| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.04.2013, 01:03
| #1 |
| |  Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? hello again.. ich habe heute (aus purem zufall heraus ??) PUP.InstallBrain und PUP.software Updater bestätigt bekommen. Auch die Internetverbindung lässt oftmal zu wünschen übrig. Und leider tummeln sich bei mir auf verschiedenen Internetseiten viele leuchtend blickende ''werbeblöcke'' unter anderem heisst es in denen :Zitat:'' Die PC Verbindung lässt sehr zu wünschen übrig -- Fehler sofort beheben'' usw etc. Ich Habe auch schon genügend ''angebliche Mahnungen'' gekriegt,die gar nicht sein können. aber dass müssen die mir erstmal richterlich bestätigen können. Dummerweise Habe ich Euch eine Email gesendet mit Anhang weil ich nicht gecheckt und verstanden habe,was ich genau im forum veröffentlichen muss und kann damit ich hilfe bekomme. Ich hoffe Ihr habt verständnis dafür. Vielen Dank für die unterstützung. aMELika |
|
04.04.2013, 15:27
| #2 |
| /// Helfer-Team  |  Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? Bitte das Malwarebytes-Logfile posten, das du schon gemacht hast! (Reiter Logdateien) dann: Systemscan mit OTL (bebilderte Anleitung) Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop ( falls noch nicht vorhanden)- Doppelklick auf die OTL.exe
__________________ |
|
21.04.2013, 12:53
| #3 |
| |  Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? HALLO. VIELEN DANK FÜR DEINE ANTWORT. ich schaffe es einfach nicht, die drei logfiles anzuhängen. Ich kann auf die Büroklammer drücken,da rührt sich nichts. und unten ,dort wo man normalerweise einen anhang dranhängt geht auch nichts. aber alles andere würde funktionieren. die smilys, youtube link , etc.
__________________nun sende ich es einzeln hier im text: Datenbank Version: v2013.04.03.06 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 melodja-chaosita :: MELODJA-CHAOSIT [Administrator] Schutz: Aktiviert 03.04.2013 17:08:08 mbam-log-2013-04-03 (17-08-08).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|Q:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 388917 Laufzeit: 1 Stunde(n), 17 Minute(n), 41 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 7 HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\Updater.AmiUpd.1 (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\Updater.AmiUpd (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService (PUP.InstallBrain) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 2 C:\Users\melodja-chaosita\AppData\Local\SwvUpdater\Updater.exe (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\Tasks\AmiUpdXp.job (PUP.Software.Updater) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 21.04.2013 13:15:24 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\melodja-chaosita\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
7.86 Gb Total Physical Memory | 5.11 Gb Available Physical Memory | 65.08% Memory free
15.71 Gb Paging File | 11.59 Gb Available in Paging File | 73.76% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 683.54 Gb Total Space | 578.44 Gb Free Space | 84.62% Space Free | Partition Type: NTFS
Computer Name: MELODJA-CHAOSIT | User Name: melodja-chaosita | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
[HKEY_USERS\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Classes\<extension>]
.html [@ = Max3.Association.HTML] -- C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe (Maxthon International ltd.)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03B71E09-13D8-424B-8D01-AF24208D1770}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{102D5674-B642-410D-9AC6-7BBB2919D8D3}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{262667E3-B942-470A-9F82-2E452DADC53D}" = rport=138 | protocol=17 | dir=out | app=system |
"{2A21527B-056E-4990-892C-C65572C133C5}" = rport=139 | protocol=6 | dir=out | app=system |
"{378A49AF-8764-4DA0-B85B-38741D79D7AB}" = rport=445 | protocol=6 | dir=out | app=system |
"{5553906C-842D-470A-B0BD-FE926ED3E2B3}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5B4F4B31-A95B-4B9E-987C-B8DB30E1C80A}" = lport=10243 | protocol=6 | dir=in | app=system |
"{6AD2BEC0-9529-4293-BA3D-DB1FF59A5E08}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6BBF0481-8931-4EF5-BC48-555223ABE922}" = lport=445 | protocol=6 | dir=in | app=system |
"{6F2F40F3-836B-4F8C-A850-38D8282923C8}" = rport=10243 | protocol=6 | dir=out | app=system |
"{72FF313D-652E-41EC-BE9C-B5D2A5B03148}" = rport=137 | protocol=17 | dir=out | app=system |
"{893EF5E1-6039-4105-9EF9-4C5DD750777B}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8E2069E8-C92C-4CD9-8F6F-FE6732C4C4BB}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{A771242D-4715-4E06-8B53-28D4E788ACA6}" = lport=137 | protocol=17 | dir=in | app=system |
"{A8D03A47-4ABC-48EB-B1A6-0429EC0CABA5}" = lport=139 | protocol=6 | dir=in | app=system |
"{AA81D0E6-C767-404B-AE9F-C418AD62524D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AF6749D5-AD64-42E4-BC32-6570BC6CA2A0}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{B17566DF-E51E-46BB-A967-E6566FAF59A8}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{BDC22CC7-1E23-4310-85D9-A143609279CE}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BEFD1C86-A6D5-4EE1-A72B-8CAB5A8FE45B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CD799AE7-D041-4681-82D4-477FF94A08F7}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D3BA22B7-A4C4-42A8-A055-90CEF33BDC1E}" = lport=138 | protocol=17 | dir=in | app=system |
"{DD38E2A4-2A0E-447C-A44F-AC6826F8CDBF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E664B199-DCBF-4F6F-B64C-6C47468AA637}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EAE1D4F5-694E-40C2-AE67-30444172C561}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03D53072-7502-48E7-A3DA-8A5AECE30072}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\clear.fiagent.exe |
"{076E62E0-D5BF-4135-A2C6-BFA096C4FF2D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{07A8E8ED-ECFC-4BC3-8121-E72E79E02A13}" = protocol=6 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{092C4CF8-4874-457D-9EBE-B20313EC918B}" = protocol=6 | dir=in | app=c:\program files (x86)\maxthon\bin\maxthon.exe |
"{09AD9539-2810-4746-A005-06417F004D12}" = protocol=6 | dir=in | app=c:\windows\system32\dmwu.exe |
"{10DD99B7-300A-45B5-9C21-E48B8A48C782}" = protocol=6 | dir=in | app=c:\windows\system32\dmwu.exe |
"{10FDF228-FC74-4DDA-A7B1-B9593BCBF105}" = dir=in | app=c:\users\melodja-chaosita\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{1D9CEB5A-4350-415F-B3B4-71BB181B4EDF}" = dir=in | app=c:\program files (x86)\iminent\iminent.exe |
"{1FD5D5A6-3CC6-4390-97BF-580638794731}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{24CA19AA-926F-417B-9E1A-4FC618E02DB4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{24D0D111-96CD-40AA-987B-F7B1E637FC48}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\dmr\dmrengine.exe |
"{2B8B0DF7-F18E-4EB1-A69E-A53EC194D07A}" = dir=in | app=c:\program files (x86)\iminent\iminent.messengers.exe |
"{30E64B96-B4BD-4A7A-94ED-7AF1A6D66E46}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3F031AC2-5F2C-4D89-BC4B-81B236C65DF3}" = protocol=17 | dir=in | app=c:\program files (x86)\maxthon\bin\mxup.exe |
"{3FDF53BA-1CDB-4C13-8824-B1336EE96B40}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{49D7A0DF-2287-4EC8-8938-11EF95C8D7BB}" = protocol=6 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{4A97F208-F265-4046-A42A-3A72D1A7F25D}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4D7A7792-1A40-49D0-8E26-C37C5B028F92}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4DFA582D-49BE-48BA-AD82-C6268B27B95A}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{5B626D42-C6FC-4193-AFE0-81629EB225C2}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{5B8D436F-78D1-4596-A392-67593C756E32}" = protocol=17 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{624FE114-F9DB-496F-B95C-51DF31886B20}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6C5B84F1-A031-4E4A-90C6-A062D38D4CB7}" = protocol=17 | dir=in | app=c:\windows\system32\dmwu.exe |
"{6D9D5221-5282-4068-9994-837A4B489E77}" = protocol=17 | dir=in | app=c:\windows\syswow64\arfc\wrtc.exe |
"{716589AF-55F5-4E2B-8C5D-300873B415B5}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7A23A0A0-AD79-4304-924D-A86AA0ACD2CF}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\clear.fi.exe |
"{7AD22A59-9CEA-4FF0-93CD-C77762992399}" = dir=in | app=c:\program files (x86)\acer\clear.fi\movie\touchmovie.exe |
"{7FD0B207-15CD-43DF-A812-BBF5584A0447}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{826B0022-223B-4B2E-B7A1-03E0EED6791E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8A2A0109-BA01-4AC9-8B8B-C1400FF428D4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8E7F3675-CEF4-4151-88EB-44F0D50AFC3A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{93165032-2187-4B80-83C7-84A262818DB0}" = protocol=6 | dir=in | app=c:\program files (x86)\maxthon\bin\mxup.exe |
"{95B801DB-33DE-4D48-AA81-03ADA3D54F6D}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{98A64E33-53D9-4F8E-AD6E-53F5B4B4DA90}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9BBEBFEB-6A57-4D92-B69E-5E07CE3FE2B6}" = protocol=6 | dir=out | app=system |
"{9C388B09-1455-472A-B066-EF5C4BD267AA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A16D682C-8EC0-4B78-863B-5733F0B3A6BA}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{B1D85B75-09D3-47AC-BEFB-26982F59BB61}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{B75AF449-7C08-4E97-B281-E8EA57DA306A}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\clml\clmlsvc.exe |
"{B9455859-C76E-4C92-9AA1-B5E424AE0D14}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\dmr\dmrengine.exe |
"{BC9EC956-2032-4C1B-8104-2B41CFDF20C3}" = dir=in | app=c:\program files (x86)\acer\clear.fi\movie\touchmovieservice.exe |
"{BD9F57C7-816E-4BBC-B3DC-43481B840F54}" = protocol=17 | dir=in | app=c:\windows\system32\dmwu.exe |
"{BE97D32D-9B55-4C7B-B6D0-F072E9A1EBA4}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{C276D9ED-70C9-4258-A7EC-63CFE944BB64}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\dmr\dmrengine.exe |
"{CBA2A08B-7C92-41AA-9562-69AB661EB674}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{D069FAB3-F713-4D23-BF0F-7B143B7992D9}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{DACAE5DE-0A17-46B3-A5F7-6412BF289E81}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{DEA0F1A1-78BA-4D48-B1C8-AA4CC44D37E7}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{EEC87B54-4B98-4D6F-AC58-86B969D5605F}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{F27F96F0-9674-45CD-A3E0-ABAD566D8C12}" = protocol=6 | dir=in | app=c:\program files (x86)\veetle\player\veetlenet.exe |
"{F7773129-520E-47AC-8D92-C071E069B1C7}" = protocol=17 | dir=in | app=c:\program files (x86)\maxthon\bin\maxthon.exe |
"{F8787293-5F31-4250-B19A-32AC977CD831}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{F8E61A42-571D-4CB1-A014-FDB578FE87FB}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{FA99CFDC-7A74-4008-8876-B04278595FA7}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"TCP Query User{108B5731-362F-40B0-A498-564E1354F486}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"TCP Query User{291F8D1C-F838-45E7-AE5E-4D189CAB59AC}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"TCP Query User{B58566F9-AA52-4941-9162-CF6CEDA48380}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{F900F4AE-F524-407E-8E2A-2018E5EE2CF8}C:\program files (x86)\free download manager\fdm.exe" = protocol=6 | dir=in | app=c:\program files (x86)\free download manager\fdm.exe |
"UDP Query User{05BBC313-4142-4E24-A440-D8214BAAEA7E}C:\program files (x86)\free download manager\fdm.exe" = protocol=17 | dir=in | app=c:\program files (x86)\free download manager\fdm.exe |
"UDP Query User{0862CE56-F0D1-4493-8B3C-26895040BE36}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"UDP Query User{617E729B-1006-486D-A3F6-2784F17346EE}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"UDP Query User{C18EEACF-A024-46AD-9B8D-6A944F0C8A8A}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0886900B-B2F3-452C-B580-60F1253F7F80}" = Native Instruments Controller Editor
"{0919C44F-F18A-4E3B-A737-03685272CE72}" = Windows Live Remote Service Resources
"{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}" = MyWinLocker
"{0B8565BA-BAD5-4732-B122-5FD78EFC50A9}" = Native Instruments Service Center
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{1553D712-B35F-4A82-BC72-D6B11A94BE3E}" = Windows Live Remote Service Resources
"{1685AE50-97ED-485B-80F6-145071EE14B0}" = Windows Live Remote Service Resources
"{17A4FD95-A507-43F1-BC92-D8572AF8340A}" = Windows Live Remote Service Resources
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
"{19F09425-3C20-4730-9E2A-FC2E17C9F362}" = Windows Live Remote Service Resources
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1EB2CFC3-E1C5-4FC4-B1F8-549DD6242C67}" = Windows Live Remote Service Resources
"{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}" = Shredder
"{22AB5CFD-B3DB-414E-9F99-4D024CCF1DA6}" = Windows Live Remote Client Resources
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources
"{2C1A6191-9804-4FDC-AB01-6F9183C91A13}" = Windows Live Remote Client Resources
"{2E5A85D0-FAD5-4362-A782-43334BBA59AF}" = Ableton Live 8
"{2F304EF4-0C31-47F4-8557-0641AAE4197C}" = Windows Live Remote Client Resources
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{350FD0E7-175A-4F86-84EF-05B77FCD7161}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{456FB9B5-AFBC-4761-BBDC-BA6BAFBB818F}" = Windows Live Remote Client Resources
"{4710662C-8204-4334-A977-B1AC9E547819}" = Broadcom Card Reader Driver Installer
"{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources
"{4C2E49C0-9276-4324-841D-774CCCE5DB48}" = Windows Live Remote Client Resources
"{5141AA6E-5FAC-4473-BFFB-BEE69DDC7F2B}" = Windows Live Remote Service Resources
"{5151E2DB-0748-4FD1-86A2-72E2F94F8BE7}" = Windows Live Remote Service Resources
"{57F2BD1C-14A3-4785-8E48-2075B96EB2DF}" = Windows Live Remote Service Resources
"{5E2CD4FB-4538-4831-8176-05D653C3E6D4}" = Windows Live Remote Service Resources
"{5F44A3A1-5D24-4708-8776-66B42B174C64}" = Windows Live Remote Client Resources
"{5FCD6EFE-C2E7-4D77-8212-4BA223D8DF8E}" = Windows Live Remote Client Resources
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{5FEAD3E5-A158-4B66-B92B-0C959D7CF838}" = Windows Live Remote Service Resources
"{61407251-7F7D-4303-810D-226A04D5CFF3}" = Windows Live Remote Service Resources
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{692CCE55-9EAE-4F57-A834-092882E7FE0B}" = Windows Live Remote Client Resources
"{6C9D3F1D-DBBE-46F9-96A0-726CC72935AF}" = Windows Live Remote Service Resources
"{6CBFDC3C-CF21-4C02-A6DC-A5A2707FAF55}" = Windows Live Remote Service Resources
"{702A632F-99CE-4E2D-B8F2-BF980E9CF62F}" = Windows Live Remote Client Resources
