Etwas mit dem Namen AVG blockiert zunehmend mein Opera

	
Code: 

Alles auswählenAufklappen 
ATTFilter

  
	
HitmanPro 3.7.9.220
www.hitmanpro.com

   Computer name . . . . : ULLA
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : Ulla\Neko
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2014-07-04 14:58:14
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 1m 55s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 1
   Traces  . . . . . . . : 6

   Objects scanned . . . : 958.664
   Files scanned . . . . : 9.780
   Remnants scanned  . . : 158.295 files / 790.589 keys

Suspicious files ____________________________________________________________

   C:\Users\Neko\Downloads\FRST-OlderVersion\FRST64.exe
      Size . . . . . . . : 2.081.792 bytes
      Age  . . . . . . . : 21.5 days (2014-06-13 03:52:38)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : 0EA79E12416BF666C6010A50F9169FB1FB5B85682EB141F76B85595D3E132955
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 22.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.

   C:\Users\Neko\Downloads\FRST64.exe
      Size . . . . . . . : 2.083.840 bytes
      Age  . . . . . . . : 0.0 days (2014-07-04 14:30:18)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : C0B38814FBC800F94241355B7FE8D437727C60F5CF846543FDB2638E3AF389A6
      Needs elevation  . : Yes
      Source URL . . . . : hxxp://download.bleepingcomputer.com/dl/0fd469e129dee7e797ee771862f4f80a/53b69e5d/windows/security/security-utilities/f/farbar-recovery-scan-tool/64/FRST64.exe
      Fuzzy  . . . . . . : 27.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         The file is downloaded from the Internet to this computer.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
         -1.1s C:\Users\Neko\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.tmp
         -0.2s C:\Users\Neko\AppData\Roaming\Microsoft\Windows\Cookies\C7GO9P5Z.txt
         -0.2s C:\Users\Neko\AppData\Roaming\Microsoft\Windows\Cookies\W214XUDZ.txt
         -0.2s C:\Users\Neko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PF1V11VH\82[1].htm
          0.0s C:\Users\Neko\Downloads\FRST64.exe
          0.0s C:\Users\Neko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1JXNJS80\FRST64[1].exe
          2.2s C:\Users\Neko\Downloads\FRST-OlderVersion\
          5.9s C:\Users\Neko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4AQMPP2A\up64[1]


Malware remnants ____________________________________________________________

   HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{6EC77D09-02CB-4E1F-E3C4-FB141B2610B3}\ (Activeris)

Potential Unwanted Programs _________________________________________________

   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{11111111-1111-1111-1111-110511841188} (MediaPlayAIR)
   HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{11111111-1111-1111-1111-110511841188} (MediaPlayAIR)
   HKLM\SOFTWARE\Wow6432Node\Taronja\ (MyStart)