Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Trojaner "Tencent"?

Trojaner "Tencent"?


Log-Analyse und Auswertung: Trojaner "Tencent"?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 07.06.2015, 18:35   #1
81Dobermann
 
Trojaner "Tencent"? - Standard

Trojaner "Tencent"?


[CODE]Additional
FRST Logfile:
Code:
ATTFilter
scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Tomek at 2015-06-07 19:33:43
Running from C:\Users\Tomek\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2967830349-2458404097-1864745776-500 - Administrator - Disabled)
Gast (S-1-5-21-2967830349-2458404097-1864745776-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2967830349-2458404097-1864745776-1003 - Limited - Enabled)
Tomek (S-1-5-21-2967830349-2458404097-1864745776-1000 - Administrator - Enabled) => C:\Users\Tomek

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACP Application (Version: 2.15.10.0003 - Advanced Micro Devices, Inc.) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
Battlefield 4™ CTE (HKLM-x32\...\{551A08D1-B60E-4DED-9B67-C3B38258CCA3}) (Version: 1.0.2.31585 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.0.0.2 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - Infinity Ward)
Call of Duty: Ghosts (HKLM-x32\...\Steam App 209160) (Version:  - Infinity Ward)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\{9580813D-94B1-4C28-9426-A441E2BB29A5}) (Version: 1.0.0.0 - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Day of Defeat: Source (HKLM-x32\...\Steam App 300) (Version:  - Valve)
Enemy Front (HKLM-x32\...\Steam App 256190) (Version:  - CI Games)
Epic Games Launcher (HKLM\...\{325AC861-EDAF-440B-97DD-259906E216D3}) (Version: 1.1.24.0 - Epic Games, Inc.)
Epson Easy Photo Print 2 (HKLM-x32\...\{71E90740-5E5F-4D43-AB8F-CAC1D93DBB5B}) (Version: 2.5.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{0F13C24A-FFE2-4CD0-8E0B-DC804E0A0E0B}) (Version: 3.10.0035 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{896667C8-53F8-47B8-B6B0-B113B10F05BC}) (Version: 1.20.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-312 313 315 Series Printer Uninstall (HKLM\...\EPSON XP-312 313 315 Series) (Version:  - SEIKO EPSON Corporation)
EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.32.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
Free YouTube to MP3 Converter version 3.12.2.430 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.2.430 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version:  - Valve)
Half-Life 2: Lost Coast (HKLM-x32\...\Steam App 340) (Version:  - Valve)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Logitech G35 (HKLM\...\{27607A94-33AC-4AA7-AACE-95AF6ACA3E30}) (Version: 1.1.178 - Logitech)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Medal of Honor™ Warfighter (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}) (Version: 1.0.0.3 - Electronic Arts)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.6.0 - Mozilla)
Mozilla Thunderbird 31.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.6.0 (x86 de)) (Version: 31.6.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7076 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{B307472F-7BD9-4040-9255-CE6D6A1196A3}) (Version: 4.3.1 - SEIKO EPSON CORPORATION)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam(TM) (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Unreal Tournament (HKLM-x32\...\{0F784A30-05FF-4532-8D66-41022D757A3E}_is1) (Version:  - EPIC Games)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version:  - Wargaming.net)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2967830349-2458404097-1864745776-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

30-05-2015 21:41:39 Windows Update
05-06-2015 08:33:45 Windows Update
05-06-2015 11:09:42 Removed Adobe Common File Installer
05-06-2015 11:09:55 Removed Adobe Stock Photos 1.0
07-06-2015 16:13:34 Software Removal Tool
07-06-2015 16:35:28 Prüfpunkt von HitmanPro
07-06-2015 16:36:25 Prüfpunkt von HitmanPro
07-06-2015 18:20:34 Revo Uninstaller's restore point - Shopping Helper Smartbar
07-06-2015 19:09:07 Revo Uninstaller's restore point - Shopping Helper Smartbar