"{772BDC73-63B9-445A-BECA-C90E425E39F7}" = Native Instruments Audio Kontrol 1 Support Files
"{7AEC844D-448A-455E-A34E-E1032196BBCD}" = Windows Live Remote Service Resources
"{825C7D3F-D0B3-49D5-A42B-CBB0FBE85E99}" = Windows Live Remote Client Resources
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{850B8072-2EA7-4EDC-B930-7FE569495E76}" = Windows Live Remote Client Resources
"{8970AE69-40BE-4058-9916-0ACB1B974A3D}" = Windows Live Remote Client Resources
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EB588BD-D398-40D0-ADF7-BE1CEEF7C116}" = Windows Live Remote Client Resources
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97A295A7-8840-4B35-BB61-27A8F4512CA3}" = Windows Live Remote Service Resources
"{9E9C960F-7F47-46D5-A95D-950B354DE2B8}" = Windows Live Remote Service Resources
"{A060182D-CDBE-4AD6-B9B4-860B435D6CBD}" = Windows Live Remote Client Resources
"{A508D5A2-3AC1-4594-A718-A663D6D3CF11}" = Windows Live Remote Service Resources
"{A679FBE4-BA2D-4514-8834-030982C8B31A}" = Windows Live Remote Service Resources
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B0BF8602-EA52-4B0A-A2BD-EDABB0977030}" = Windows Live Remote Client Resources
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 314.07
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 314.07
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.12.12
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.12.12
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B680A663-1A15-47A5-A07C-7DF9A97558B7}" = Windows Live Remote Client Resources
"{B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}" = Windows Live Remote Client Resources
"{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}" = Überwachungstool für die Intel® Turbo-Boost-Technik 2.0
"{C504EC13-E122-4939-BD6E-EE5A3BAA5FEC}" = Windows Live Remote Client Resources
"{C91DCB72-F5BB-410D-A91A-314F5D1B4284}" = Broadcom NetLink Controller
"{C9F05151-95A9-4B9B-B534-1760E2D014A5}" = Windows Live Remote Client Resources
"{CFF3C688-2198-4BC3-A399-598226949C39}" = Windows Live Remote Client Resources
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D1C1556C-7FF3-48A3-A5D6-7126F0FAFB66}" = Windows Live Remote Client Resources
"{D3E4F422-7E0F-49C7-8B00-F42490D7A385}" = Windows Live Remote Service Resources
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DBEDAF67-C5A3-4C91-951D-31F3FE63AF3F}" = Windows Live Remote Client Resources
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{ED421F97-E1C3-4E78-9F54-A53888215D58}" = Windows Live Remote Client Resources
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{EFB20CF5-1A6D-41F3-8895-223346CE6291}" = Windows Live Remote Service Resources
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F}" = Windows Live Remote Service Resources
"{F7C134DF-3B50-47d8-BBAC-269099DCCC7C}" = Native Instruments Audio Kontrol 1
"{FAA3933C-6F0D-4350-B66B-9D7F7031343E}" = Windows Live Remote Service Resources
"{FAD0EC0B-753B-4A97-AD34-32AC1EC8DB69}" = Windows Live Remote Client Resources
"DesktopIconAmazon" = Desktop Icon für Amazon
"DriverNavigator_is1" = DriverNavigator 3.2.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"SearchAnonymizer" = SearchAnonymizer
"SynTPDeinstKey" = Synaptics Pointing Device Driver
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00884F14-05BD-4D8E-90E5-1ABF78948CA4}" = Windows Live Mesh
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
"{039480EE-6933-4845-88B8-77FD0C3D059D}" = Windows Live Mesh
"{0557BBDA-69D3-4FA4-A93C-A5300F7034B4}" = Windows Live Writer
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{062E4D94-8306-46D5-81B6-45E6AD09C799}" = Windows Live Messenger
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{06B05153-97E4-427E-B1A8-E098F6C5E52F}" = Windows Live Essentials
"{073F306D-9851-4969-B828-7B6444D07D55}" = Windows Live Photo Common
"{09922FFE-D153-44AE-8B60-EA3CB8088F93}" = Windows Live UX Platform Language Pack
"{0A4C4B29-5A9D-4910-A13C-B920D5758744}" = بريد Windows Live
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}" = Backup Manager V3
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{0C975FCC-A06E-4CB6-8F54-A9B52CF37781}" = Windows Liven sähköposti
"{0D261C88-454B-46FE-B43B-640E621BDA11}" = Windows Live Mail
"{0D3BEDD9-C4BF-4040-BE99-8DA827F265A7}" = Internet Explorer Toolbar 4.7 by SweetPacks
"{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}" = Galeria de Fotografias do Windows Live
"{10186F1A-6A14-43DF-A404-F0105D09BB07}" = Windows Live Mail
"{110668B7-54C6-47C9-BAC4-1CE77F156AF5}" = Windows Live Mesh
"{11417707-1F72-4279-95A3-01E0B898BBF5}" = Windows Live Mesh
"{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer
"{118D6CE9-5F18-42F9-958A-14676A629FDE}" = Iminent
"{1203DC60-D9BD-44F9-B372-2B8F227E6094}" = Windows Live Temel Parçalar
"{128133D3-037A-4C62-B1B7-55666A10587A}" = Windows Live UX Platform Language Pack
"{133D9D67-D475-4407-AC3C-D558087B2453}" = Windows Live Movie Maker
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{14C4C3B6-F1F4-401F-8C86-03E8E19AAC8C}" = clear.fi
"{168E7302-890A-4138-9109-A225ACAF7AD1}" = Windows Live Photo Common
"{17835B63-8308-427F-8CF5-D76E0D5FE457}" = Windows Live Essentials
"{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"{17F99FCE-8F03-4439-860A-25C5A5434E18}" = Windows Live Essentials
"{198EA334-8A3F-4CB2-9D61-6C10B8168A6F}" = Windows Live Writer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1A24F9E8-009D-40FC-ABED-2AAFFAB0F4F0}" = InterLok Driver Kit
"{1A72337E-D126-4BAF-AC89-E6122DB71866}" = Windows Liven valokuvavalikoima
"{1A82AE99-84D3-486D-BAD6-675982603E14}" = Windows Live Writer
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{220C7F8C-929D-4F71-9DC7-F7A6823B38E4}" = Windows Live UX Platform Language Pack
"{22B0E143-2B0B-435B-9F56-136A3D16065F}" = No23 Recorder
"{249EE21B-8EDD-4F36-8A23-E580E9DBE80A}" = Windows Live Mail
"{24DF33E0-F924-4D0D-9B96-11F28F0D602D}" = Windows Live UX Platform Language Pack
"{2511AAD7-82DF-4B97-B0B3-E1B933317010}" = Windows Live Writer Resources
"{25A381E1-0AB9-4E7A-ACCE-BA49D519CF4E}" = Windows Live Mail
"{25CD4B12-8CC5-433E-B723-C9CB41FA8C5A}" = Windows Live Writer
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = clear.fi
"{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}" = Evernote v. 4.5.1
"{28B9D2D8-4304-483F-AD71-51890A063A74}" = Windows Live Photo Common
"{29373E24-AC72-424E-8F2A-FB0F9436F21F}" = Windows Live Photo Common
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2BA5FD10-653F-4CAF-9CCD-F685082A1DC1}" = Windows Live Writer
"{2C4E06CC-1F04-4C25-8B3C-93A9049EC42C}" = Windows Live UX Platform Language Pack
"{2C865FB0-051E-4D22-AC62-428E035AEAF0}" = Windows Live Mesh
"{2D3E034E-F76B-410A-A169-55755D2637BB}" = Windows Live Mesh
"{2E50E321-4747-4EB5-9ECB-BBC6C3AC0F31}" = Windows Live Writer Resources
"{2F54E453-8C93-4B3B-936A-233C909E6CAC}" = Windows Live Messenger
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{3125D9DE-8D7A-4987-95F3-8A42389833D8}" = Windows Live Writer Resources
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{370F888E-42A7-4911-9E34-7D74632E17EB}" = Windows Live Photo Common
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{39F15B50-A977-4CA6-B1C3-6A8724CDA025}" = MyWinLocker 4
"{39F95B0B-A0B7-4FA7-BB6C-197DA2546468}" = Windows Live Mesh
"{3B72C1E0-26A1-40F6-8516-D50C651DFB3C}" = Windows Live Essentials
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}" = Norton Online Backup
"{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack
"{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA}" = Windows Live Photo Gallery
"{43AAE145-83CF-4C96-9A5E-756CEFCE879F}" = clear.fi Client
"{43B43577-2514-4CE0-B14A-7E85C17C0453}" = Windows Live Essentials
"{443B561F-DE1B-4DEF-ADD9-484B684653C7}" = Windows Live Messenger
"{4444F27C-B1A8-464E-9486-4C37BAB39A09}" = Фотогалерия на Windows Live
"{458F399F-62AC-4747-99F5-499BBF073D29}" = Windows Live Writer Resources
"{4664ED39-C80A-48F7-93CD-EBDCAFAB6CC5}" = Windows Live Writer Resources
"{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh
"{4736B0ED-F6A1-48EC-A1B7-C053027648F1}" = Galeria fotogràfica del Windows Live
"{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{48C0DC5E-820A-44F2-890E-29B68EDD3C78}" = Windows Live Writer
"{48F597DD-D397-4CFA-91A0-4C033A0113BD}" = Windows Live Mail
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A04DB63-8F81-4EF4-9D09-61A2057EF419}" = Windows Live Essentials
"{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}" = Windows Live Writer
"{4B744C85-DBB1-4038-B989-4721EB22C582}" = Windows Live Messenger
"{4C378B16-46B7-4DA1-A2CE-2EE676F74680}" = Windows Live UX Platform Language Pack
"{4D141929-141B-4605-95D6-2B8650C1C6DA}" = Windows Live UX Platform Language Pack
"{4D83F339-5A5C-4B21-8FD3-5D407B981E72}" = Windows Live Photo Common
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{506FC723-8E6C-4417-9CFF-351F99130425}" = Windows Live UX Platform Language Pack
"{523DF2BB-3A85-4047-9898-29DC8AEB7E69}" = Windows Live UX Platform Language Pack
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{542DA303-FB91-4731-9F37-6E518368D3B9}" = Windows Live Messenger
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{5495E9A4-501A-4D4C-87C9-E80916CA9478}" = Windows Live UX Platform Language Pack
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5C2F5C1B-9732-4F81-8FBF-6711627DC508}" = Windows Live Fotogalleri
"{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh
"{5D273F60-0525-48BA-A5FB-D0CAA4A952AE}" = Windows Live Movie Maker
"{5D2E7BD7-4B6F-4086-BA8A-E88484750624}" = Windows Live Writer Resources
"{5DA7D148-D2D2-4C67-8444-2F0F9BD88A06}" = Windows Live Writer
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso
"{625D45F0-5DCB-48BF-8770-C240A84DAAEB}" = Windows Live Mesh
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{63CF7D0C-B6E7-4EE9-8253-816B613CC437}" = Windows Live Mail
"{640798A0-A4FB-4C52-AC72-755134767F1E}" = Windows Live Movie Maker
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{644063FA-ABA3-42AC-A8AC-3EDC0706018B}" = Windows Live Mesh
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail
"{6807427D-8D68-4D30-AF5B-0B38F8F948C8}" = Windows Live Writer Resources
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69C9C672-400A-43A0-B2DE-9DB38C371282}" = Windows Live Writer
"{69CAC24D-B1DC-4B97-A1BE-FE21843108FE}" = Windows Live Writer Resources
"{6A4ABCDC-0A49-4132-944E-01FBCCB3465C}" = Windows Live UX Platform Language Pack
"{6A67578E-095B-4661-88F7-0B199CEC3371}" = Windows Live Messenger
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common
"{6CB36609-E3A6-446C-A3C1-C71E311D2B9C}" = Windows Live Movie Maker
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E8AFC13-F7B8-41D8-88AB-F1D0CFC56305}" = Windows Live Messenger
"{6EF2BE2C-3121-48B7-B7A6-C56046B3A588}" = Windows Live Movie Maker
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer" = WildTangent Games App (Acer Games)
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71527C7C-5289-4CB2-88C9-23344C0FF6C1}" = Windows Live Movie Maker
"{71A81378-79D5-40CC-9BDC-380642D1A87F}" = Windows Live Writer
"{71C95134-F6A9-45E7-B7B3-07CA6012BF2A}" = Windows Live Mesh
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{7327080F-6673-421F-BBD9-B618F357EEB3}" = Windows Live UX Platform Language Pack
"{734104DE-C2BF-412F-BB97-FCCE1EC94229}" = Windows Live Writer Resources
"{7373E17D-18E0-44A7-AC3A-6A3BFB85D3B3}" = Windows Live Movie Maker
"{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common
"{7465A996-0FCA-4D2D-A52C-F833B0829B5B}" = Windows Live Movie Maker
"{7496FD31-E5CB-4AE4-82D3-31099558BF6A}" = Windows Live Mesh
"{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}" = Windows Live UX Platform Language Pack
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{77477AEA-5757-47D8-8B33-939F43D82218}" = Windows Live UX Platform Language Pack
"{77F69CA1-E53D-4D77-8BA3-FA07606CC851}" = Фотоальбом Windows Live
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78DAE910-CA72-450E-AD22-772CB1A00678}" = Windows Live Mesh
"{78DBE8CE-61F6-4D6C-806C-A0FFF65F5E1D}" = Windows Live Messenger
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7ADFA72D-2A9F-4DEC-80A5-2FAA27E23F0F}" = Windows Live Photo Common
"{7AF8E500-B349-4A77-8265-9854E9A47925}" = Windows Live Movie Maker
"{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live
"{7C2A3479-A5A0-412B-B0E6-6D64CBB9B251}" = Windows Live Photo Common
"{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources
"{7D0DE76C-874E-4BDE-A204-F4240160693E}" = Windows Live Photo Common
"{7D1C7B9F-2744-4388-B128-5C75B8BCCC84}" = Windows Live Essentials
"{7D926AD2-16D6-42C2-8CA1-AB09E96040BA}" = Windows Live Writer Resources
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{7FF11E53-C002-4F40-8D68-6BE751E5DD62}" = Windows Live Writer Resources
"{804DE397-F82C-4867-9085-E0AA539A3294}" = Windows Live Writer
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{820D0BA3-ACD7-4FB9-A3A7-0ADF0C66A4BE}" = Windows Live Messenger
"{827D3E4A-0186-48B7-9801-7D1E9DD40C07}" = Windows Live Essentials
"{82803FF3-563F-414F-A403-8D4C167D4120}" = Windows Live Mail
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{84A411F9-40A5-4CDA-BF46-E09FBB2BC313}" = Windows Live Essentials
"{84DDEB49-F50B-4C47-BD93-8DDCC5B5C642}" = asiomulti
"{85373DA7-834E-4850-8AF5-1D99F7526857}" = Windows Live Photo Common
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{861B1145-7762-4794-B40C-3FF0A389DFE6}" = Windows Live Photo Gallery
"{885F1BCD-C344-4758-85BD-09640CF449A5}" = Windows Live Photo Gallery
"{8909CFA8-97BF-4077-AC0F-6925243FFE08}" = Windows Liven asennustyökalu
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8CF5D47D-27B7-49D6-A14F-10550B92749D}" = Windows Live UX Platform Language Pack
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FF3891F-01B5-4A71-BFCD-20761890471C}" = Windows Live Messenger
"{90140011-0066-0407-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Deutsch
"{924B4D82-1B97-48EB-8F1E-55C4353C22DB}" = Windows Live Mail
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{99BE7F5D-AB52-4404-9E03-4240FFAA7DE9}" = Windows Live Mesh
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DA3F03B-2CEE-4344-838E-117861E61FAF}" = Windows Live Mail
"{9DB90178-B5B0-45BD-B0A7-D40A6A1DF1CA}" = Windows Live Movie Maker
"{9F1D8E17-2AE6-4608-901D-42146D7D9C68}" = Digidesign Audio Drivers 7.0
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A0B91308-6666-4249-8FF6-1E11AFD75FE1}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A0C9DF2B-89B5-4483-8983-18A68200F1B4}" = SweetIM for Messenger 3.7
"{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker
"{A199DB88-E22D-4CE7-90AC-B8BE396D7BF4}" = Windows Live Movie Maker
"{A3389C72-1782-4BB4-BBAA-33345DE52E3F}" = Windows Live Messenger
"{A41A708E-3BE6-4561-855D-44027C1CF0F8}" = Windows Live Photo Common
