Okay, hier adw-cleaner:
Code:
Alles auswählen Aufklappen ATTFilter
# AdwCleaner v1.801 - Logfile created 08/20/2012 at 00:07:17
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : sp - SP-PC
# Boot Mode : Normal
# Running from : C:\Users\sp\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
Folder Deleted : C:\Users\sp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Folder Deleted : C:\Users\sp\AppData\Local\Temp\boost_interprocess
Folder Deleted : C:\Users\sp\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\sp\AppData\Roaming\loadtbs
Folder Deleted : C:\Users\sp\AppData\Roaming\Mozilla\Firefox\Profiles\yhixrjio.default\SweetIMToolbarData
Folder Deleted : C:\Users\sp\AppData\Roaming\Mozilla\Firefox\Profiles\yhixrjio.default\extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}
Folder Deleted : C:\Users\sp\AppData\Roaming\Mozilla\Firefox\Profiles\yhixrjio.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Folder Deleted : C:\Program Files (x86)\PriceGong
Folder Deleted : C:\ProgramData\Partner
File Deleted : C:\Users\sp\AppData\Roaming\Mozilla\Firefox\Profiles\yhixrjio.default\searchplugins\SweetIm.xml
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\SweetIm
Key Deleted : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Key Deleted : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO
Key Deleted : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl
Key Deleted : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl.1
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Key Deleted : HKLM\SOFTWARE\SweetIM
***** [Registre - GUID] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DFEFCDEE-CF1A-4FC8-88AD-129872198372}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8B3372D0-09F0-41A5-8D9B-134E148672FB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DFEFCDEE-CF1A-4FC8-88AD-129872198372}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DFEFCDEE-CF1A-4FC8-88AD-129872198372}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{DFEFCDEE-CF1A-4FC8-88AD-129872198372}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Mozilla Firefox v5.0.1 (de)
Profile name : default
File : C:\Users\sp\AppData\Roaming\Mozilla\Firefox\Profiles\yhixrjio.default\prefs.js
C:\Users\sp\AppData\Roaming\Mozilla\Firefox\Profiles\yhixrjio.default\user.js ... Deleted !
Deleted : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Deleted : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Deleted : user_pref("sweetim.toolbar.mode.debug", "false");
Deleted : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
Deleted : user_pref("sweetim.toolbar.search.history.capacity", "10");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "true");
Deleted : user_pref("sweetim.toolbar.simapp_id", "{C7DCD1C7-ECDE-11E0-9E03-90FBA6E49F4C}");
-\\ Google Chrome v21.0.1180.79
File : C:\Users\sp\AppData\Local\Google\Chrome\User Data\Default\Preferences
Deleted : "update_url": "hxxp://inst.pricegong.com/update/sweetim/-/update.xml",
-\\ Opera v12.1.1532.0
File : C:\Users\sp\AppData\Roaming\Opera\Opera\operaprefs.ini
[OK] File is clean.
*************************
AdwCleaner[R1].txt - [5924 octets] - [19/08/2012 23:54:03]
AdwCleaner[S1].txt - [4834 octets] - [20/08/2012 00:07:17]
########## EOF - C:\AdwCleaner[S1].txt - [4962 octets] ##########
Und das EMIsoft-Logfile:
Bericht speichern habe ich nicht gefunden, es kam eine Meldung, dass nichts Verdächtiges gefunden wurde.
20.08.2012, 01:16
Baum-Darstellung