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03B45661-F3BD-44F3-8321-393A024620F5} - System32\Tasks\{D7C8F475-0DBD-4337-A238-F3F0B1ED9BD0} => pcalua.exe -a C:\Users\Tomek\AppData\Roaming\omiga-plus\UninstallManager.exe -c  -ptid=air <==== ATTENTION
Task: {0A6DAE4B-0022-49A6-A859-FDB4AEC5C442} - System32\Tasks\{76ACEA0E-C669-4879-9DB5-F82A58555C23} => pcalua.exe -a C:\PROGRA~2\SearchProtect\Main\bin\uninstall.exe -c /S <==== ATTENTION
Task: {1F33A9F0-8633-48B7-8290-690201315FF0} - System32\Tasks\{0DCD96FE-54AD-46C0-B74C-E7F52D67D1AE} => pcalua.exe -a "C:\Users\Tomek\Downloads\Internet_Downloads\Adobe(R) Photoshop(R) CS2\instmsiw.exe" -d "C:\Users\Tomek\Downloads\Internet_Downloads\Adobe(R) Photoshop(R) CS2"
Task: {36A90079-52CF-4DF0-9A32-39729C289F2E} - \avabvbyvyc No Task File <==== ATTENTION
Task: {3BCAC1AF-E3D2-4BF9-A93E-A106A35547B8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)
Task: {4075533D-BB4F-4248-98A0-E3FDF9E39712} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-21] (Adobe Systems Incorporated)
Task: {50D04743-F9E7-464B-A5CA-8208B15790F1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {625FE465-5FE3-4A24-852E-6BB33733D5A4} - System32\Tasks\EPSON XP-312 313 315 Series Update {92216CAB-CF59-4199-BE27-85C5C96C72A6} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {8E6CBA70-CA95-46E7-B184-08CA105A8ADE} - \ProPCCleaner_Start No Task File <==== ATTENTION
Task: {9E22EED4-5C21-4879-87FF-BE61B2855FD8} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {AA8EFC5D-A468-4156-BB1C-847A79321D03} - System32\Tasks\EPSON XP-312 313 315 Series Invitation {92216CAB-CF59-4199-BE27-85C5C96C72A6} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {AFAD5B25-8162-4D96-90B8-C302F0A48E61} - \SuperClick Auto Updater 1.10.0.16 Core No Task File <==== ATTENTION
Task: {B4237F61-0D8F-44AE-92B9-3EBF1BDB4703} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-12] (Google Inc.)
Task: {BF5A0715-4EF7-41B0-B3A6-3868430CE652} - \SuperClick Auto Updater 1.10.0.16 Pending Update No Task File <==== ATTENTION
Task: {CC4EFFB5-6AD4-4769-A25A-56114DDC8964} - System32\Tasks\EPSON XP-312 313 315 Series Update {3B031913-35D2-4D9A-91F8-70331A6ED43F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {CEE0A259-50C9-444F-BCC0-5FBF625E1126} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {D1D9366F-F8C4-4993-8C98-AB87B8236DDE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-12] (Google Inc.)
Task: {E9722AE3-EEF8-4685-A371-9179C4F0F49F} - \ProPCCleaner_Popup No Task File <==== ATTENTION
Task: {FBCFE8B7-4B93-409F-9AB6-1F2A25615B7D} - System32\Tasks\EPSON XP-312 313 315 Series Invitation {3B031913-35D2-4D9A-91F8-70331A6ED43F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-312 313 315 Series Invitation {3B031913-35D2-4D9A-91F8-70331A6ED43F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE
Task: C:\Windows\Tasks\EPSON XP-312 313 315 Series Invitation {92216CAB-CF59-4199-BE27-85C5C96C72A6}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE
Task: C:\Windows\Tasks\EPSON XP-312 313 315 Series Update {3B031913-35D2-4D9A-91F8-70331A6ED43F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE:/EXE:{3B031913-35D2-4D9A-91F8-70331A6ED43F} /F:UpdateSYSTEM
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-312 313 315 Series Update {92216CAB-CF59-4199-BE27-85C5C96C72A6}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE:/EXE:{92216CAB-CF59-4199-BE27-85C5C96C72A6} /F:UpdateSYSTEM