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A7056D45-C63A-4FE4-A69D-FB54EF9B21BB}" = Windows Live Messenger
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB0B2113-5B96-4B95-8AD1-44613384911F}" = Windows Live Mesh
"{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{ABD534B7-E951-470E-92C2-CD5AF1735726}" = Windows Live Essentials
"{ABE2F2AA-7ADC-4717-9573-BF3F83C696AC}" = Windows Live Mail
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.6) MUI
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh
"{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}" = Windows Live Mail
"{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}" = Windows Live Photo Common
"{AF01B90A-D25C-4F60-AECD-6EEDF509DC11}" = Windows Live Mesh
"{B0AD205F-60D0-4084-AFB8-34D9A706D9A8}" = Windows Live Essentials
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B2BCA478-EC0F-45EE-A9E9-5EABE87EA72D}" = Windows Live Photo Common
"{B2E90616-C50D-4B89-A40D-92377AC669E5}" = Windows Live Messenger
"{B33B61FE-701F-425F-98AB-2B85725CBF68}" = Windows Live Photo Common
"{B3BE54A4-8DFE-4593-8E66-56AB7133B812}" = Windows Live Writer
"{B618C3BF-5142-4630-81DD-F96864F97C7E}" = Windows Live Essentials
"{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}" = Почта Windows Live
"{B7B67AA5-12DA-4F01-918D-B1BF66779D8A}" = Windows Live Writer Resources
"{B906C11A-D193-4143-9FA7-E2EE8A5A8F21}" = clear.fi
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}" = Dolby Advanced Audio v2
"{BAEE89D5-6E87-4F89-9603-A1C100479181}" = Windows Live Messenger
"{BD0C3887-64E6-41D8-9A38-BC6F34369352}" = Windows Live Messenger
"{BD4EBDB5-EB14-4120-BB04-BE0A26C7FB3E}" = Windows Live Photo Common
"{BD695C2F-3EA0-4DA4-92D5-154072468721}" = Windows Live Fotoğraf Galerisi
"{BF022D76-9F72-4203-B8FA-6522DC66DFDA}" = Windows Live Movie Maker
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{BFC47A0B-D487-4DF0-889E-D6D392DF31E0}" = Windows Live Messenger
"{C00C2A91-6CB3-483F-80B3-2958E29468F1}" = Συλλογή φωτογραφιών του Windows Live
"{C01FCACE-CC3D-49A2-ADC2-583A49857C58}" = Windows Live Essentials
"{C08D5964-C42F-48EE-A893-2396F9562A7C}" = Windows Live Mesh
"{C1C9D199-B4DD-4895-92DD-9A726A2FE341}" = Windows Live Writer
"{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder
"{C28D96C0-6A90-459E-A077-A6706F4EC0FC}" = Bing Bar
"{C29FC15D-E84B-4EEC-8505-4DED94414C59}" = Windows Live Writer Resources
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C95A5A77-622F-45CA-9540-84468FCB18B1}" = Windows Live Messenger
"{C9E1343D-E21E-4508-A1BE-04A089EC137D}" = Windows Live Messenger
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CB66242D-12B1-4494-82D2-6F53A7E024A3}" = Galerie foto Windows Live
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CBFD061C-4B27-4A89-ADD8-210316EEFA11}" = Windows Live Messenger
"{CD442136-9115-4236-9C14-278F6A9DCB3F}" = Windows Live Movie Maker
"{CD7CB1E6-267A-408F-877D-B532AD2C882E}" = Windows Live Photo Common
"{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}" = Windows Live Writer
"{CE929F09-3853-4180-BD90-30764BFF7136}" = גלריית התמונות של Windows Live
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF671BFE-6BA3-44E7-98C1-500D9C51D947}" = Windows Live Photo Gallery
"{D07B1FDA-876B-4914-9E9A-309732B6D44F}" = Windows Live Mail
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D299197D-CDEA-41A6-A363-F532DE4114FD}" = Windows Live UX Platform Language Pack
"{D31169F2-CD71-4337-B783-3E53F29F4CAD}" = Windows Live Mail
"{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D6CBB3B2-F510-483D-AE0D-1CF3F43CF1EE}" = Windows Live Writer Resources
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{DA29F644-2420-4448-8128-1331BE588999}" = Windows Live Writer
"{DAEF48AD-89C8-4A93-B1DD-45B7E4FB6071}" = Windows Live Movie Maker
"{DB1208F4-B2FE-44E9-BFE6-8824DBD7891B}" = Windows Live Movie Maker
"{DBAA2B17-D596-4195-A169-BA2166B0D69B}" = Windows Live Mail
"{DCAB6BA7-6533-44BF-9235-E5BF33B7431C}" = Windows Live Writer
"{DDC1E1BD-7615-4186-89E1-F5F43F9B6491}" = Windows Live Movie Maker
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer
"{DE8F99FD-2FC7-4C98-AA67-2729FDE1F040}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials
"{DF71ABBB-B834-41C0-BB58-80B0545D754C}" = Windows Live UX Platform Language Pack
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5377D46-83C5-445A-A1F1-830336B42A10}" = Windows Live Galerija fotografija
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E5DD4723-FE0B-436E-A815-DC23CF902A0B}" = Windows Live UX Platform Language Pack
"{E62E0550-C098-43A2-B54B-03FB1E634483}" = Windows Live Writer
"{E727A662-AF9F-4DEE-81C5-F4A1686F3DFC}" = Windows Live Writer Resources
"{E83DC314-C926-4214-AD58-147691D6FE9F}" = Основные компоненты Windows Live
"{E8524B28-3BBB-4763-AC83-0E83FE31C350}" = Windows Live Writer
"{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}" = Galería fotográfica de Windows Live
"{E9AD2143-26D5-4201-BED1-19DCC03B407D}" = Windows Live Messenger
"{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}" = Windows Live Writer Resources
"{EA777812-4905-4C08-8F6E-13BDCC734609}" = Windows Live UX Platform Language Pack
"{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{EEF99142-3357-402C-B298-DEC303E12D92}" = Windows Live 影像中心
"{EF7EAB13-46FC-49DD-8E3C-AAF8A286C5BB}" = Windows Live 程式集
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F0F5D89A-197C-495B-827E-3E98B811CD2E}" = Windows Live Photo Common
"{F0F9505B-3ACF-4158-9311-D0285136AA00}" = Windows Live Essentials
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F35DC85A-E96B-496B-ABE7-F04192824856}" = Windows Live Messenger
"{F4BEA6C1-AAC3-4810-AAEA-588E26E0F237}" = Windows Live UX Platform Language Pack
"{F52C5BE7-3F57-464E-8A54-908402E43CE8}" = Windows Live Writer Resources
"{F783464C-C7C6-4E9B-AC40-BC90E5414BAF}" = Windows Live Messenger
"{F7A46527-DF1F-4B0F-9637-98547E189442}" = Windows Live Galeria de Fotos
"{F7E80BA7-A09D-4DD1-828B-C4A0274D4720}" = Windows Live Mesh
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail
"{FB1AC1F1-8F47-4DCE-A1ED-0DFBA0F455B4}" = Driver Mender
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}" = معرض صور Windows Live
"{FCDE76CB-989D-4E32-9739-6A272D2B0ED7}" = Windows Live Mesh
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"{FF105207-8423-4E13-B0B1-50753170B245}" = Windows Live Movie Maker
"{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker
"{FF737490-5A2D-4269-9D82-97DB2F7C0B09}" = Windows Live Movie Maker
"{FFFA0584-8E3D-4195-8283-CCA3AD73C746}" = Windows Live Messenger
"7-Zip" = 7-Zip 9.20
"Acer Registration" = Acer Registration
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"ASIO4ALL" = ASIO4ALL
"Audacity_is1" = Audacity 2.0.3
"AVG SafeGuard toolbar" = AVG SafeGuard toolbar
"AVS Audio Converter_is1" = AVS Audio Converter 7
"AVS Audio Editor_is1" = AVS Audio Editor 7.1
"AVS Audio Recorder_is1" = AVS Audio Recorder version 4.0
"BabylonToolbar" = Babylon toolbar on IE
"Bandicam" = Bandicam
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"findlyrics@findlyrics.co" = FindLyrics
"Free Audio Converter_is1" = Free Audio Converter version 5.0.23.320
"Free Download Manager_is1" = Free Download Manager 3.9.2
"FREE Hi-Q Recorder_is1" = FREE Hi-Q Recorder 1.92
"Free Video to MP3 Converter_is1" = Free Video to MP3 Converter version 5.0.23.320
"Free YouTube Download_is1" = Free YouTube Download version 3.2.1.320
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.12.1.320
"Google Chrome" = Google Chrome
"Identity Card" = Identity Card
"IMBoosterARP" = Iminent
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
"InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}" = Acer Backup Manager
"InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = clear.fi
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"Live 8.0.7" = Live 8.0.7
"LManager" = Launch Manager
"Maxthon3" = Maxthon Cloud Browser
"McAfee Security Scan" = McAfee Security Scan Plus
"Mozilla Firefox 20.0.1 (x86 de)" = Mozilla Firefox 20.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSC" = McAfee SecurityCenter
"Native Instruments Audio Kontrol 1" = Native Instruments Audio Kontrol 1
"Native Instruments Audio Kontrol 1 Driver" = Native Instruments Audio Kontrol 1 Driver
"Native Instruments Audio Kontrol 1 Support Files" = Native Instruments Audio Kontrol 1 Support Files
"Native Instruments Controller Editor" = Native Instruments Controller Editor
"Native Instruments Service Center" = Native Instruments Service Center
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"Opera 12.14.1738" = Opera 12.14
"Red Dot Forever_is1" = Red Dot Forever 1.04
"Software Informer_is1" = Software Informer 1.1
"SweetIM Bundle by SweetPacks" = SweetIM Bundle by SweetPacks
"Veetle TV" = Veetle TV
"VLC media player" = VLC media player 2.0.5
"Wajam" = Wajam
"WildTangent acer Master Uninstall" = Acer Games
"WinLiveSuite" = Windows Live Essentials
"WNLT" = SweetPacks Updater
"WTA-01116889-68fa-43fb-9b2a-77736ce1f189" = Insaniquarium Deluxe
"WTA-0995765d-bf2b-4b65-9c91-a42069cbdeb8" = Plants vs. Zombies - Game of the Year
"WTA-1249d92d-4266-45b7-b4c7-282bc75d727f" = Jewel Match 3
"WTA-162f53b3-23e7-416c-970e-86f6a45929db" = Polar Bowler
"WTA-2daf5dc8-a32f-4964-94ad-cae8d85ea079" = Virtual Villagers 4 - The Tree of Life
"WTA-4b3423db-4276-4cac-b7fe-223946a7ee1e" = Zuma Deluxe
"WTA-633cacb7-ca7d-4fb1-86cf-f92721e0378b" = Torchlight
"WTA-67a70a1e-aa57-4e96-bf0d-00a25b43d64d" = Penguins!
"WTA-7acdc6eb-2549-4eb7-b40a-33998440e3eb" = Agatha Christie - Death on the Nile
"WTA-86f250c9-aa13-4e40-be38-e712072921dc" = Final Drive: Nitro
"WTA-960ad3a0-ee2e-447f-ab72-b281c0cfcccb" = FATE
"WTA-964bd854-029d-4049-ba44-1c285299bb0d" = Jewel Quest Solitaire
"WTA-98dfe5e4-853e-4384-98f7-6c809e3a9be1" = Wedding Dash
"WTA-a020d2cc-8699-4e3f-a19d-ab0817caeb0a" = Chuzzle Deluxe
"WTA-a6b5f73a-eb75-4114-96bd-d7dc0187f646" = Bejeweled 2 Deluxe
"WTA-c02631f0-e71e-4cb8-bc39-546a4b3e8f0b" = Mystery of Mortlake Mansion
"WTA-c8684b67-035b-435c-81e9-157774c0cefd" = Crazy Chicken Kart 2
"WTA-df75aa1d-2387-4afe-a3a8-ccb0920dfeea" = Slingo Deluxe
"WTA-fb910dca-fc81-4d04-8e98-2eb84e3ed531" = John Deere Drive Green
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{206a7328-437f-4bd9-b53e-12bfee24d588}" = G-Filter
"DSite" = Update for Qtrax Music Downloader
"MyFreeCodec" = MyFreeCodec
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 22.03.2013 07:51:58 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: McSvHost.exe, Version: 2.6.259.0,
Zeitstempel: 0x5040f1f9 Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x780 Startzeit der fehlerhaften Anwendung: 0x01ce26f34480930e
Pfad
der fehlerhaften Anwendung: C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
Pfad
des fehlerhaften Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: e61eb48f-92e6-11e2-b3d3-dc0ea115915a
Error - 22.03.2013 07:53:01 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: McSvHost.exe, Version: 2.6.259.0,
Zeitstempel: 0x5040f1f9 Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x15b8 Startzeit der fehlerhaften Anwendung: 0x01ce26f3cd231fa8
Pfad
der fehlerhaften Anwendung: C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
Pfad
des fehlerhaften Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 0bb69003-92e7-11e2-b3d3-dc0ea115915a
Error - 22.03.2013 07:54:12 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: McSvHost.exe, Version: 2.6.259.0,
Zeitstempel: 0x5040f1f9 Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0xebc Startzeit der fehlerhaften Anwendung: 0x01ce26f3f6c400b1
Pfad
der fehlerhaften Anwendung: C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
Pfad
des fehlerhaften Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 35f94e9f-92e7-11e2-b3d3-dc0ea115915a
Error - 22.03.2013 07:54:12 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: mcagent.exe, Version: 11.6.476.0,
Zeitstempel: 0x50f48ced Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x1850 Startzeit der fehlerhaften Anwendung: 0x01ce26f3f8186578
Pfad
der fehlerhaften Anwendung: c:\PROGRA~1\mcafee.com\agent\mcagent.exe Pfad des fehlerhaften
Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 36184082-92e7-11e2-b3d3-dc0ea115915a
Error - 22.03.2013 08:20:59 | Computer Name = melodja-chaosit | Source = WinMgmt | ID = 10
Description =
Error - 22.03.2013 08:22:37 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: McSvHost.exe, Version: 2.6.259.0,
Zeitstempel: 0x5040f1f9 Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x814 Startzeit der fehlerhaften Anwendung: 0x01ce26f77efad55a
Pfad
der fehlerhaften Anwendung: C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
Pfad
des fehlerhaften Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 2e703deb-92eb-11e2-a2fa-dc0ea115915a
Error - 22.03.2013 08:22:40 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: mcagent.exe, Version: 11.6.476.0,
Zeitstempel: 0x50f48ced Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x874 Startzeit der fehlerhaften Anwendung: 0x01ce26f7a8170594
Pfad
der fehlerhaften Anwendung: C:\Program Files\mcafee.com\agent\mcagent.exe Pfad des
fehlerhaften Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 3004e7da-92eb-11e2-a2fa-dc0ea115915a
Error - 22.03.2013 08:23:47 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: McSvHost.exe, Version: 2.6.259.0,
Zeitstempel: 0x5040f1f9 Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x1974 Startzeit der fehlerhaften Anwendung: 0x01ce26f81957a837
Pfad
der fehlerhaften Anwendung: C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
Pfad
des fehlerhaften Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 57a610aa-92eb-11e2-a2fa-dc0ea115915a
Error - 22.03.2013 08:24:00 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: mcagent.exe, Version: 11.6.476.0,
Zeitstempel: 0x50f48ced Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x1690 Startzeit der fehlerhaften Anwendung: 0x01ce26f821bac16e
Pfad
der fehlerhaften Anwendung: c:\PROGRA~1\mcafee.com\agent\mcagent.exe Pfad des fehlerhaften
Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 5fac5436-92eb-11e2-a2fa-dc0ea115915a
Error - 22.03.2013 08:24:48 | Computer Name = melodja-chaosit | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: McSvHost.exe, Version: 2.6.259.0,
Zeitstempel: 0x5040f1f9 Name des fehlerhaften Moduls: mcmscshm.dll, Version: 11.6.434.0,
Zeitstempel: 0x5050b568 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000003dcd5
ID
des fehlerhaften Prozesses: 0x17c0 Startzeit der fehlerhaften Anwendung: 0x01ce26f81b9553d9
Pfad
der fehlerhaften Anwendung: C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
Pfad
des fehlerhaften Moduls: c:\PROGRA~1\mcafee\msc\mcmscshm.dll Berichtskennung: 7c5bc963-92eb-11e2-a2fa-dc0ea115915a
[ System Events ]
Error - 16.04.2013 11:01:38 | Computer Name = melodja-chaosit | Source = Service Control Manager | ID = 7034
Description = Dienst "McAfee Personal Firewall Service" wurde unerwartet beendet.
Dies ist bereits 3 Mal passiert.
