 - 00000000 ____D () C:\Program Files (x86)\Hazard Ops

Files to move or delete:
====================
C:\Users\Filip\w7lxe.exe


Some content of TEMP:
====================
C:\Users\Filip\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Filip\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Filip\AppData\Local\Temp\fhyim.dll
C:\Users\Filip\AppData\Local\Temp\hnh.dll
C:\Users\Filip\AppData\Local\Temp\ICSharpCode.SharpZipLib.dll
C:\Users\Filip\AppData\Local\Temp\mwt.dll
C:\Users\Filip\AppData\Local\Temp\nsl545B.exe
C:\Users\Filip\AppData\Local\Temp\nsn6FF1.exe
C:\Users\Filip\AppData\Local\Temp\nsn8B14.exe
C:\Users\Filip\AppData\Local\Temp\nst7234.exe
C:\Users\Filip\AppData\Local\Temp\nst8875.exe
C:\Users\Filip\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Filip\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Filip\AppData\Local\Temp\SPSetup.exe
C:\Users\Filip\AppData\Local\Temp\tmpc1c7ff93.exe
C:\Users\Filip\AppData\Local\Temp\UpdateFlashPlayer_15ab5a2d.exe
C:\Users\Filip\AppData\Local\Temp\UpdateFlashPlayer_ae3efe8c.exe
C:\Users\Filip\AppData\Local\Temp\wcrash.exe
C:\Users\Filip\AppData\Local\Temp\YgoUpdater.exe
C:\Users\Filip\AppData\Local\Temp\yyog.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-17 11:44

==================== End Of Log ============================
--- --- ---


Und dann hier die Addition.txt:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-08-2014 03
Ran by Filip at 2014-08-24 22:19:28
Running from C:\Users\Filip\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Internet Security 2014 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2014 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2014 (Disabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4592 - AVG Technologies)
AVG 2014 (Version: 14.0.3955 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4592 - AVG Technologies) Hidden
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.1.9.786 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.2.0.2 - Electronic Arts)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version: - DICE)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version: - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version: - Infinity Ward)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{B3653588-3AC0-4A1D-950F-D96531E84374}) (Version: 0.92.91 - Dotjosh Studios)
Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version: - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Half-Life (HKLM-x32\...\Steam App 70) (Version: - Valve)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 0.2.0.2042 - Infernum Productions AG)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.227 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.227 - LogMeIn, Inc.) Hidden
LPT System Updater Service (x32 Version: 1.0.0.0 - LPT) Hidden <==== ATTENTION
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version: - DICE)
Nether (HKLM-x32\...\Steam App 247730) (Version: - Phosphor Games)
NVIDIA 3D Vision Controller-Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.154.1168 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
ON_OFF Charge 2 B13.0910.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B13.0910.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
PDF24 Creator 6.7.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7037 - Realtek Semiconductor Corp.)
Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.3.0 - Samsung Electronics)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.11.27.g2b1a638c - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29480 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Binding Of Isaac version 1.0 (HKLM-x32\...\{D11092F0-7475-4BD6-B50C-3D261FED052C}_is1) (Version: 1.0 - Headup Games)
The Forest (HKLM-x32\...\Steam App 242760) (Version: - Endnight Games Ltd)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED)
Uplay (HKLM-x32\...\Uplay) (Version: 4.5 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.10 beta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.3 - win.rar GmbH)
Yahoo Community Smartbar (HKLM-x32\...\{6818F6FB-6270-4DE8-9827-40E852111F2A}) (Version: 11.88.66.18547 - Linkury Inc.) <==== ATTENTION
Yahoo Community Smartbar Engine (HKCU\...\{2f8dafa0-6b49-4611-ba3d-62380c3367cf}) (Version: 11.88.66.18547 - Linkury Inc.) <==== ATTENTION
YGOPro DevPro (HKLM-x32\...\{F4C6C412-BBB1-4084-906B-F603DC3AB673}) (Version: 1.9.9 - DevPro)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

23-08-2014 13:34:21 TuneUp Utilities 2014 wird entfernt
23-08-2014 13:34:30 TuneUp Utilities 2014 (de-DE) wird entfernt