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-11-25 18:49 - 2015-03-16 23:06 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2014-05-16 17:36 - 2015-04-16 19:40 - 00776192 _____ () D:\Games\Steam\SDL2.dll
2015-01-22 23:18 - 2015-04-23 04:16 - 04962816 _____ () D:\Games\Steam\v8.dll
2015-01-22 23:18 - 2015-04-23 04:16 - 01556992 _____ () D:\Games\Steam\icui18n.dll
2015-01-22 23:18 - 2015-04-23 04:16 - 01187840 _____ () D:\Games\Steam\icuuc.dll
2014-05-29 09:37 - 2015-06-04 20:56 - 02407104 _____ () D:\Games\Steam\video.dll
2014-09-10 17:17 - 2014-12-01 23:31 - 02396672 _____ () D:\Games\Steam\libavcodec-56.dll
2014-09-10 17:17 - 2014-12-01 23:31 - 00442880 _____ () D:\Games\Steam\libavutil-54.dll
2014-09-10 17:17 - 2014-12-01 23:31 - 00479744 _____ () D:\Games\Steam\libavformat-56.dll
2014-09-10 17:17 - 2014-12-01 23:31 - 00332800 _____ () D:\Games\Steam\libavresample-2.dll
2014-09-10 17:17 - 2014-12-01 23:31 - 00485888 _____ () D:\Games\Steam\libswscale-3.dll
2014-05-29 09:36 - 2015-06-04 20:56 - 00703168 _____ () D:\Games\Steam\bin\chromehtml.DLL
2014-09-17 17:34 - 2015-05-30 21:38 - 01007104 _____ () D:\Games\Origin\platforms\qwindows.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00023552 _____ () D:\Games\Origin\imageformats\qgif.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00024576 _____ () D:\Games\Origin\imageformats\qico.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00216576 _____ () D:\Games\Origin\imageformats\qjpeg.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00261120 _____ () D:\Games\Origin\imageformats\qmng.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00019456 _____ () D:\Games\Origin\imageformats\qtga.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00337408 _____ () D:\Games\Origin\imageformats\qtiff.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00018944 _____ () D:\Games\Origin\imageformats\qwbmp.dll
2014-09-17 17:34 - 2015-05-30 21:38 - 00228352 _____ () D:\Games\Origin\mediaservice\wmfengine.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2014-08-14 02:37 - 2014-08-14 02:37 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2014-08-14 02:37 - 2014-08-14 02:37 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2013-11-21 02:05 - 2013-11-21 02:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-18 02:56 - 2014-06-18 02:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2014-05-01 15:35 - 2015-05-11 21:01 - 36302728 _____ () D:\Games\Steam\bin\libcef.dll
2015-05-25 22:57 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-25 22:57 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll
2015-05-25 22:57 - 2015-05-22 22:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll
2014-06-12 12:15 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2967830349-2458404097-1864745776-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{F92821A7-8838-4762-A7A8-3078F36F1481}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{BEBF7996-7BBA-441A-B6CD-61CB0EC90FCA}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{DD1B83B5-B846-4540-80D2-19BD69CF75FD}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{A6C653BF-8E67-4634-B111-A06235F741F5}] => (Allow) D:\Games\Steam\SteamApps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{8EF8E4B8-211B-4978-A09A-DA67F3F4391E}] => (Allow) D:\Games\Steam\SteamApps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{8BF8A9FB-CA6D-4370-A7A1-CA6764E5FC46}] => (Allow) D:\Games\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{D