Error - 16.04.2013 11:01:38 | Computer Name = melodja-chaosit | Source = Service Control Manager | ID = 7034
Description = Dienst "McAfee Services" wurde unerwartet beendet. Dies ist bereits
3 Mal passiert.
Error - 16.04.2013 11:01:38 | Computer Name = melodja-chaosit | Source = Service Control Manager | ID = 7034
Description = Dienst "McAfee VirusScan Announcer" wurde unerwartet beendet. Dies
ist bereits 3 Mal passiert.
Error - 16.04.2013 11:01:38 | Computer Name = melodja-chaosit | Source = Service Control Manager | ID = 7034
Description = Dienst "McAfee Network Agent" wurde unerwartet beendet. Dies ist bereits
3 Mal passiert.
Error - 16.04.2013 11:01:38 | Computer Name = melodja-chaosit | Source = Service Control Manager | ID = 7034
Description = Dienst "McAfee Proxy Service" wurde unerwartet beendet. Dies ist bereits
3 Mal passiert.
Error - 16.04.2013 11:01:38 | Computer Name = melodja-chaosit | Source = Service Control Manager | ID = 7034
Description = Dienst "McAfee Anti-Spam Service" wurde unerwartet beendet. Dies ist
bereits 3 Mal passiert.
Error - 16.04.2013 13:34:12 | Computer Name = melodja-chaosit | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =
Error - 16.04.2013 23:13:14 | Computer Name = melodja-chaosit | Source = ipnathlp | ID = 31004
Description =
Error - 17.04.2013 12:33:04 | Computer Name = melodja-chaosit | Source = ipnathlp | ID = 31004
Description =
Error - 17.04.2013 12:33:05 | Computer Name = melodja-chaosit | Source = ipnathlp | ID = 31004
Description =
< End of report >
|
|
21.04.2013, 12:58
| #4 |
| | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? OTL Logfile: Code:
ATTFilter OTL logfile created on: 21.04.2013 13:15:24 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\melodja-chaosita\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy 7.86 Gb Total Physical Memory | 5.11 Gb Available Physical Memory | 65.08% Memory free 15.71 Gb Paging File | 11.59 Gb Available in Paging File | 73.76% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 683.54 Gb Total Space | 578.44 Gb Free Space | 84.62% Space Free | Partition Type: NTFS Computer Name: MELODJA-CHAOSIT | User Name: melodja-chaosita | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\melodja-chaosita\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe (Adobe Systems, Inc.) PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_169_ActiveX.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe (Iminent) PRC - C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe () PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.0.0\ToolbarUpdater.exe () PRC - C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe (Maxthon International ltd.) PRC - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.) PRC - C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung) PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\Iminent\Iminent.exe (Iminent) PRC - C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (Iminent) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.) PRC - C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe (Wajam) PRC - C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated) PRC - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe (CyberLink Corp.) PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation) PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe (CyberLink Corp.) PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe () PRC - C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated) PRC - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation) PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation) PRC - C:\Program Files (x86)\Software Informer\softinfo.exe (Informer Technologies, Inc.) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation) PRC - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.) ========== Modules (No Company Name) ========== MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll () MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll () MOD - C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe () MOD - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.0.0\SiteSafety.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\639b8ca8782d3a221cb2ba8fac3d3a1b\System.Web.Services.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\40ec6eb5a95de56636ea90f638d1eb2c\System.ServiceProcess.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\37b9c72e90e8ff7625728e74b2cf344e\System.ServiceModel.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\1a6d3252398f388e79db217aca0ff1fb\System.IdentityModel.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuratio#\def2358c075217e9cfa2e080cd0dec52\System.Configuration.Install.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\f701e282ffdd44e94c33ba8c0b1b21bf\System.EnterpriseServices.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\f701e282ffdd44e94c33ba8c0b1b21bf\System.EnterpriseServices.Wrapper.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\ef9efe2d77dcdf2569f1966318793046\System.Runtime.DurableInstancing.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\e7b22332d9b19bf80352f14ba842ba01\System.Transactions.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\18f1732ae7f2dfa7ff07829f87f3bbd4\System.Runtime.Serialization.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\3a93e820db28ae77a6bc36dfdf5bbeb9\SMDiagnostics.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\2297aa4cb17f43a679db50ea05b2b811\System.Xaml.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\c627e9b7f10b01db43645284e601f255\PresentationFramework.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\6e5a88684e45c45cddf654a902b9c789\PresentationCore.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\43b2dfa02adc553c8a0bd030df7d5795\System.Data.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\0783e0b01fd91c2c42abe0cb3e5d0c19\System.Windows.Forms.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\5434074a2458956c9a421cf3a8aab676\System.Core.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\54fef0787e00fc172cf386ba94bb7f10\WindowsBase.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\353fd535963fff2f9086c2f655a47ace\System.Xml.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\293b5e60e01e652ae1bf4096bc6e9f9e\System.Drawing.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\7600fa0122191abced58b5e98303dfb3\System.Configuration.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\73507c607e4c46f5e04122de0cc5f3fd\System.ni.dll () MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3ef97e67e8d2c09fd2495ed952e1afbc\mscorlib.ni.dll () MOD - C:\Program Files (x86)\Maxthon\Addons\CloudsSvc\MxCloudsSvc.dll () MOD - C:\Program Files (x86)\Maxthon\bin\Maxzlib.dll () MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll () MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe () MOD - C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll () ========== Services (SafeList) ========== SRV:64bit: - (NIHardwareService) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe File not found SRV:64bit: - (GFilterSvc) -- C:\Windows\SysNative\GFilterSvc.exe () SRV:64bit: - (cmdkey64) -- C:\Windows\SysNative\nosmaliz.exe () SRV:64bit: - (mfevtp) -- C:\Windows\SysNative\mfevtps.exe (McAfee, Inc.) SRV:64bit: - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe () SRV:64bit: - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe () SRV:64bit: - (MSK80Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV:64bit: - (McProxy) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV:64bit: - (McOobeSv) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV:64bit: - (McNASvc) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV:64bit: - (McNaiAnn) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV:64bit: - (mcmscsvc) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV:64bit: - (McMPFSvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV:64bit: - (McAfee SiteAdvisor Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (SProtection) -- C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe (Iminent) SRV - (vToolbarUpdater15.0.0) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.0.0\ToolbarUpdater.exe () SRV - (SearchAnonymizer) -- C:\Users\melodja-chaosita\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe () SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) SRV - (McComponentHostService) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe (McAfee, Inc.) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (WajamUpdater) -- C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe (Wajam) SRV - (Live Updater Service) -- C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated) SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation) SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation) SRV - (ePowerSvc) -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated) SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) SRV - (EgisTec Ticket Service) -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe (Egis Technology Inc. ) SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.) SRV - (GREGService) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated) SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation) SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) SRV - (McODS) -- C:\Programme\mcafee\virusscan\mcods.exe (McAfee, Inc.) SRV - (McAWFwk) -- c:\Programme\mcafee\msc\McAWFwk.exe (McAfee, Inc.) SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) SRV - (TurboBoost) -- C:\Programme\Intel\TurboBoost\TurboBoost.exe (Intel(R) Corporation) SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.) SRV - (wlcrasvc) -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation) SRV - (NOBU) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (Symantec Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (DigiRefresh) -- C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.) ========== Driver Services (SafeList) ========== DRV:64bit: - (avgtp) -- C:\Windows\SysNative\drivers\avgtpx64.sys (AVG Technologies) DRV:64bit: - (mwlPSDVDisk) -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.) DRV:64bit: - (mwlPSDFilter) -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.) DRV:64bit: - (mwlPSDNServ) -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.) DRV:64bit: - (nvpciflt) -- C:\Windows\SysNative\drivers\nvpciflt.sys (NVIDIA Corporation) DRV:64bit: - (ssudobex) -- C:\Windows\SysNative\drivers\ssudobex.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:64bit: - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:64bit: - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation) DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation) DRV:64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation) DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation) DRV:64bit: - (cfwids) -- C:\Windows\SysNative\drivers\cfwids.sys (McAfee, Inc.) DRV:64bit: - (mfewfpk) -- C:\Windows\SysNative\drivers\mfewfpk.sys (McAfee, Inc.) DRV:64bit: - (mferkdet) -- C:\Windows\SysNative\drivers\mferkdet.sys (McAfee, Inc.) DRV:64bit: - (mfehidk) -- C:\Windows\SysNative\drivers\mfehidk.sys (McAfee, Inc.) DRV:64bit: - (mfefirek) -- C:\Windows\SysNative\drivers\mfefirek.sys (McAfee, Inc.) DRV:64bit: - (mfeavfk) -- C:\Windows\SysNative\drivers\mfeavfk.sys (McAfee, Inc.) DRV:64bit: - (mfeapfk) -- C:\Windows\SysNative\drivers\mfeapfk.sys (McAfee, Inc.) DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation) DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation) DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation) DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation) DRV:64bit: - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NTI Corporation) DRV:64bit: - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NTI Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation) DRV:64bit: - (bScsiMSa) -- C:\Windows\SysNative\drivers\bScsiMSa.sys (Broadcom Corporation) DRV:64bit: - (k57nd60a) -- C:\Windows\SysNative\drivers\k57nd60a.sys (Broadcom Corporation) DRV:64bit: - (bScsiSDa) -- C:\Windows\SysNative\drivers\bScsiSDa.sys (Broadcom Corporation) DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation) DRV:64bit: - (ak1avs) -- C:\Windows\SysNative\drivers\ak1avs.sys (Native Instruments GmbH) DRV:64bit: - (ak1usb_svc) -- C:\Windows\SysNative\drivers\ak1usb.sys (Native Instruments GmbH) DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation) DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation) DRV:64bit: - (b57xdmp) -- C:\Windows\SysNative\drivers\b57xdmp.sys (Broadcom Corporation) DRV:64bit: - (b57xdbd) -- C:\Windows\SysNative\drivers\b57xdbd.sys (Broadcom Corporation) DRV:64bit: - (TurboB) -- C:\Windows\SysNative\drivers\TurboB.sys (Intel(R) Corporation) DRV:64bit: - (RMCAST) -- C:\Windows\SysNative\drivers\rmcast.sys (Microsoft Corporation) DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation) DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation) DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated) DRV:64bit: - (ak1avs_x64) -- C:\Windows\SysNative\drivers\ak1avs_x64.sys (Native Instruments GmbH) DRV:64bit: - (ak1usb_x64) -- C:\Windows\SysNative\drivers\ak1usb_x64.sys (Native Instruments GmbH) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (LVUSBS64) -- C:\Windows\SysNative\drivers\LVUSBS64.sys (Logitech Inc.) DRV:64bit: - (PID_PEPI) -- C:\Windows\SysNative\drivers\LV302V64.SYS (Logitech Inc.) DRV:64bit: - (lvpepf64) -- C:\Windows\SysNative\drivers\lv302a64.sys (Logitech Inc.) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) DRV - (TPkd) -- C:\Windows\SysWow64\drivers\TPkd.sys (PACE Anti-Piracy, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://home.sweetim.com/?crg=3.1010000&st=12&barid={F524F5AF-0250-4FE8-BF51-3E5540D75876} IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = hxxp://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={F524F5AF-0250-4FE8-BF51-3E5540D75876} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/ IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.) IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = hxxp://www.delta-search.com/?q={searchTerms}&affID=119370&babsrc=SP_ss&mntrId=2C1EF6D53D4AC345 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = hxxp://mysearch.avg.com/search?cid={F45B0E9E-634E-4073-A946-9D98FCFE22B8}&mid=fd911373923847d38b960d47e7f178a9-f067352ce455d93e4a3c170f4454d9b13424fea3&lang=en&ds=ft012&pr=sa&d=2013-04-03 08:42:40&v=15.0.0.2&pid=safeguard&sg=2&sap=dsp&q={searchTerms} IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={F524F5AF-0250-4FE8-BF51-3E5540D75876}&crg=3.1010000&st=23 IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.selectedEngine: "Delta Search" FF - prefs.js..browser.startup.homepage: "hxxp://www.google.ch/" FF - prefs.js..extensions.enabledAddons: findlyrics%40findlyrics.co:1.110 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1 FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL () FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll () FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.0.0\\npsitesafety.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.) FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~2\mcafee\msc\npmcsn~1.dll () FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.19: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll () FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\melodja-chaosita\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2013.03.05 04:25:25 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}: C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\webbooster@iminent.com: C:\Program Files (x86)\Iminent\webbooster@iminent.com [2013.03.09 17:35:07 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\15.0.0.2 [2013.04.03 08:42:46 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.04.12 17:51:37 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}: C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi [2013.02.14 17:41:10 | 000,037,909 | ---- | M] () FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\findlyrics@findlyrics.co: C:\Program Files (x86)\FindLyrics\FF\ [2013.04.03 14:39:54 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.04.12 17:51:37 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.03.04 19:55:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\Extensions [2013.04.04 10:40:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\Firefox\Profiles\z7frgny3.default\Extensions [2013.04.04 02:57:51 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013.04.03 14:40:16 | 000,001,294 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\searchplugins\delta.xml [2013.03.27 20:39:56 | 000,002,429 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\searchplugins\Web Search.xml [2013.04.12 17:51:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2013.04.03 14:39:54 | 000,000,000 | ---D | M] ("FindLyrics") -- C:\PROGRAM FILES (X86)\FINDLYRICS\FF [2013.04.12 17:51:37 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2013.03.09 01:38:30 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2013.04.03 14:40:14 | 000,006,468 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml [2013.03.09 01:38:30 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2013.03.09 01:38:30 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2013.03.09 01:38:30 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2013.04.03 08:42:46 | 000,003,725 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\safeguard-secure-search.xml [2013.03.09 01:38:30 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2013.03.09 01:38:30 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - default_search_provider: Delta Search (Enabled) CHR - default_search_provider: search_url = hxxp://www.delta-search.com/?q={searchTerms}&affID=119370&babsrc=SP_ss&mntrId=2C1EF6D53D4AC345 CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter} CHR - homepage: hxxp://www.delta-search.com/?affID=119370&babsrc=HP_ss&mntrId=2C1EF6D53D4AC345 CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll CHR - plugin: Windows Live\u00C2\u2122 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Google Update (Enabled) = C:\Users\melodja-chaosita\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~2\mcafee\msc\npmcsn~1.dll CHR - Extension: Google Docs = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google Drive = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google-Suche = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: AdBlock = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\ CHR - Extension: Iminent = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.15.4.1_0\ CHR - Extension: FindLyrics = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmhhdaimhfblnamlcdijbaakkifakade\1.110_0\ CHR - Extension: AVG SafeGuard toolbar = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\15.0.0.2_0\ CHR - Extension: Google Mail = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.) O2:64bit: - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll File not found O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.) O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO) O2 - BHO: (FindLyrics) - {44C9CC91-6A4A-4579-B4B5-899ECDC18DC6} - C:\Program Files (x86)\FindLyrics\FindLyrics.dll (FindLyrics) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\15.0.0.2\AVG SafeGuard toolbar_toolbar.dll () O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (Iminent) O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam) O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.) O2 - BHO: (Free Download Manager) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll File not found O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.) O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found. O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.) O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\15.0.0.2\AVG SafeGuard toolbar_toolbar.dll () O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.) O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found. O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found O4:64bit: - HKLM..\Run: [Ocs_SM] C:\Users\melodja-chaosita\AppData\Roaming\OCS\SM\SearchAnonymizer.exe (OCS) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [Power Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated) O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [ArcadeMovieService] C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe (CyberLink Corp.) O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation) O4 - HKLM..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.) O4 - HKLM..\Run: [Dolby Advanced Audio v2] C:\Dolby PCEE4\pcee4.exe (Dolby Laboratories Inc.) O4 - HKLM..\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe (Iminent) O4 - HKLM..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (Iminent) O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation) O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation) O4 - HKLM..\Run: [SuiteTray] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.) O4 - HKLM..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe () O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung) O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [Driver Mender] C:\Program Files (x86)\Driver Mender\Driver Mender\DriverMender.exe (PC Drivers Headquarters) O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [Facebook Update] C:\Users\melodja-chaosita\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [fsm] File not found O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup File not found O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung) O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [Software Informer] C:\Program Files (x86)\Software Informer\softinfo.exe (Informer Technologies, Inc.) O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1004..