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {43E668E3-3252-4317-A484-F1FD262B7428} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-23] (Google Inc.)
Task: {61CF8096-6448-4A06-95ED-02AD6FE1D2DB} - System32\Tasks\Games\UpdateCheck_S-1-5-21-914060979-1334188566-253463880-1000
Task: {BD71537E-6910-47BF-B2A1-8A6AA5F1A332} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D5C63BB6-C3FC-4754-B46F-459CB166D609} - System32\Tasks\Security Center Update - 1108173335 => C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe [2014-08-18] (Meskisift Corporatien)
Task: {E03305B8-A6BA-4D26-B0A3-39AB2A2A949C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-23] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Security Center Update - 1108173335.job => C:\Users\Filip\AppData\Roaming\Ohiploos\pexag.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-04-24 14:13 - 2014-05-20 03:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-04-23 23:56 - 2013-09-13 18:04 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-07-21 14:28 - 2014-07-21 14:28 - 00034088 _____ () C:\Program Files (x86)\LPT\srpts.exe
2014-04-25 08:35 - 2014-08-12 11:14 - 02640408 _____ () C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2014-05-06 11:14 - 2014-06-10 12:37 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-07-21 14:28 - 2014-07-21 14:33 - 00035624 _____ () C:\Program Files (x86)\LPT\srptsl.exe
2014-07-21 14:33 - 2014-07-21 14:33 - 00023848 _____ () C:\Users\Filip\AppData\Local\LPT\srptm.exe
2014-08-12 11:14 - 2014-08-12 11:14 - 00159768 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe
2013-06-12 18:11 - 2014-04-24 15:18 - 01294336 _____ () C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
2014-04-24 15:17 - 2014-04-24 15:17 - 03089488 _____ () C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
2014-04-24 15:21 - 2014-08-16 13:25 - 05534200 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.215\deploy\LoLLauncher.exe
2014-04-24 16:52 - 2014-04-24 16:52 - 00074752 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.104\deploy\LolClient.exe
2014-07-21 14:32 - 2014-07-21 14:32 - 00024872 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Lrcnta.exe
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-07-21 14:28 - 2014-07-21 14:33 - 00043816 _____ () C:\Program Files (x86)\LPT\srptc.dll
2014-07-21 14:27 - 2014-07-21 14:32 - 00018216 _____ () C:\Program Files (x86)\LPT\Smartbar.Common.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00047400 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00071464 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\srau.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00166696 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 02344232 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00067880 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\spbl.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00159528 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00015144 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\siem.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00067880 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\sppsm.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00698152 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00015656 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00079656 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00027944 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00069928 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\srut.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00030504 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\srsbs.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00066344 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00151336 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\smti.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00032040 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\srom.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00032040 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\smtu.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00040232 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\smta.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00070440 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\smsp.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00046888 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\srbu.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00025384 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\sgml.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00062760 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00025896 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\srpdm.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00044328 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-07-21 14:28 - 2014-07-21 14:28 - 00025896 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00036648 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00256296 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\srns.dll
2014-08-12 11:14 - 2014-08-12 11:14 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\log4cplusU.dll
2014-07-21 14:28 - 2014-07-21 14:33 - 00069928 _____ () C:\Program Files (x86)\LPT\srut.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00083240 _____ () C:\Users\Filip\AppData\Local\LPT\srpt.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00043816 _____ () C:\Users\Filip\AppData\Local\LPT\srptc.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00018216 _____ () C:\Users\Filip\AppData\Local\LPT\Smartbar.Common.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00069928 _____ () C:\Users\Filip\AppData\Local\LPT\srut.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00067880 _____ () C:\Users\Filip\AppData\Local\LPT\sppsm.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00159528 _____ () C:\Users\Filip\AppData\Local\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00027944 _____ () C:\Users\Filip\AppData\Local\LPT\Smartbar.Personalization.Common.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00166696 _____ () C:\Users\Filip\AppData\Local\LPT\Smartbar.Infrastructure.Utilities.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00046888 _____ () C:\Users\Filip\AppData\Local\LPT\srbu.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00025896 _____ () C:\Users\Filip\AppData\Local\LPT\srpdm.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00027432 _____ () C:\Users\Filip\AppData\Local\LPT\ProxySettings.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00044840 _____ () C:\Users\Filip\AppData\Local\LPT\Smartbar.Monetization.Proxy.ProxyService.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00054056 _____ () C:\Users\Filip\AppData\Local\LPT\Proxy.Lib.dll
2014-07-21 14:33 - 2014-07-21 14:33 - 00028456 _____ () C:\Users\Filip\AppData\Local\LPT\sreu.dll
2014-04-23 23:54 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-04-24 15:23 - 2014-08-16 13:25 - 01635832 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.215\deploy\RiotLauncher.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00325416 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\crdli.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00317224 _____ () C:\Users\Filip\AppData\Local\LPT\Resources\ntdis_32.dll
2014-08-16 14:18 - 2014-08-07 05:20 - 00718152 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libglesv2.dll
2014-08-16 14:18 - 2014-08-07 05:20 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libegl.dll
2014-08-16 14:18 - 2014-08-07 05:20 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-16 14:18 - 2014-08-07 05:20 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-16 14:18 - 2014-08-07 05:20 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
2014-08-16 14:18 - 2014-08-07 05:20 - 14669128 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll
2014-07-21 14:32 - 2014-07-21 14:32 - 00034088 _____ () C:\Users\Filip\AppData\Local\Smartbar\Application\lrcnt.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Filip\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/24/2014 09:57:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 09:57:21 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (08/24/2014 09:46:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: pexag.exe, Version: 0.48.64806.52852, Zeitstempel: 0x53d75949
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x01e32bfe
ID des fehlerhaften Prozesses: 0x808
Startzeit der fehlerhaften Anwendung: 0xpexag.exe0
Pfad der fehlerhaften Anwendung: pexag.exe1
Pfad des fehlerhaften Moduls: pexag.exe2
Berichtskennung: pexag.exe3