97016A9-04AC-4C35-B5E7-822DFA42DFF5}] => (Allow) D:\Games\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{4D78BEC7-E819-4748-BE5D-660DAACE5242}] => (Allow) D:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4AC77154-74E8-496E-B21D-2EA5C2491B42}] => (Allow) D:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CDFA8BE3-B70F-45EA-BBF9-30DD1E713A8C}] => (Allow) D:\Games\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{D51EE5A7-5D0D-4EA5-AAB0-20DD75C67B30}] => (Allow) D:\Games\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{868B23DC-F771-4861-92FA-CCEEAC712E54}] => (Allow) D:\Games\Steam\SteamApps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{B700CE9C-ABA8-4B4C-824E-7B3BCF6B0261}] => (Allow) D:\Games\Steam\SteamApps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{0CB5F1E3-F12E-49CE-9541-98651E535F8F}] => (Allow) D:\Games\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{3AA72FD6-39BC-4FBD-9700-D9155A6EF084}] => (Allow) D:\Games\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{4AE94C42-6784-4208-8D7D-7E97A873AEF2}] => (Allow) D:\Games\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{A553620C-CB2E-4BA1-A6D5-9F37D1F8B511}] => (Allow) D:\Games\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{40725199-2DC6-4268-BD8E-7B3ED687A2C9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{63A02D94-5208-4C30-AF81-D6E66AA2696D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AD17A033-B2EF-43F2-AC0A-0A5A59D2C4BC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{95871167-4AA7-4CF1-AF7C-B1829329BF4C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A37915E0-B4A2-469A-9207-DAE2CEA6195D}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{08496A6D-0986-47FE-BD67-DA885A393288}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{867635F6-F3AF-4285-9B07-38F2DBA8B00F}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{71C57D09-3903-474B-AFAC-18AEF164AC75}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{A333AB61-2A92-45DB-B7EE-8DE5012E2560}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{21BFF362-10D8-4A47-9F9D-5B58B2E88EB3}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{77ED56C5-7DED-498C-A157-0E8869BCFEE8}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7C3E9187-31D8-425D-B8FC-13958012F706}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7AEC4C03-9653-4756-9C1C-9934F668E547}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{7F249F80-E2AC-4DC0-970F-18F4C068AFAD}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{B9FD01F3-14D8-4459-A0A0-5C6F875BDDC8}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{78B4FF1C-9D99-4388-ADDD-A013F51DFE7C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{ED0B4B07-297B-4B60-936A-221E8772CD21}] => (Allow) C:\Users\Tomek\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\EpsonNetSetup3_6_1_2200\ENEasyApp.exe
FirewallRules: [{A2E01E83-9C10-42BC-B943-F2BAAE61B914}] => (Allow) C:\Users\Tomek\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\EpsonNetSetup3_6_1_2200\ENEasyApp.exe
FirewallRules: [TCP Query User{71EBB75E-CD48-4DFB-BDA3-FD443FB70BC5}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{781527CC-3BA1-45A7-8B61-514CA3B99E99}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{4FE74600-9CAF-420F-9CAE-5411E53ACE00}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{44BC593D-C3CE-4FCB-AD5F-B59930BF3662}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{BF6E4EA6-C78D-4589-8A73-4F751CD98173}] => (Allow) D:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{ECB8AA7F-6AA8-4646-BC55-D13D89089906}] => (Allow) D:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{315494E3-3AC2-4935-AF00-4039EE4BF83D}] => (Allow) D:\Games\Steam\SteamApps\common\Enemy Front\Bin32\EnemyFront.exe