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1004..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1004..\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:64bit: - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm () O8:64bit: - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm () O8:64bit: - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm () O8:64bit: - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm File not found O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm File not found O8:64bit: - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm () O8 - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm () O8 - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm () O8 - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm () O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm File not found O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm File not found O8 - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm () O9:64bit: - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll File not found O9:64bit: - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll File not found O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) O9 - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll File not found O9 - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll File not found O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.98.37.128 194.230.55.99 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C6E06F3-38A7-4A9B-97B2-6D6D7DB6DE25}: DhcpNameServer = 212.98.37.128 194.230.55.99 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91FBD89D-0960-4A8E-BE9B-CEA020D04099}: DhcpNameServer = 212.98.37.128 194.230.55.99 O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.) O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.) O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.0.0\ViProtocol.dll () O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Programme\mcafee\msc\McSnIePl64.dll (McAfee, Inc.) O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll (McAfee, Inc.) O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.04.21 04:36:49 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{34652D0A-1A67-4538-8C9C-BF634925AF86} [2013.04.21 02:57:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Dot Forever [2013.04.21 02:57:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Dot Forever [2013.04.20 15:25:45 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{0973D5F0-1737-43B2-8E0B-497CD819F5BF} [2013.04.19 18:50:01 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{A528F4BB-6911-4034-94AE-A14322F7B062} [2013.04.18 19:53:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee [2013.04.18 19:52:40 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{98C8DAB9-0DC0-4223-8DA9-C10B3377DBB2} [2013.04.17 02:50:38 | 000,000,000 | ---D | C] -- C:\Windows\Sun [2013.04.17 02:50:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2013.04.17 02:50:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2013.04.17 02:50:03 | 000,788,896 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll [2013.04.17 02:50:02 | 000,866,720 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll [2013.04.17 02:50:02 | 000,263,584 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe [2013.04.17 02:49:59 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2013.04.17 02:49:59 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2013.04.17 02:49:59 | 000,095,648 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll [2013.04.17 02:49:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2013.04.16 16:58:59 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{FC9A99AC-4E55-409B-832C-8DD6501FE871} [2013.04.15 22:06:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd [2013.04.15 18:35:12 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{499A1259-1D60-4343-BA44-4DD75E150089} [2013.04.14 02:07:57 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{4A7CE671-9185-442C-B2D9-9C846EF21963} [2013.04.13 14:07:38 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{AF85DCA3-84CF-4965-8637-B82664C2F963} [2013.04.12 17:51:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2013.04.12 17:30:36 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{82039216-1D9A-4B1C-A138-C5AC1BF48258} [2013.04.11 16:47:55 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013.04.11 16:47:55 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013.04.11 16:47:54 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013.04.11 16:47:54 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013.04.11 16:47:54 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013.04.11 16:47:54 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013.04.11 16:47:54 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013.04.11 16:47:54 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013.04.11 16:47:53 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013.04.11 16:47:53 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013.04.11 16:47:53 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013.04.11 16:47:53 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013.04.11 16:47:52 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013.04.11 16:47:52 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013.04.11 16:47:52 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013.04.11 16:45:58 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{A0873B08-520F-4CB6-927E-57C403542033} [2013.04.11 07:50:39 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{62D1F4E2-C081-4E66-86F8-81613C991618} [2013.04.10 19:49:21 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{23018036-AFD6-42B8-BB0C-077551D3E38E} [2013.04.10 04:40:26 | 005,550,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013.04.10 04:40:25 | 003,968,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2013.04.10 04:40:25 | 003,913,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2013.04.10 04:40:25 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe [2013.04.10 04:40:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll [2013.04.10 04:40:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll [2013.04.09 22:34:08 | 000,000,000 | ---D | C] -- C:\My Recordings [2013.04.09 01:22:54 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{344F57C9-FD84-4EDB-8487-62D04F1E994A} [2013.04.08 13:13:19 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{E3C15893-2F05-40FB-A65A-C5C274C5FC12} [2013.04.04 20:20:20 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{C784FF06-DBBB-48A7-A109-2EA0244FE1A9} [2013.04.04 10:49:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Veetle [2013.04.03 23:31:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip [2013.04.03 20:22:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus [2013.04.03 20:16:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2013.04.03 17:06:34 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\Malwarebytes [2013.04.03 17:06:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013.04.03 16:54:51 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{2E94B8C4-9F13-41D2-89B9-FAB4A0905B4E} [2013.04.03 14:40:59 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\BANDISOFT [2013.04.03 14:40:56 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\Documents\Bandicam [2013.04.03 14:40:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam [2013.04.03 14:40:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bandicam [2013.04.03 14:40:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BandiMPEG1 [2013.04.03 14:39:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FindLyrics [2013.04.03 09:00:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CamStudio 2.7 [2013.04.03 08:51:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip [2013.04.03 08:51:17 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.04.03 08:47:28 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013.04.03 08:46:57 | 000,000,000 | ---D | C] -- C:\MRecord [2013.04.03 08:43:40 | 000,000,000 | ---D | C] -- C:\ProgramData\UAB [2013.04.03 08:43:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Driver Mender [2013.04.03 08:43:36 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\PC_Drivers_Headquarters [2013.04.03 08:42:49 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\AVG SafeGuard toolbar [2013.04.03 08:42:45 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG SafeGuard toolbar [2013.04.03 08:42:39 | 000,039,768 | ---- | C] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys [2013.04.03 08:42:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVG Secure Search [2013.04.03 08:42:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG SafeGuard toolbar [2013.04.03 08:42:29 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files [2013.04.03 08:42:27 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\SmartPCFix [2013.04.03 08:41:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverNavigator [2013.04.03 08:41:21 | 000,000,000 | ---D | C] -- C:\Program Files\Easeware [2013.04.03 08:27:47 | 001,355,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvbvm50.dll [2013.04.03 08:27:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FREE Hi-Q Recorder [2013.04.03 08:27:46 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comdlg32.ocx [2013.04.03 08:27:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FREE Hi-Q Recorder [2013.04.03 08:15:21 | 000,000,000 | ---D | C] -- C:\Downloads [2013.04.03 08:10:28 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\Free Download Manager [2013.04.03 08:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager [2013.04.03 08:10:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Free Download Manager [2013.04.03 04:54:25 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{08D2150C-454E-44EA-98E7-7A8C74A54ADB} [2013.04.02 21:53:58 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\Facebook [2013.04.02 14:54:15 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{2AD22DE9-6F47-4EE2-AB85-795C5F781DD9} [2013.04.01 15:13:48 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{B94A0907-0A2F-44FA-839E-6C2820023542} [2013.03.30 12:53:27 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{54E372C0-1658-4740-899F-341722DFAA63} [2013.03.30 00:53:02 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{19632657-D7BB-48F2-AE86-33F7D673BF40} [2013.03.27 20:22:48 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{9088BD87-42BA-448D-B0C8-FF7FE750B805} [2013.03.27 20:14:36 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{5966811D-A656-48F5-BF94-31BCEEEE6BA0} [2013.03.27 20:08:28 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{06764718-F9E2-4734-92BD-1EACE625F3B1} [2013.03.27 14:31:18 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\Smartbar [2013.03.27 12:29:42 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\OpenCandy [2013.03.27 12:29:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft [2013.03.27 12:29:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft [2013.03.27 12:22:59 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\musik [2013.03.27 07:41:40 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{EDB281E8-5A1C-406A-BF8B-24E0A24ED8D1} [2013.03.26 12:51:50 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys [2013.03.26 12:42:18 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{A72BDE86-8C7E-417F-A683-CC31AB535E08} [2013.03.23 14:47:37 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{B7269235-0099-4B15-A98E-10679E73D0A8} [2013.03.22 14:22:15 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{236E9B2F-D05E-4EF2-BA3A-370838DD579E} [2013.03.22 13:51:23 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{A66AC783-8874-4CA7-8F8D-0AC114E38AE3} [2007.08.13 18:46:00 | 000,102,912 | ---- | C] (Albert L Faber) -- C:\Users\melodja-chaosita\AppData\Local\CDRip.dll [2007.01.18 22:09:54 | 000,623,616 | ---- | C] (Ivan Bischof ©2003 - 2005) -- C:\Users\melodja-chaosita\AppData\Local\No23 Recorder.exe [2006.12.11 20:13:14 | 000,013,872 | ---- | C] (Un4seen Developments) -- C:\Users\melodja-chaosita\AppData\Local\basscd.dll [2006.12.11 20:13:12 | 000,097,336 | ---- | C] (Un4seen Developments) -- C:\Users\melodja-chaosita\AppData\Local\bass.dll ========== Files - Modified Within 30 Days ========== [2013.04.21 13:00:00 | 000,000,408 | ---- | M] () -- C:\Windows\tasks\Acer Registration - Reminder Recall task.job [2013.04.21 12:59:01 | 000,000,972 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3297799391-2978897314-3442018958-1001UA.job [2013.04.21 12:52:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013.04.21 12:39:00 | 000,001,130 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.04.21 12:38:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.04.21 05:37:12 | 000,001,495 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Local\RecConfig.xml [2013.04.21 04:42:50 | 000,016,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.04.21 04:42:50 | 000,016,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.04.21 04:35:31 | 000,001,126 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.04.21 04:35:31 | 000,000,400 | ---- | M] () -- C:\Windows\tasks\FindLyrics Update.job [2013.04.21 04:35:31 | 000,000,398 | ---- | M] () -- C:\Windows\tasks\SmartPCFix Task.job [2013.04.21 04:33:23 | 2030,981,119 | -HS- | M] () -- C:\hiberfil.sys [2013.04.21 02:57:37 | 000,000,974 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Red Dot Forever.lnk [2013.04.20 21:59:00 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3297799391-2978897314-3442018958-1001Core.job [2013.04.20 21:50:35 | 000,000,000 | ---- | M] () -- C:\END [2013.04.18 19:54:37 | 000,691,592 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013.04.18 19:54:37 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013.04.18 19:53:47 | 000,001,832 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Center.lnk [2013.04.17 02:49:49 | 000,095,648 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll [2013.04.17 02:49:48 | 000,866,720 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll [2013.04.17 02:49:48 | 000,788,896 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll [2013.04.17 02:49:48 | 000,263,584 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe [2013.04.17 02:49:48 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe [2013.04.17 02:49:48 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe [2013.04.11 16:54:08 | 000,293,416 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.04.11 07:52:43 | 000,002,187 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.04.08 20:52:27 | 001,500,018 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.04.08 20:52:27 | 000,654,610 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.04.08 20:52:27 | 000,616,452 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.04.08 20:52:27 | 000,130,192 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.04.08 20:52:27 | 000,106,574 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.04.03 20:22:29 | 000,002,168 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk [2013.04.03 20:22:29 | 000,002,168 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2013.04.03 14:40:49 | 000,000,996 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Bandicam.lnk [2013.04.03 09:27:03 | 000,004,510 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamStudio.cfg [2013.04.03 09:27:03 | 000,000,408 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamShapes.ini [2013.04.03 09:27:03 | 000,000,408 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamLayout.ini [2013.04.03 09:27:03 | 000,000,046 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\Camdata.ini [2013.04.03 08:47:17 | 000,001,178 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Windows Update Troubleshooting Info.lnk [2013.04.03 08:43:07 | 000,002,308 | ---- | M] () -- C:\Users\Public\Desktop\Driver Mender.lnk [2013.04.03 08:42:33 | 000,039,768 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys [2013.04.03 08:41:22 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\DriverNavigator.lnk [2013.04.03 08:27:47 | 000,000,994 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\FREE Hi-Q Recorder.lnk [2013.04.03 08:10:25 | 000,001,075 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free Download Manager.lnk [2013.03.27 13:10:49 | 000,001,310 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free YouTube Download.lnk [2013.03.27 13:10:33 | 000,001,406 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free YouTube to MP3 Converter.lnk [2013.03.27 12:36:47 | 000,002,310 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free Video to MP3 Converter.lnk [2013.03.27 12:36:47 | 000,001,247 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\DVDVideoSoft Free Studio.lnk [2013.03.27 12:30:05 | 000,002,236 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free Audio Converter.lnk [2013.03.27 08:05:00 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\asioserver.exe.lnk ========== Files Created - No Company Name ========== [2013.04.21 02:57:37 | 000,000,974 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Red Dot Forever.lnk [2013.04.03 14:40:49 | 000,000,996 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Bandicam.lnk [2013.04.03 14:39:55 | 000,000,400 | ---- | C] () -- C:\Windows\tasks\FindLyrics Update.job [2013.04.03 09:27:03 | 000,000,408 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamShapes.ini [2013.04.03 09:27:03 | 000,000,408 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamLayout.ini [2013.04.03 09:27:03 | 000,000,046 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\Camdata.ini [2013.04.03 09:06:22 | 000,004,510 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamStudio.cfg [2013.04.03 08:42:27 | 000,000,398 | ---- | C] () -- C:\Windows\tasks\SmartPCFix Task.job [2013.04.03 08:27:47 | 000,000,994 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\FREE Hi-Q Recorder.lnk [2013.04.03 08:10:25 | 000,001,075 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free Download Manager.lnk [2013.04.02 21:54:02 | 000,000,972 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3297799391-2978897314-3442018958-1001UA.job [2013.04.02 21:54:02 | 000,000,950 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3297799391-2978897314-3442018958-1001Core.job [2013.03.30 00:54:51 | 000,001,832 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Center.lnk [2013.03.27 13:10:33 | 000,001,406 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free YouTube to MP3 Converter.lnk [2013.03.27 12:36:47 | 000,002,310 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free Video to MP3 Converter.lnk [2013.03.27 12:30:05 | 000,002,236 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free Audio Converter.lnk [2013.03.13 04:00:46 | 000,001,495 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\RecConfig.xml [2013.03.05 03:49:12 | 001,526,948 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.03.05 01:54:57 | 000,000,129 | ---- | C] () -- C:\Windows\wininit.ini [2013.02.05 18:52:54 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe [2013.02.05 18:52:50 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll [2013.02.05 18:52:50 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll [2013.02.05 18:52:50 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll [2013.02.05 18:52:50 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll [2012.11.19 09:33:32 | 000,065,656 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll [2012.11.19 09:33:30 | 000,022,640 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll [2011.10.14 06:59:21 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin [2011.10.14 06:59:21 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin [2011.10.14 06:59:20 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll [2011.10.14 06:59:19 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin [2011.10.14 06:59:18 | 013,906,944 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll [2007.08.13 18:46:00 | 000,155,136 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\lame_enc.dll [2006.10.26 02:06:48 | 000,064,000 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\vorbisenc.dll [2006.10.26 02:06:48 | 000,019,456 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\vorbisfile.dll [2006.10.26 02:06:46 | 000,143,872 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\vorbis.dll [2006.10.26 02:06:36 | 000,015,872 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\ogg.dll [2005.08.23 23:34:06 | 000,029,184 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\no23xwrapper.dll ========== ZeroAccess Check ========== [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] < End of report > |
|
21.04.2013, 18:41
| #5 |
| /// Helfer-Team | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? Die Bereinigung besteht aus mehreren Schritten, die ausgefuehrt werden muessen. Diese Nacheinander abarbeiten und die 3 Logs, die dabei erstellt werden bitte in deine naechste Antwort einfuegen. Sollte der OTL-FIX nicht richig durchgelaufen sein. Fahre nicht fort, sondern melde dies bitte. 1. Schritt Fixen mit OTL Lade (falls noch nicht vorhanden) OTL von Oldtimer herunter und speichere es auf Deinem Desktop (nicht woanders hin).