Error: (08/24/2014 09:10:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 10:44:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2014 03:33:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Isaac.exe, Version: 1.0.0.0, Zeitstempel: 0x4da19492
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7b96f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003bc21
ID des fehlerhaften Prozesses: 0x12b4
Startzeit der fehlerhaften Anwendung: 0xIsaac.exe0
Pfad der fehlerhaften Anwendung: Isaac.exe1
Pfad des fehlerhaften Moduls: Isaac.exe2
Berichtskennung: Isaac.exe3

Error: (08/23/2014 03:28:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Isaac.exe, Version: 1.0.0.0, Zeitstempel: 0x4da19492
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7b96f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003bc21
ID des fehlerhaften Prozesses: 0x1e88
Startzeit der fehlerhaften Anwendung: 0xIsaac.exe0
Pfad der fehlerhaften Anwendung: Isaac.exe1
Pfad des fehlerhaften Moduls: Isaac.exe2
Berichtskennung: Isaac.exe3

Error: (08/23/2014 02:20:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2014 01:36:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2014 11:57:45 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/24/2014 09:57:56 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger

Error: (08/24/2014 09:57:52 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "AVGIDSAgent" wurde mit folgendem dienstspezifischem Fehler beendet: %%-536753636.

Error: (08/24/2014 09:10:14 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 25.171.126.85
registriert werden. Der Computer mit IP-Adresse 25.93.223.37 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (08/24/2014 09:09:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger

Error: (08/24/2014 09:09:52 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "AVGIDSAgent" wurde mit folgendem dienstspezifischem Fehler beendet: %%-536753636.

Error: (08/24/2014 10:44:13 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger

Error: (08/24/2014 10:44:08 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "AVGIDSAgent" wurde mit folgendem dienstspezifischem Fehler beendet: %%-536753636.

Error: (08/23/2014 09:25:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Hotspot Shield Monitoring Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/23/2014 02:39:33 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "MARTINPC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{5B1A03C7-BBC4-4932-91AC-2625B87440E0}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (08/23/2014 02:19:02 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger


Microsoft Office Sessions:
=========================

schrauber 25.08.2014 12:24
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.




Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

polybeer 25.08.2014 12:53
Hi,

also hier ist der Fixlog.txt:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-08-2014 03
Ran by Filip at 2014-08-25 13:52:14 Run:1
Running from C:\FRST
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\AVG <====== ATTENTION

*****************

HKLM => Group Policy Restriction on software restored successfully.
HKLM => Group Policy Restriction on software restored successfully.

==== End of Fixlog ====

schrauber 26.08.2014 06:21
und weiter :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 14:33 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131