FirewallRules: [{FB211D33-BA14-4C34-B6DA-FFB3A444C223}] => (Allow) D:\Games\Steam\SteamApps\common\Enemy Front\Bin32\EnemyFront.exe
FirewallRules: [{41CDAC95-C7E0-444E-939F-5A6C6EB093F3}] => (Allow) D:\Games\Steam\SteamApps\common\Enemy Front\Bin32\DedicatedServer.exe
FirewallRules: [{853B78B6-0980-4183-B0D8-CA908E38B13D}] => (Allow) D:\Games\Steam\SteamApps\common\Enemy Front\Bin32\DedicatedServer.exe
FirewallRules: [{75C189C1-CEA5-471D-9EEB-57D8EA2B1E81}] => (Allow) C:\Users\Tomek\AppData\Local\BoBrowser\Application\bobrowser.exe
FirewallRules: [{97D20E6A-2E18-4443-A8D3-8AAA32382B7E}] => (Allow) D:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [{1E9E8F34-192B-40EE-B130-44F387FAEBAC}] => (Allow) D:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [{4956A03D-BBF2-4E5F-96F7-BF9061A40AED}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D9E96D36-A1AD-4707-B8E0-A042785FA2FD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{27C8BEF9-FCDB-41A5-9667-8A2DF288B4B4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F53D4217-A3A5-49ED-9D15-1A27037F1A98}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F53E3518-15D4-4DD1-9B4F-69947477253F}] => (Allow) D:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [{C5116BB5-2DA6-41C9-ACD8-4AF0233D9FB2}] => (Allow) D:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [{5502227E-8600-4DCF-B3F5-4307176C5098}] => (Allow) D:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{42EC9593-484E-4AC7-A0F8-D8E05E295FF3}] => (Allow) D:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{21763367-EFF3-4A87-804D-EE52E15C9CB6}] => (Allow) D:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{87DB4605-0E3E-4504-A06E-50B2E8CD4214}] => (Allow) D:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{0CA21AE0-CF80-4193-B920-2363F09C20DD}] => (Allow) D:\Games\Battle.net\Battle.net.exe
FirewallRules: [{34B0198D-A16B-4DC4-9417-62A92036FB31}] => (Allow) D:\Games\Battle.net\Battle.net.exe
FirewallRules: [{8A1BC5DB-7D54-4D11-A846-4ACAECEEE6B4}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{AB501310-600F-462A-857F-14EF56F17F30}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{39F83211-95A4-4D12-A085-09BD39B4BB4F}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{AE222A48-870E-4421-A7EE-32C465A4FF32}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{D589A9C0-75A9-4597-B785-6C1DA5DA6B6E}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{2D545850-2EB2-40B6-95A9-93C3412F80C4}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{3AE5F2B4-1217-4290-BD90-8C24199C0D39}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A6854F8C-3FAB-4332-BFB5-6C3F306F21FE}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{B3732F89-BF42-4171-9247-4BDE7BF4234A}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{80C1BA02-F24D-483C-9C5C-E0B23CCD2059}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{023E124D-1461-44ED-9B42-C24CE413D0CE}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{A1221962-E943-490F-BDF9-4D408107E6EC}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4 CTE\bf4cte_x86.exe
FirewallRules: [{1DB84F36-D1B8-43BF-AD4A-6D8F705E00F2}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4 CTE\bf4cte_x86.exe