Code:
ATTFilter :OTL
SRV:64bit: - (GFilterSvc) -- C:\Windows\SysNative\GFilterSvc.exe ()
SRV:64bit: - (cmdkey64) -- C:\Windows\SysNative\nosmaliz.exe ()
O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [fsm] File not found
[2013.04.21 04:35:31 | 000,000,400 | ---- | M] () -- C:\Windows\tasks\FindLyrics Update.job
[2013.04.21 13:00:00 | 000,000,408 | ---- | M] () -- C:\Windows\tasks\Acer Registration - Reminder Recall task.job
:Files
C:\ProgramData\*.exe
C:\ProgramData\*.dll
C:\ProgramData\*.tmp
C:\ProgramData\TEMP
C:\Users\melodja-chaosita\*.tmp
C:\Users\melodja-chaosita\AppData\*.dll
C:\Users\melodja-chaosita\AppData\*.exe
C:\Users\melodja-chaosita\AppData\Local\Temp\*.exe
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache
ipconfig /flushdns /c
:Commands
[emptytemp]
Hinweis für Mitleser: Obiges OTL-Script ist ausschließlich für diesen User in dieser Situtation erstellt worden. Auf keinen Fall auf anderen Rechnern anwenden, das kann andere Systeme nachhaltig schädigen! 2. Schritt Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers danach: 3. Schritt Downloade Dir bitte  AdwCleaner auf deinen Desktop.
|
|
21.05.2013, 21:17
| #6 |
| |  Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? hallo. ich habe die drei schritte ausgeführt. ich kann leider die logfiles immernoch nicht anhängen.. darum kopiere ich sie wieder hier rein.. beim neustart nach dem adwcleaner ist leider keine logfile aufgetaucht und ich hab sie auch nicht gefunden. adw cleaner hab ich wieder entfernt.. schritt 1 part 1: [CODE] Code:
ATTFilter Error: Unable to interpret <OTL logfile created on: 21.05.2013 20:16:05 - Run 3> in the current context!
Error: Unable to interpret <OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\melodja-chaosita\Downloads> in the current context!
Error: Unable to interpret <64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation> in the current context!
Error: Unable to interpret <Internet Explorer (Version = 9.10.9200.16576)> in the current context!
Error: Unable to interpret <Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <7.86 Gb Total Physical Memory | 5.42 Gb Available Physical Memory | 68.96% Memory free> in the current context!
Error: Unable to interpret <15.71 Gb Paging File | 12.60 Gb Available in Paging File | 80.19% Paging File free> in the current context!
Error: Unable to interpret <Paging file location(s): ?:\pagefile.sys [binary data]> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)> in the current context!
Error: Unable to interpret <Drive C: | 683.54 Gb Total Space | 550.48 Gb Free Space | 80.53% Space Free | Partition Type: NTFS> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Computer Name: HALLIGALLI | User Name: melodja-chaosita | Logged in as Administrator.> in the current context!
Error: Unable to interpret <Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans> in the current context!
Error: Unable to interpret <Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Processes (SafeList) ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <PRC - C:\Users\melodja-chaosita\Downloads\OTL (1).exe (OldTimer Tools)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\15.2.0\ScriptHelper.exe (AVG Secure Search)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe (AVG Secure Search)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe (AVG Secure Search)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Maxthon\bin\MxUp.exe (Maxthon International ltd.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Free Download Manager\fdm.exe (FreeDownloadManager.ORG)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe (Wajam)> in the current context!
Error: Unable to interpret <PRC - C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe (CyberLink Corp.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe ()> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System Inc.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Software Informer\softinfo.exe (Informer Technologies, Inc.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Sunrise\bin\sprtcmd.exe (SupportSoft, Inc.)> in the current context!
Error: Unable to interpret <PRC - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Modules (No Company Name) ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <MOD - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\SiteSafety.dll ()> in the current context!
Error: Unable to interpret <MOD - C:\Program Files (x86)\Free Download Manager\fdmbtsupp.dll ()> in the current context!
Error: Unable to interpret <MOD - C:\Program Files (x86)\Free Download Manager\fdmumsp.dll ()> in the current context!
Error: Unable to interpret <MOD - C:\Windows\SysWOW64\bdmpega.acm ()> in the current context!
Error: Unable to interpret <MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll ()> in the current context!
Error: Unable to interpret <MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe ()> in the current context!
Error: Unable to interpret <MOD - C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll ()> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Services (SafeList) ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <SRV:64bit: - (NIHardwareService) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe File not found> in the current context!
Error: Unable to interpret <SRV:64bit: - (GFilterSvc) -- C:\Windows\SysNative\GFilterSvc.exe ()> in the current context!
Error: Unable to interpret <SRV:64bit: - (cmdkey64) -- C:\Windows\SysNative\nosmaliz.exe ()> in the current context!
Error: Unable to interpret <SRV:64bit: - (mfevtp) -- C:\Windows\SysNative\mfevtps.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (mfefire) -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe ()> in the current context!
Error: Unable to interpret <SRV:64bit: - (McShield) -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe ()> in the current context!
Error: Unable to interpret <SRV:64bit: - (MSK80Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (McProxy) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (McOobeSv) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (McNASvc) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (McNaiAnn) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (mcmscsvc) -- C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (McMPFSvc) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV:64bit: - (McAfee SiteAdvisor Service) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV - (vToolbarUpdater15.2.0) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe (AVG Secure Search)> in the current context!
Error: Unable to interpret <SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)> in the current context!
Error: Unable to interpret <SRV - (AVGIDSAgent) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)> in the current context!
Error: Unable to interpret <SRV - (avgwd) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <SRV - (avgfws) -- C:\Program Files (x86)\AVG\AVG2013\avgfws.exe (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <SRV - (SearchAnonymizer) -- C:\Users\melodja-chaosita\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe ()> in the current context!
Error: Unable to interpret <SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)> in the current context!
Error: Unable to interpret <SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)> in the current context!
Error: Unable to interpret <SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)> in the current context!
Error: Unable to interpret <SRV - (McComponentHostService) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)> in the current context!
Error: Unable to interpret <SRV - (WajamUpdater) -- C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe (Wajam)> in the current context!
Error: Unable to interpret <SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <SRV - (Live Updater Service) -- C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated)> in the current context!
Error: Unable to interpret <SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <SRV - (ePowerSvc) -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated)> in the current context!
Error: Unable to interpret <SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)> in the current context!
Error: Unable to interpret <SRV - (EgisTec Ticket Service) -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe (Egis Technology Inc. )> in the current context!
Error: Unable to interpret <SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)> in the current context!
Error: Unable to interpret <SRV - (GREGService) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)> in the current context!
Error: Unable to interpret <SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)> in the current context!
Error: Unable to interpret <SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation)> in the current context!
Error: Unable to interpret <SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)> in the current context!
Error: Unable to interpret <SRV - (McODS) -- C:\Programme\mcafee\virusscan\mcods.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV - (McAWFwk) -- c:\Programme\mcafee\msc\McAWFwk.exe (McAfee, Inc.)> in the current context!
Error: Unable to interpret <SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <SRV - (TurboBoost) -- C:\Programme\Intel\TurboBoost\TurboBoost.exe (Intel(R) Corporation)> in the current context!
Error: Unable to interpret <SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)> in the current context!
Error: Unable to interpret <SRV - (wlcrasvc) -- C:\Programme\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <SRV - (NOBU) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (Symantec Corporation)> in the current context!
Error: Unable to interpret <SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)> in the current context!
Error: Unable to interpret <SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <SRV - (SupportSoft RemoteAssist) -- C:\Program Files (x86)\Common Files\SupportSoft\bin\ssrc.exe (SupportSoft, Inc.)> in the current context!
Error: Unable to interpret <SRV - (DigiRefresh) -- C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Driver Services (SafeList) ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <DRV:64bit: - (avgtp) -- C:\Windows\SysNative\drivers\avgtpx64.sys (AVG Technologies)> in the current context!
Error: Unable to interpret <DRV:64bit: - (AVGIDSDriver) -- C:\Windows\SysNative\drivers\avgidsdrivera.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Avgtdia) -- C:\Windows\SysNative\drivers\avgtdia.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mwlPSDVDisk) -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mwlPSDFilter) -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mwlPSDNServ) -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (nvpciflt) -- C:\Windows\SysNative\drivers\nvpciflt.sys (NVIDIA Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Avgmfx64) -- C:\Windows\SysNative\drivers\avgmfx64.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Avgloga) -- C:\Windows\SysNative\drivers\avgloga.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (AVGIDSHA) -- C:\Windows\SysNative\drivers\avgidsha.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Avgldx64) -- C:\Windows\SysNative\drivers\avgldx64.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Avgrkx64) -- C:\Windows\SysNative\drivers\avgrkx64.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ssudobex) -- C:\Windows\SysNative\drivers\ssudobex.sys (DEVGURU Co., LTD.(www.devguru.co.kr))> in the current context!
Error: Unable to interpret <DRV:64bit: - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))> in the current context!
Error: Unable to interpret <DRV:64bit: - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))> in the current context!
Error: Unable to interpret <DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (cfwids) -- C:\Windows\SysNative\drivers\cfwids.sys (McAfee, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mfewfpk) -- C:\Windows\SysNative\drivers\mfewfpk.sys (McAfee, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mferkdet) -- C:\Windows\SysNative\drivers\mferkdet.sys (McAfee, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mfehidk) -- C:\Windows\SysNative\drivers\mfehidk.sys (McAfee, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mfefirek) -- C:\Windows\SysNative\drivers\mfefirek.sys (McAfee, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mfeavfk) -- C:\Windows\SysNative\drivers\mfeavfk.sys (McAfee, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (mfeapfk) -- C:\Windows\SysNative\drivers\mfeapfk.sys (McAfee, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Avgfwfd) -- C:\Windows\SysNative\drivers\avgfwd6a.sys (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NTI Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NTI Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)> in the current context!
Error: Unable to interpret <DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)> in the current context!
Error: Unable to interpret <DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (bScsiMSa) -- C:\Windows\SysNative\drivers\bScsiMSa.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (k57nd60a) -- C:\Windows\SysNative\drivers\k57nd60a.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (bScsiSDa) -- C:\Windows\SysNative\drivers\bScsiSDa.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ak1avs) -- C:\Windows\SysNative\drivers\ak1avs.sys (Native Instruments GmbH)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ak1usb_svc) -- C:\Windows\SysNative\drivers\ak1usb.sys (Native Instruments GmbH)> in the current context!
Error: Unable to interpret <DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (b57xdmp) -- C:\Windows\SysNative\drivers\b57xdmp.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (b57xdbd) -- C:\Windows\SysNative\drivers\b57xdbd.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (TurboB) -- C:\Windows\SysNative\drivers\TurboB.sys (Intel(R) Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (RMCAST) -- C:\Windows\SysNative\drivers\rmcast.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)> in the current context!
Error: Unable to interpret <DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ak1avs_x64) -- C:\Windows\SysNative\drivers\ak1avs_x64.sys (Native Instruments GmbH)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ak1usb_x64) -- C:\Windows\SysNative\drivers\ak1usb_x64.sys (Native Instruments GmbH)> in the current context!
Error: Unable to interpret <DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)> in the current context!
Error: Unable to interpret <DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)> in the current context!
Error: Unable to interpret <DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (LVUSBS64) -- C:\Windows\SysNative\drivers\LVUSBS64.sys (Logitech Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (PID_PEPI) -- C:\Windows\SysNative\drivers\LV302V64.SYS (Logitech Inc.)> in the current context!
Error: Unable to interpret <DRV:64bit: - (lvpepf64) -- C:\Windows\SysNative\drivers\lv302a64.sys (Logitech Inc.)> in the current context!
Error: Unable to interpret <DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)> in the current context!
Error: Unable to interpret <DRV - (TPkd) -- C:\Windows\SysWow64\drivers\TPkd.sys (PACE Anti-Piracy, Inc.)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Standard Registry (All) ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Internet Explorer ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}> in the current context!
Error: Unable to interpret <IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk> in the current context!
Error: Unable to interpret <IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox> in the current context!
Error: Unable to interpret <IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = hxxp://search.sweetim.com/search.asp?src=6&crg=3.1010000&st=12&q={searchTerms}&barid={F524F5AF-0250-4FE8-BF51-3E5540D75876}> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.ch/> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://feed.snap.do/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=CH&userid=662c04b7-f0f3-4306-8e45-4fb8fc7ca9cb&searchtype=ds&q={searchTerms}&installDate=27/03/2013> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119828&tt=gc_&babsrc=SP_ss&mntrId=2C1EE6D53D4AC345> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = hxxp://mysearch.avg.com/search?cid={F45B0E9E-634E-4073-A946-9D98FCFE22B8}&mid=fd911373923847d38b960d47e7f178a9-f067352ce455d93e4a3c170f4454d9b13424fea3&lang=de&ds=AVG&pr=pr&d=2013-05-16 16:54:23&v=15.2.0.5&pid=safeguard&sg=2&sap=dsp&q={searchTerms}> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={F524F5AF-0250-4FE8-BF51-3E5540D75876}&crg=3.1010000&st=23> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0> in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <IE - HKU\S-1-5-21-3297799391-2978897314-3442018958-1004\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== FireFox ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <FF - prefs.js..extensions.enabledAddons: showlyrics%40superstrsoft.co:1.112> in the current context!
Error: Unable to interpret <FF - prefs.js..extensions.enabledAddons: %7B4ED1F68A-5463-4931-9384-8FFF5ED91D92%7D:3.6.0> in the current context!
Error: Unable to interpret <FF - prefs.js..extensions.enabledAddons: %7BACAA314B-EEBA-48e4-AD47-84E31C44796C%7D:4.3.3.15> in the current context!
Error: Unable to interpret <FF - prefs.js..extensions.enabledAddons: avg%40toolbar:15.0.0.2> in the current context!
Error: Unable to interpret <FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll File not found> in the current context!
Error: Unable to interpret <FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()> in the current context!
Error: Unable to interpret <FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\\npsitesafety.dll ()> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~2\mcafee\msc\npmcsn~1.dll ()> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.19: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()> in the current context!
Error: Unable to interpret <FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)> in the current context!
Error: Unable to interpret <FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\melodja-chaosita\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 23.0a1\extensions\\Components: C:\PROGRAM FILES\NIGHTLY\COMPONENTS> in the current context!
Error: Unable to interpret <64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 23.0a1\extensions\\Plugins: C:\PROGRAM FILES\NIGHTLY\PLUGINS> in the current context!
Error: Unable to interpret <FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2013.03.05 04:25:25 | 000,000,000 | ---D | M]> in the current context!
Error: Unable to interpret <FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}: C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ [2013.05.11 15:16:52 | 000,000,000 | ---D | M]> in the current context!
Error: Unable to interpret <FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\15.0.0.2 [2013.04.03 08:42:46 | 000,000,000 | ---D | M]> in the current context!
Error: Unable to interpret <FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components> in the current context!
Error: Unable to interpret <FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins> in the current context!
Error: Unable to interpret <FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}: C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi [2013.02.14 17:41:10 | 000,037,909 | ---- | M] ()> in the current context!
Error: Unable to interpret <FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\showlyrics@superstrsoft.co: C:\Program Files (x86)\Show-Lyrics\FF\ [2013.05.21 15:11:23 | 000,000,000 | ---D | M]> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[2013.03.04 19:55:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\Extensions> in the current context!
Error: Unable to interpret <[2013.05.16 09:18:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\Firefox\Profiles\z7frgny3.default\Extensions> in the current context!
Error: Unable to interpret <[2013.05.08 23:50:24 | 000,870,680 | ---- | M] () (No name found) -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi> in the current context!
Error: Unable to interpret <[2013.05.16 05:03:46 | 000,006,505 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\searchplugins\babylon.xml> in the current context!
Error: Unable to interpret <[2013.05.16 05:03:46 | 000,006,505 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\searchplugins\BrowserProtect.xml> in the current context!
Error: Unable to interpret <[2013.05.16 05:03:49 | 000,001,294 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\searchplugins\delta.xml> in the current context!
Error: Unable to interpret <[2013.03.27 20:39:56 | 000,002,429 | ---- | M] () -- C:\Users\melodja-chaosita\AppData\Roaming\mozilla\firefox\profiles\z7frgny3.default\searchplugins\Web Search.xml> in the current context!
Error: Unable to interpret <[2013.05.21 15:20:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions> in the current context!
Error: Unable to interpret <[2013.05.21 15:20:46 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}> in the current context!