FirewallRules: [{DC89BD3F-5B2A-4BB5-9B39-A76DA766432C}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4 CTE\bf4cte.exe
FirewallRules: [{AC091C58-15B4-434B-9709-B3612CFF5CE7}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4 CTE\bf4cte.exe
FirewallRules: [{85CE5F72-7D22-48AC-A39E-ECD84029529F}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{24B2B4D7-FACD-4935-95F6-307C29F83E22}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCmgrInstallGuide.exe
FirewallRules: [{CF548EAD-876D-4A7E-8B79-832154EA7B33}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCTray.exe
FirewallRules: [{60B2E32C-2867-4233-9DC4-9B85C143A01E}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCMgr.exe
FirewallRules: [{C01C6F0D-5F2B-4BDE-9079-1310048B9E77}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCRTP.exe
FirewallRules: [{50D56715-D0A8-45EF-82DA-78C45ED4D57C}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMDL.exe
FirewallRules: [{E8427E63-E1DD-44D9-9F18-BEDABB96B691}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\bugreport.exe
FirewallRules: [{FD8A796A-8425-4E24-B381-8B236D4F3E88}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCFileOpen.exe
FirewallRules: [{77B6D9F6-0328-4302-A21D-7CDA273E1AAA}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCLeakScan.exe
FirewallRules: [{51C66844-219E-4901-9F5C-C0255675A414}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPConfig.exe
FirewallRules: [{F2FCF537-9667-4C8E-83D4-A453B30311E4}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCSoftMgr.exe
FirewallRules: [{50B521F0-BB7A-497D-B65E-C198A4544411}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\plugins\QMNetMon\QQPCNetFlow.exe
FirewallRules: [{F26FC3D3-E2E6-4AA8-9D8E-7C39EC9C817B}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCBTU.exe
FirewallRules: [{C02A41AF-6B17-4ECB-9DDA-E7A6FF553266}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCClinic.exe
FirewallRules: [{DB4796CD-75DB-435C-8C3F-14D5EB9296C1}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCLaunch.exe
FirewallRules: [{6B10DEDB-F94C-4B40-ADF2-2C0670C6BE41}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMUpdate\QQPCMgrUpdate.exe
FirewallRules: [{4908CDC2-EB20-4140-9978-1C73845BD0CE}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCSoftGame.exe
FirewallRules: [{6DE0D907-5273-40C9-99F9-3B99CCFB4176}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCSysOptimize.exe
FirewallRules: [{04E04DA9-3DA2-4CA2-A25E-19E17BD11CDE}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCUpdateAVLib.exe
FirewallRules: [{D8D2CC55-57AD-47B1-BA26-B8D409CE172F}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQRepair.exe
FirewallRules: [{113C1B6E-A82D-43EE-B5A8-6285E9C8F602}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\Uninst.exe
FirewallRules: [{B1DAA86F-7AF5-4A01-98D2-5A717F28CFA3}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCPatch.exe
FirewallRules: [{CDF17D82-D509-4AD9-8914-C44BD0D6BE4B}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\TpkUpdate.exe
FirewallRules: [{927A701C-31D0-47D0-85D4-17AA876C6393}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMRouterMgr.exe
FirewallRules: [{E9B355AE-8B9F-4200-81FA-1AA95348F3E7}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMAccountProtection.exe
FirewallRules: [{0269C86B-E217-4B69-8F35-B81037C61121}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{FACDDA41-E0EC-42C7-B72B-83089CE670BD}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe

==================== Faulty Device Manager Devices =============

Name: TSCPM
Description: TSCPM
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: TSCPM
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/07/2015 07:29:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 07:15:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 07:13:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_DiagTrack, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc3c1
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18839, Zeitstempel: 0x553e8bfa
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000000000006ec12
ID des fehlerhaften Prozesses: 0x808
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_DiagTrack0
Pfad der fehlerhaften Anwendung: svchost.exe_DiagTrack1
Pfad des fehlerhaften Moduls: svchost.exe_DiagTrack2
Berichtskennung: svchost.exe_DiagTrack3

Error: (06/07/2015 06:17:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 06:14:43 PM) (Source: MsiInstaller) (EventID: 11719) (User: Tomek-PC)
Description: Product: Shopping Helper Smartbar -- Error 1719. The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.

Error: (06/07/2015 06:14:43 PM) (Source: MsiInstaller) (EventID: 11719) (User: Tomek-PC)
Description: Product: Shopping Helper Smartbar -- Error 1719. The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.

Error: (06/07/2015 04:40:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 04:37:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_DiagTrack, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc3c1
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18839, Zeitstempel: 0x553e8bfa
Ausnahmecode: 0xc000000d
Fehleroffset: 0x000000000006ec12
ID des fehlerhaften Prozesses: 0x858
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_DiagTrack0
Pfad der fehlerhaften Anwendung: svchost.exe_DiagTrack1
Pfad des fehlerhaften Moduls: svchost.exe_DiagTrack2
Berichtskennung: svchost.exe_DiagTrack3

Error: (06/07/2015 04:36:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service Single Spaced Removable Media since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (06/07/2015 04:35:28 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service Single Spaced Removable Media since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.


System errors:
=============
Error: (06/07/2015 07:27:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ZoneAlarm Privacy Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/07/2015 07:27:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "QQSysMonX64" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (06/07/2015 07:13:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ZoneAlarm Privacy Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/07/2015 07:13:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "QQSysMonX64" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (06/07/2015 07:13:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Diagnostics Tracking Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/07/2015 07:12:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/07/2015 07:12:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 2 Mal passiert.

Error: (06/07/2015 07:12:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel(R) Capability Licensing Service Interface" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/07/2015 07:12:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/07/2015 07:12:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office:
=========================
Error: (06/07/2015 07:29:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 07:15:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 07:13:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_DiagTrack6.1.7600.163854a5bc3c1ntdll.dll6.1.7601.18839553e8bfac000000d000000000006ec1280801d0a13d24d79f11C:\Windows\System32\svchost.exeC:\Windows\SYSTEM32\ntdll.dll7481954b-0d38-11e5-84d8-74d435882e39

Error: (06/07/2015 06:17:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 06:14:43 PM) (Source: MsiInstaller) (EventID: 11719) (User: Tomek-PC)
Description: Product: Shopping Helper Smartbar -- Error 1719. The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/07/2015 06:14:43 PM) (Source: MsiInstaller) (EventID: 11719) (User: Tomek-PC)
Description: Product: Shopping Helper Smartbar -- Error 1719. The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/07/2015 04:40:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2015 04:37:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_DiagTrack6.1.7600.163854a5bc3c1ntdll.dll6.1.7601.18839553e8bfac000000d000000000006ec1285801d0a1289cb9564cC:\Windows\System32\svchost.exeC:\Windows\SYSTEM32\ntdll.dllc1b0d952-0d22-11e5-90c4-74d435882e39

Error: (06/07/2015 04:36:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service Single Spaced Removable Media since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (06/07/2015 04:35:28 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service Single Spaced Removable Media since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.


CodeIntegrity Errors:
===================================
  Date: 2015-03-11 15:22:36.803
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-11 15:22:36.801
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-11 15:20:23.757
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-11 15:20:23.749
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-07 21:20:06.524
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-07 21:20:06.522
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-07 21:19:11.802
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-07 21:19:11.749
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-04 14:47:33.774
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-03-04 14:47:33.772
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 44%
Total physical RAM: 8067.93 MB
Available physical RAM: 4515.61 MB
Total Pagefile: 16134.06 MB
Available Pagefile: 12297.02 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:51.13 GB) NTFS
Drive d: (750er) (Fixed) (Total:698.63 GB) (Free:390.24 GB) NTFS
Drive f: (STARCRAFT) (CDROM) (Total:0.62 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 8AB3841D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 5655BED3)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)

==================== End of log ============================
--- --- ---


bin jetzt mit allem durch

Antwort

Themen zu Trojaner "Tencent"?
ahnung, anti, brauche, datei, daten, deinstalliere, deinstallieren, entferne, entfernen, freigabe, glaube, kaspersky, neu, programme, system, tencent, troja, trojaner, versteckt, versteckt sich, versucht, verwehrt, virus, windows, windows 7, zugang, zusammen, ändern


« PC stürzt regemäßig ab | Laptop fährt beim eingeben wichtiger Daten manchmal runter. »


Ähnliche Themen: Trojaner "Tencent"?