Error: Unable to interpret <[2013.05.21 15:11:23 | 000,000,000 | ---D | M] ("Show Lyrics") -- C:\PROGRAM FILES (X86)\SHOW-LYRICS\FF> in the current context!
Error: Unable to interpret <[2013.04.03 14:40:14 | 000,006,468 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml> in the current context!
Error: Unable to interpret <[2013.04.03 08:42:46 | 000,003,725 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\safeguard-secure-search.xml> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Chrome ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <CHR - homepage: > in the current context!
Error: Unable to interpret <CHR - default_search_provider: ()> in the current context!
Error: Unable to interpret <CHR - default_search_provider: search_url = > in the current context!
Error: Unable to interpret <CHR - default_search_provider: suggest_url = > in the current context!
Error: Unable to interpret <CHR - homepage: > in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.61_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.19.4.1\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmhhdaimhfblnamlcdijbaakkifakade\1.111_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\15.0.0.2_0\> in the current context!
Error: Unable to interpret <CHR - Extension: No name found = C:\Users\melodja-chaosita\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts> in the current context!
Error: Unable to interpret <O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O2:64bit: - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)> in the current context!
Error: Unable to interpret <O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)> in the current context!
Error: Unable to interpret <O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)> in the current context!
Error: Unable to interpret <O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)> in the current context!
Error: Unable to interpret <O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O2 - BHO: (Show Lyrics) - {90609D82-77C3-4391-8915-CF5638CF4605} - C:\Program Files (x86)\Show-Lyrics\slyrics.dll (SuperStern Software)> in the current context!
Error: Unable to interpret <O2 - BHO: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\15.2.0.5\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)> in the current context!
Error: Unable to interpret <O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)> in the current context!
Error: Unable to interpret <O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O2 - BHO: (Free Download Manager) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)> in the current context!
Error: Unable to interpret <O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)> in the current context!
Error: Unable to interpret <O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)> in the current context!
Error: Unable to interpret <O2 - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)> in the current context!
Error: Unable to interpret <O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)> in the current context!
Error: Unable to interpret <O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.> in the current context!
Error: Unable to interpret <O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\15.2.0.5\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)> in the current context!
Error: Unable to interpret <O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [Ocs_SM] C:\Users\melodja-chaosita\AppData\Roaming\OCS\SM\SearchAnonymizer.exe (OCS)> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [Power Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)> in the current context!
Error: Unable to interpret <O4:64bit: - HKLM..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe (Digidesign, A Division of Avid Technology, Inc.)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Oracle Corporation)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [Sunrise] C:\Program Files (x86)\Sunrise\bin\sprtcmd.exe (SupportSoft, Inc.)> in the current context!
Error: Unable to interpret <O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe (AVG Secure Search)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [Driver Mender] C:\Program Files (x86)\Driver Mender\Driver Mender\DriverMender.exe (PC Drivers Headquarters)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1001..\Run: [Software Informer] C:\Program Files (x86)\Software Informer\softinfo.exe (Informer Technologies, Inc.)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1004..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\.DEFAULT..\RunOnce: [IsMyWinLockerReboot] C:\Windows\SysWow64\msiexec.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-18..\RunOnce: [IsMyWinLockerReboot] C:\Windows\SysWow64\msiexec.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-19..\RunOnce: [IsMyWinLockerReboot] C:\Windows\SysWow64\msiexec.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-20..\RunOnce: [IsMyWinLockerReboot] C:\Windows\SysWow64\msiexec.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1004..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found> in the current context!
Error: Unable to interpret <O4 - HKU\S-1-5-21-3297799391-2978897314-3442018958-1004..\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe ()> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = > in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = > in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13> in the current context!
Error: Unable to interpret <O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17> in the current context!
Error: Unable to interpret <O8:64bit: - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm ()> in the current context!
Error: Unable to interpret <O8:64bit: - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm ()> in the current context!
Error: Unable to interpret <O8:64bit: - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm ()> in the current context!
Error: Unable to interpret <O8:64bit: - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()> in the current context!
Error: Unable to interpret <O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm ()> in the current context!
Error: Unable to interpret <O8:64bit: - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm ()> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Alles mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlall.htm ()> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Auswahl mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlselected.htm ()> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Datei mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dllink.htm ()> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm ()> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Videos mit FDM herunterladen - C:\Program Files (x86)\Free Download Manager\dlfvideo.htm ()> in the current context!
Error: Unable to interpret <O9:64bit: - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)> in the current context!
Error: Unable to interpret <O9:64bit: - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)> in the current context!
Error: Unable to interpret <O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)> in the current context!
Error: Unable to interpret <O9 - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Code:
ATTFilter Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O1364bit: - gopher Prefix: missing> in the current context!
Error: Unable to interpret <O13 - gopher Prefix: missing> in the current context!
Error: Unable to interpret <O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.98.37.128 194.230.55.99> in the current context!
Error: Unable to interpret <O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91FBD89D-0960-4A8E-BE9B-CEA020D04099}: DhcpNameServer = 212.98.37.128 194.230.55.99> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\livecall - No CLSID value found> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\msnim - No CLSID value found> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\skype4com - No CLSID value found> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Handler\wlpg - No CLSID value found> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.2.0\ViProtocol.dll (AVG Secure Search)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Programme\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll (McAfee, Inc.)> in the current context!
Error: Unable to interpret <O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)> in the current context!
Error: Unable to interpret <O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)> in the current context!
Error: Unable to interpret <O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.> in the current context!
Error: Unable to interpret <O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.> in the current context!
Error: Unable to interpret <O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\SysNative\livessp.dll (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)> in the current context!
Error: Unable to interpret <O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corp.)> in the current context!
Error: Unable to interpret <O31 - SafeBoot: AlternateShell - cmd.exe> in the current context!
Error: Unable to interpret <O32 - HKLM CDRom: AutoRun - 1> in the current context!
Error: Unable to interpret <O33 - MountPoints2\{732315b3-bdc8-11e2-9896-dc0ea115915a}\Shell - "" = AutoRun> in the current context!
Error: Unable to interpret <O33 - MountPoints2\{732315b3-bdc8-11e2-9896-dc0ea115915a}\Shell\AutoRun\command - "" = E:\AutoRun.exe> in the current context!
Error: Unable to interpret <O34 - HKLM BootExecute: (autocheck autochk *)> in the current context!
Error: Unable to interpret <O35:64bit: - HKLM\..comfile [open] -- "%1" %*> in the current context!
Error: Unable to interpret <O35:64bit: - HKLM\..exefile [open] -- "%1" %*> in the current context!
Error: Unable to interpret <O35 - HKLM\..comfile [open] -- "%1" %*> in the current context!
Error: Unable to interpret <O35 - HKLM\..exefile [open] -- "%1" %*> in the current context!
Error: Unable to interpret <O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*> in the current context!
Error: Unable to interpret <O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*> in the current context!
Error: Unable to interpret <O37 - HKLM\...com [@ = comfile] -- "%1" %*> in the current context!
Error: Unable to interpret <O37 - HKLM\...exe [@ = exefile] -- "%1" %*> in the current context!
Error: Unable to interpret <O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)> in the current context!
Error: Unable to interpret <O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)> in the current context!
Error: Unable to interpret <O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Files/Folders - Created Within 30 Days ==========> in the current context!
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.05.0.1001
www.malwarebytes.org
Database version: v2013.05.21.07
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16576
melodja-chaosita :: HALLIGALLI [administrator]
21.05.2013 20:44:40
mbar-log-2013-05-21 (20-44-40).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 31928
Time elapsed: 16 minute(s), 30 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 1
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\cmdkey64 (Adware.Agent) -> Delete on reboot.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 3
c:\Users\DxxxxMxxxx\AppData\LocalLow\bbrs_002.tb (PUP.Blabbers) -> Delete on reboot.
c:\Users\DxxxxMxxxx\AppData\LocalLow\bbrs_002.tb\content (PUP.Blabbers) -> Delete on reboot.
c:\Users\DxxxxMxxxx\AppData\LocalLow\bbrs_002.tb\content\cache (PUP.Blabbers) -> Delete on reboot.
Files Detected: 2
c:\Windows\System32\nosmaliz.exe (Adware.Agent) -> Delete on reboot.
c:\Users\DxxxxMxxxx\AppData\LocalLow\bbrs_002.tb\content\icon.png (PUP.Blabbers) -> Delete on reboot.
beim adwcleaner ist leider keine logfile aufgetaucht und ich habe auch keine gefunden Geändert von aMELika (21.05.2013 um 21:56 Uhr) |
|
21.05.2013, 22:00
| #7 |
| | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? part 3 OTL Code:
ATTFilter rent context!
Error: Unable to interpret <[2013.05.21 20:15:05 | 000,000,000 | ---D | C] -- C:\_OTL> in the current context!
Error: Unable to interpret <[2013.05.21 15:17:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG> in the current context!
Error: Unable to interpret <[2013.05.21 15:11:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Show-Lyrics> in the current context!
Error: Unable to interpret <[2013.05.18 14:19:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee> in the current context!
Error: Unable to interpret <[2013.05.16 20:57:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware> in the current context!
Error: Unable to interpret <[2013.05.16 20:57:30 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys> in the current context!
Error: Unable to interpret <[2013.05.16 20:57:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware> in the current context!
Error: Unable to interpret <[2013.05.16 16:55:14 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\AVG2013> in the current context!
Error: Unable to interpret <[2013.05.16 16:54:28 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\TuneUp Software> in the current context!
Error: Unable to interpret <[2013.05.16 16:54:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG SafeGuard toolbar> in the current context!
Error: Unable to interpret <[2013.05.16 16:52:49 | 000,000,000 | -H-D | C] -- C:\$AVG> in the current context!
Error: Unable to interpret <[2013.05.16 16:52:49 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2013> in the current context!
Error: Unable to interpret <[2013.05.16 16:52:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG> in the current context!
Error: Unable to interpret <[2013.05.16 16:49:26 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\MFAData> in the current context!
Error: Unable to interpret <[2013.05.16 16:49:26 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData> in the current context!
Error: Unable to interpret <[2013.05.16 16:49:26 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\Avg2013> in the current context!
Error: Unable to interpret <[2013.05.16 05:20:49 | 000,000,000 | ---D | C] -- C:\Program Files\Nightly> in the current context!
Error: Unable to interpret <[2013.05.16 05:04:04 | 000,000,000 | ---D | C] -- C:\Windows\pss> in the current context!
Error: Unable to interpret <[2013.05.16 05:01:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Iminent> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:16 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:16 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:16 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:15 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:13 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:13 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll> in the current context!
Error: Unable to interpret <[2013.05.16 03:01:13 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll> in the current context!
Error: Unable to interpret <[2013.05.15 11:45:49 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys> in the current context!
Error: Unable to interpret <[2013.05.15 11:45:49 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll> in the current context!
Error: Unable to interpret <[2013.05.15 11:45:32 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll> in the current context!
Error: Unable to interpret <[2013.05.15 11:45:31 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll> in the current context!
Error: Unable to interpret <[2013.05.15 11:45:30 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll> in the current context!
Error: Unable to interpret <[2013.05.15 11:45:30 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe> in the current context!
Error: Unable to interpret <[2013.05.15 11:45:17 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll> in the current context!
Error: Unable to interpret <[2013.05.11 10:19:03 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{2A6EC7CB-148D-4946-B942-97D754FBDAB7}> in the current context!
Error: Unable to interpret <[2013.05.09 18:24:10 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\Software> in the current context!
Error: Unable to interpret <[2013.05.09 12:50:39 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Roaming\player> in the current context!
Error: Unable to interpret <[2013.05.09 12:43:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft> in the current context!
Error: Unable to interpret <[2013.05.09 12:43:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft> in the current context!
Error: Unable to interpret <[2013.05.09 12:15:37 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\AppData\Local\{046D3C92-4528-4BFE-9A87-F4D264BDEAB3}> in the current context!
Error: Unable to interpret <[2013.05.09 03:56:27 | 000,000,000 | ---D | C] -- C:\Users\melodja-chaosita\Desktop\8GB--2> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe> in the current context!
Error: Unable to interpret <[2013.04.22 10:08:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sunrise> in the current context!
Error: Unable to interpret <[2013.04.22 10:08:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sunrise> in the current context!
Error: Unable to interpret <[2007.08.13 18:46:00 | 000,102,912 | ---- | C] (Albert L Faber) -- C:\Users\melodja-chaosita\AppData\Local\CDRip.dll> in the current context!
Error: Unable to interpret <[2007.01.18 22:09:54 | 000,623,616 | ---- | C] (Ivan Bischof ©2003 - 2005) -- C:\Users\melodja-chaosita\AppData\Local\No23 Recorder.exe> in the current context!
Error: Unable to interpret <[2006.12.11 20:13:14 | 000,013,872 | ---- | C] (Un4seen Developments) -- C:\Users\melodja-chaosita\AppData\Local\basscd.dll> in the current context!
Error: Unable to interpret <[2006.12.11 20:13:12 | 000,097,336 | ---- | C] (Un4seen Developments) -- C:\Users\melodja-chaosita\AppData\Local\bass.dll> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Files - Modified Within 30 Days ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[2013.05.21 20:00:00 | 000,000,408 | ---- | M] () -- C:\Windows\tasks\Acer Registration - Reminder Recall task.job> in the current context!
Error: Unable to interpret <[2013.05.21 19:52:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job> in the current context!
Error: Unable to interpret <[2013.05.21 19:44:00 | 000,001,130 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job> in the current context!
Error: Unable to interpret <[2013.05.21 18:59:01 | 000,000,972 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3297799391-2978897314-3442018958-1001UA.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:11:31 | 000,016,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0> in the current context!
Error: Unable to interpret <[2013.05.21 16:11:31 | 000,016,752 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0> in the current context!
Error: Unable to interpret <[2013.05.21 16:05:30 | 000,000,436 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics> in the current context!
Error: Unable to interpret <[2013.05.21 16:04:10 | 000,000,506 | ---- | M] () -- C:\Windows\tasks\Driver Mender-RTMScan.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:04:10 | 000,000,504 | ---- | M] () -- C:\Windows\tasks\Driver Mender-RTMUpdater.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:04:10 | 000,000,494 | ---- | M] () -- C:\Windows\tasks\Driver Mender-RTMRules.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:03:20 | 000,001,126 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:03:20 | 000,000,398 | ---- | M] () -- C:\Windows\tasks\SmartPCFix Task.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:02:53 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl> in the current context!
Error: Unable to interpret <[2013.05.21 16:02:52 | 000,000,406 | ---- | M] () -- C:\Windows\tasks\Show Lyrics Update.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:02:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat> in the current context!
Error: Unable to interpret <[2013.05.21 16:02:47 | 2030,981,119 | -HS- | M] () -- C:\hiberfil.sys> in the current context!
Error: Unable to interpret <[2013.05.21 15:20:52 | 000,001,155 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk> in the current context!
Error: Unable to interpret <[2013.05.21 15:17:54 | 000,000,985 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk> in the current context!
Error: Unable to interpret <[2013.05.21 15:11:14 | 000,000,000 | ---- | M] () -- C:\END> in the current context!
Error: Unable to interpret <[2013.05.19 22:12:11 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3297799391-2978897314-3442018958-1001Core.job> in the current context!
Error: Unable to interpret <[2013.05.18 14:19:32 | 000,001,832 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Center.lnk> in the current context!
Error: Unable to interpret <[2013.05.16 20:57:35 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk> in the current context!
Error: Unable to interpret <[2013.05.16 16:54:14 | 000,045,856 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys> in the current context!
Error: Unable to interpret <[2013.05.16 14:53:31 | 001,617,610 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI> in the current context!
Error: Unable to interpret <[2013.05.16 14:53:31 | 000,698,606 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat> in the current context!
Error: Unable to interpret <[2013.05.16 14:53:31 | 000,653,644 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat> in the current context!
Error: Unable to interpret <[2013.05.16 14:53:31 | 000,149,012 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat> in the current context!
Error: Unable to interpret <[2013.05.16 14:53:31 | 000,121,788 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat> in the current context!