  1. "Suspicious.Cloud.9" (Trojaner) und "SAPE.DnwldSponsor.2" (Virus?, vielleicht False Positive)
    Plagegeister aller Art und deren Bekämpfung - 22.08.2015 (23)
  2. Diverse Malware ("CoolSaleCoupon", "ddownlloaditkeep", "omiga-plus", "SaveSense", "SaleItCoupon"); lahmer PC & viel Werbung!
    Plagegeister aller Art und deren Bekämpfung - 11.01.2015 (16)
  3. Trojaner-Warnung! Im Betreff: "Die Zahlung fur…" und "Dankeschon fur das Einkaufen mit uns heute! Ihre Bestellung wird derzeit verarbeitet."
    Diskussionsforum - 25.07.2014 (0)
  4. Avira: (Win7) Trojaner "TR/Rogue.11186992" in "C:\Windows\Temp\44158_updater.exe" gefunden
    Plagegeister aller Art und deren Bekämpfung - 25.04.2014 (77)
  5. "monstermarketplace.com" Infektion und ihre Folgen; "Anti-Virus-Blocker"," unsichtbare Toolbars" + "Browser-Hijacker" von selbst installiert
    Log-Analyse und Auswertung - 16.11.2013 (21)
  6. "Antiviren Werbung" "Langsamer PC" "PC stürzt ab" Banner und Popups beim surfen
    Plagegeister aller Art und deren Bekämpfung - 05.11.2013 (28)
  7. "Deutsche Post(eMail-Anhang)" Alle "EXE(Programme)" werden blockiert "WIN 7 Defender"
    Plagegeister aller Art und deren Bekämpfung - 27.12.2012 (3)
  8. "The document has moved. Redirecting"+"Popup unten rechts"+"Nicht alle Links anklickbar"
    Plagegeister aller Art und deren Bekämpfung - 24.10.2012 (38)
  9. Gerade GVU Trojaner mit Webcam "gehabt", ist es wirklich dank Malewarebytes weg? Wo ist die "Lücke"?
    Plagegeister aller Art und deren Bekämpfung - 10.08.2012 (23)
  10. Startseite fehlerhaft, stets "NatWest" (www.nwolb.com) Trojaner "Trojan.ZBotR.Gen" gefunden
    Log-Analyse und Auswertung - 02.04.2012 (28)
  11. Trojaner "Es besteht keine Internetverbindung" - "REATOGO X-PE Desktop" wird nicht angezeigt
    Plagegeister aller Art und deren Bekämpfung - 05.02.2012 (19)
  12. Öffentliches Netzwerk: Opera sendet/empfängt Daten an/von "Dani-PC", "Anne-PC", "PAULA-HP"...
    Netzwerk und Hardware - 02.05.2011 (14)
  13. Netzwerk: Opera sendet/empfängt Daten an/von "Dani-PC", "Anne-PC", "PAULA-HP"...
    Alles rund um Windows - 16.04.2011 (0)
  14. "Adware.Virtumonde"/"Downloader.MisleadApp"/"TR/VB.agt.4"/"NewDotNet.A.1350"/"Fakerec
    Plagegeister aller Art und deren Bekämpfung - 22.08.2008 (6)
  15. Beheben des Problems "kein Internet"/"rsvp32_2.dll"/"Can't load library from memory"
    Plagegeister aller Art und deren Bekämpfung - 25.03.2007 (22)
  16. ">"">><meta http-equiv="Refresh" content="0;url=http://askimizsonsuza.com/code/">"">
    Plagegeister aller Art und deren Bekämpfung - 04.09.2006 (4)
  17. eTrust fand "einen" Trojaner, danach AntiVir noch "vier"..!!??
    Plagegeister aller Art und deren Bekämpfung - 26.12.2005 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Trojaner "Tencent"? - [CODE]Additional FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015 Ran by Tomek at 2015-06-07 19:33:43 Running from C:\Users\Tomek\Desktop Boot Mode: Normal ========================================================== - Trojaner "Tencent"?...
Archiv
Du betrachtest: Trojaner "Tencent"? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55