Error: Unable to interpret <[2013.05.16 09:18:35 | 000,005,373 | ---- | M] () -- C:\Windows\SysWow64\InstallUtil.InstallLog> in the current context!
Error: Unable to interpret <[2013.05.16 05:32:57 | 000,001,101 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\ASIO4ALL v2 Anleitung.lnk> in the current context!
Error: Unable to interpret <[2013.05.16 05:20:52 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\Nightly.lnk> in the current context!
Error: Unable to interpret <[2013.05.16 03:26:25 | 000,293,416 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT> in the current context!
Error: Unable to interpret <[2013.05.15 15:35:51 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe> in the current context!
Error: Unable to interpret <[2013.05.15 15:35:51 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl> in the current context!
Error: Unable to interpret <[2013.05.14 12:37:26 | 001,591,890 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI> in the current context!
Error: Unable to interpret <[2013.05.11 15:19:37 | 000,001,247 | ---- | M] () -- C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk> in the current context!
Error: Unable to interpret <[2013.05.11 15:18:02 | 000,002,236 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free Audio Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.11 12:03:29 | 023,447,026 | ---- | M] () -- C:\Users\melodja-chaosita\Documents\Datendisk11.05.2013-ubuntu.cdm> in the current context!
Error: Unable to interpret <[2013.05.11 12:03:18 | 000,001,024 | RH-- | M] () -- C:\Users\Public\Documents\NTIMMV9Acer.dll> in the current context!
Error: Unable to interpret <[2013.05.11 12:03:18 | 000,001,024 | RH-- | M] () -- C:\Users\Public\Documents\NTILiveUpdateV9.dll> in the current context!
Error: Unable to interpret <[2013.05.11 10:40:30 | 000,000,000 | ---- | M] () -- C:\Windows\JCMKR32.INI> in the current context!
Error: Unable to interpret <[2013.05.11 09:20:40 | 000,001,074 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 13:11:19 | 000,002,279 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free MP4 Video Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 13:08:10 | 000,001,310 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free YouTube Download.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 13:04:19 | 000,001,406 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free YouTube to MP3 Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 12:51:51 | 000,001,315 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free DVD Video Burner.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 12:51:50 | 000,002,310 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free Video to DVD Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 12:43:50 | 000,001,351 | ---- | M] () -- C:\Users\melodja-chaosita\Desktop\Free DVD Video Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 03:54:30 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== Files Created - No Company Name ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[2013.05.21 16:04:10 | 000,000,506 | ---- | C] () -- C:\Windows\tasks\Driver Mender-RTMScan.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:04:10 | 000,000,504 | ---- | C] () -- C:\Windows\tasks\Driver Mender-RTMUpdater.job> in the current context!
Error: Unable to interpret <[2013.05.21 16:04:10 | 000,000,494 | ---- | C] () -- C:\Windows\tasks\Driver Mender-RTMRules.job> in the current context!
Error: Unable to interpret <[2013.05.21 15:11:24 | 000,000,406 | ---- | C] () -- C:\Windows\tasks\Show Lyrics Update.job> in the current context!
Error: Unable to interpret <[2013.05.18 14:19:32 | 000,001,832 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Center.lnk> in the current context!
Error: Unable to interpret <[2013.05.16 20:57:35 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk> in the current context!
Error: Unable to interpret <[2013.05.16 16:54:28 | 000,000,985 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2013.lnk> in the current context!
Error: Unable to interpret <[2013.05.16 05:20:52 | 000,000,878 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nightly.lnk> in the current context!
Error: Unable to interpret <[2013.05.16 05:20:52 | 000,000,866 | ---- | C] () -- C:\Users\Public\Desktop\Nightly.lnk> in the current context!
Error: Unable to interpret <[2013.05.11 15:19:37 | 000,001,247 | ---- | C] () -- C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk> in the current context!
Error: Unable to interpret <[2013.05.11 15:18:02 | 000,002,236 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free Audio Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.11 10:40:30 | 000,000,000 | ---- | C] () -- C:\Windows\JCMKR32.INI> in the current context!
Error: Unable to interpret <[2013.05.11 10:32:55 | 023,447,026 | ---- | C] () -- C:\Users\melodja-chaosita\Documents\Datendisk11.05.2013-ubuntu.cdm> in the current context!
Error: Unable to interpret <[2013.05.09 13:11:19 | 000,002,279 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free MP4 Video Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 13:08:10 | 000,001,310 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free YouTube Download.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 13:04:19 | 000,001,406 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free YouTube to MP3 Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 12:51:51 | 000,001,315 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free DVD Video Burner.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 12:51:50 | 000,002,310 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free Video to DVD Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 12:43:50 | 000,001,351 | ---- | C] () -- C:\Users\melodja-chaosita\Desktop\Free DVD Video Converter.lnk> in the current context!
Error: Unable to interpret <[2013.05.09 03:54:30 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf> in the current context!
Error: Unable to interpret <[2013.04.30 14:11:24 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf> in the current context!
Error: Unable to interpret <[2013.04.03 09:27:03 | 000,000,408 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamShapes.ini> in the current context!
Error: Unable to interpret <[2013.04.03 09:27:03 | 000,000,408 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamLayout.ini> in the current context!
Error: Unable to interpret <[2013.04.03 09:27:03 | 000,000,046 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\Camdata.ini> in the current context!
Error: Unable to interpret <[2013.04.03 09:06:22 | 000,004,510 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Roaming\CamStudio.cfg> in the current context!
Error: Unable to interpret <[2013.03.13 04:00:46 | 000,001,495 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\RecConfig.xml> in the current context!
Error: Unable to interpret <[2013.03.05 03:49:12 | 001,591,890 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI> in the current context!
Error: Unable to interpret <[2013.03.05 01:54:57 | 000,000,129 | ---- | C] () -- C:\Windows\wininit.ini> in the current context!
Error: Unable to interpret <[2013.02.05 18:52:54 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe> in the current context!
Error: Unable to interpret <[2013.02.05 18:52:50 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll> in the current context!
Error: Unable to interpret <[2013.02.05 18:52:50 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll> in the current context!
Error: Unable to interpret <[2013.02.05 18:52:50 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll> in the current context!
Error: Unable to interpret <[2013.02.05 18:52:50 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll> in the current context!
Error: Unable to interpret <[2012.11.19 09:33:32 | 000,065,656 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll> in the current context!
Error: Unable to interpret <[2012.11.19 09:33:30 | 000,022,640 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll> in the current context!
Error: Unable to interpret <[2011.10.14 06:59:21 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin> in the current context!
Error: Unable to interpret <[2011.10.14 06:59:21 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin> in the current context!
Error: Unable to interpret <[2011.10.14 06:59:20 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll> in the current context!
Error: Unable to interpret <[2011.10.14 06:59:19 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin> in the current context!
Error: Unable to interpret <[2011.10.14 06:59:18 | 013,906,944 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll> in the current context!
Error: Unable to interpret <[2007.08.13 18:46:00 | 000,155,136 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\lame_enc.dll> in the current context!
Error: Unable to interpret <[2006.10.26 02:06:48 | 000,064,000 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\vorbisenc.dll> in the current context!
Error: Unable to interpret <[2006.10.26 02:06:48 | 000,019,456 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\vorbisfile.dll> in the current context!
Error: Unable to interpret <[2006.10.26 02:06:46 | 000,143,872 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\vorbis.dll> in the current context!
Error: Unable to interpret <[2006.10.26 02:06:36 | 000,015,872 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\ogg.dll> in the current context!
Error: Unable to interpret <[2005.08.23 23:34:06 | 000,029,184 | ---- | C] () -- C:\Users\melodja-chaosita\AppData\Local\no23xwrapper.dll> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <========== ZeroAccess Check ==========> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64> in the current context!
Error: Unable to interpret <"" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)> in the current context!
Error: Unable to interpret <"ThreadingModel" = Apartment> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]> in the current context!
Error: Unable to interpret <"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)> in the current context!
Error: Unable to interpret <"ThreadingModel" = Apartment> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64> in the current context!
Error: Unable to interpret <"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)> in the current context!
Error: Unable to interpret <"ThreadingModel" = Free> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]> in the current context!
Error: Unable to interpret <"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)> in the current context!
Error: Unable to interpret <"ThreadingModel" = Free> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64> in the current context!
Error: Unable to interpret <"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)> in the current context!
Error: Unable to interpret <"ThreadingModel" = Both> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]> in the current context!
Error: Unable to interpret << End of report >> in the current context!
OTL by OldTimer - Version 3.2.69.0 log created on 05212013_202011
|
|
22.05.2013, 13:48
| #8 | ||
| /// Helfer-Team | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? Kannst du lesen? Zitat:
Zitat:
Du sollst den Fix in OTL eintragen und nicht das Log. Wo du das Logfile vom adwCleaner steht in der Anleitung. |
|
24.05.2013, 11:08
| #9 |
| | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? HEY,bitte entschuldige, ich mache mich garantiert nicht extra zum horst. meine birne ist wirklich so weich... hier nochmal das OTL: Code:
ATTFilter All processes killed
========== OTL ==========
Error: No service named GFilterSvc was found to stop!
Service\Driver key GFilterSvc not found.
C:\Windows\SysNative\GFilterSvc.exe moved successfully.
Error: No service named cmdkey64 was found to stop!
Service\Driver key cmdkey64 not found.
File C:\Windows\SysNative\nosmaliz.exe not found.
Registry value HKEY_USERS\S-1-5-21-3297799391-2978897314-3442018958-1001\Software\Microsoft\Windows\CurrentVersion\Run\\fsm not found.
File C:\Windows\tasks\FindLyrics Update.job not found.
C:\Windows\Tasks\Acer Registration - Reminder Recall task.job moved successfully.
========== FILES ==========
File\Folder C:\ProgramData\*.exe not found.
File\Folder C:\ProgramData\*.dll not found.
File\Folder C:\ProgramData\*.tmp not found.
C:\ProgramData\Temp\{E670F1F2-A882-4EE5-90E1-EFBF46AB5A01} folder moved successfully.
C:\ProgramData\Temp\{B906C11A-D193-4143-9FA7-E2EE8A5A8F21} folder moved successfully.
C:\ProgramData\Temp\{AAF84FAD-5236-4A83-BA62-7D098FE1B8FA} folder moved successfully.
C:\ProgramData\Temp\{889C6F39-241F-4119-8026-1B2F4A124839} folder moved successfully.
C:\ProgramData\Temp\{5DB1DF0C-AABC-4362-8A6D-CEFDFB036E41} folder moved successfully.
C:\ProgramData\Temp\{2637C347-9DAD-11D6-9EA2-00055D0CA761} folder moved successfully.
C:\ProgramData\Temp\{14C4C3B6-F1F4-401F-8C86-03E8E19AAC8C} folder moved successfully.
C:\ProgramData\Temp\{01FB4998-33C4-4431-85ED-079E3EEFE75D} folder moved successfully.
C:\ProgramData\Temp folder moved successfully.
File\Folder C:\Users\melodja-chaosita\*.tmp not found.
File\Folder C:\Users\melodja-chaosita\AppData\*.dll not found.
File\Folder C:\Users\melodja-chaosita\AppData\*.exe not found.
C:\Users\melodja-chaosita\AppData\Local\Temp\flcsup.exe moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\muffin folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\host folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache\6.0 folder moved successfully.
C:\Users\melodja-chaosita\AppData\LocalLow\Sun\Java\Deployment\cache folder moved successfully.
< ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
C:\Users\melodja-chaosita\Downloads\cmd.bat deleted successfully.
C:\Users\melodja-chaosita\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: DxxxxMxxxxx
->FireFox cache emptied: 6975 bytes
->Flash cache emptied: 0 bytes
User: melodja-chaosita
->Temp folder emptied: 36836494 bytes
->Temporary Internet Files folder emptied: 895369896 bytes
->FireFox cache emptied: 56001616 bytes
->Google Chrome cache emptied: 361738480 bytes
->Opera cache emptied: 55742 bytes
->Flash cache emptied: 60656 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56468 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2468206 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 544025 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50562 bytes
RecycleBin emptied: 220352 bytes
Total Files Cleaned = 1'291.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 05242013_105336
Files\Folders moved on Reboot...
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\2MCwic3ViYWZmaWQiOjIwMDYsImhyZWYiOiJodHRwOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlLyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjYwOTQ3ODB9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\C4wLjAuMC4wLjE0NS4xNTUwLjE0ajQuMTguMC4uLjAuMC4uLjFhYy4xLmpiemw4STZJeTA4Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTQyMjA5MDQ1OH0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\ed_in=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=5;sz=1x1;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\hZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9QaW5uZWRTaXRlcyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzc2MDMzNzh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\iI6Imh0dHA6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvcmVkZG90Lz9zb3VyY2U9ZGxwIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwNTg3MDEyN30%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\iOiJodHRwOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL3JlZ2lzdGVyLnBocD9kbz1yZWdpc3RlciIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjYwNzgwMDl9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\iYWZmaWQiOjIwMDYsImhyZWYiOiJodHRwOi8vd3d3LmllZ2FsbGVyeS5jb20vQWRkb25zSUU3Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAzODI2MjQ2NH0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\iYWZmaWQiOjIwMDYsImhyZWYiOiJodHRwOi8vMTkyLjE2OC4xLjEvQWN0X29wdGlvbi5odG1sIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2Njg5OTUzNjI0NX0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj02X0xBQ2RQMnVTUSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTc4NjUyNDZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj03WmNhNlNDbXd3TSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzkwNjY0MTh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1BeUNBallJRHdXbyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY1MDMyMjk3Nzd9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1qYm5wNk13UWx3USIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzE5MzQ4NTR9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\jb20vP2FmZklEPTExOTM3MCZiYWJzcmM9SFBfc3MmbW50cklkPTJDMUVGNkQ1M0Q0QUMzNDUiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDIxOTY3NDI3fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\jb20vU3VwcG9ydEZpbGVzL0ZpbGVzL0xpdmVVcGRhdGVyL1BhZ2UvQUxVRml4LmFzcHgiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NDIwNzgyMTE4fQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTUxNDEzNTQ2N30=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2ODk5MzUwMTkxfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2ODk5NTgyNDUxfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY3MDk1Mjc1MjA4fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\kZWZhdWx0LmFzcHgmbGM9MjA1NSZpZD02NDg1NSZta3Q9ZGUtY2gmY2JjeHQ9bWFpJnNuc2M9MSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjUzMzM0MTV9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\n=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=9;sz=300x250;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\pZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9TZWFyY2g_cT1zaG9jayIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzgxMDEyODV9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\pZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9TZWFyY2g_cT1zaG9jayIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzgxMDkwMDJ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\tp%3A%2F%2Fapix.virtualsend.com%2Fwebbooster2%2Fminibar%2FAdsFrame.aspx%23zone%3D129%26width%3D300px%26height%3D250px%26platformId%3D134%26refhostname%3Dwww.youtube[1].gif not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\tp%3A%2F%2Fapix.virtualsend.com%2Fwebbooster2%2Fminibar%2FAdsFrame.aspx%23zone%3D129%26width%3D300px%26height%3D250px%26platformId%3D134%26refhostname%3Dwww.youtube[2].gif not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\W91dHViZS5jb20vd2F0Y2g%2Fdj1mTFM4NXZLTFV1RSZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTY3MTgyMzN9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\Wl4Y2xvdWQuY29tL2RlbmlzLW1henphL2RyZWFtLXJhdmUtdm9sLTgtc2lkZS1hLTE5OTUvIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTA2MjI3MjkxNX0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\wLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vc291bmRjbG91ZC5jb20vI3N0cmVhbSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU2OTE2MzM2ODF9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\wNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9TZWFyY2g%2FcT1hZGJsb2NrIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAzNzcwOTIwNH0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\wNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9TZWFyY2g%2FcT1hZGJsb2NrIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAzNzk2NDM3N30%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\wNiwiaHJlZiI6Imh0dHA6Ly93d3cuYXVkYWNpdHktZm9ydW0uZGUvdGhyZWFkLzUwNjQiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NTA3MDEzMzA5fQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\wNiwiaHJlZiI6Imh0dHA6Ly93d3cuYXVkYWNpdHktZm9ydW0uZGUvdGhyZWFkLzUwNjQiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NTAxNzQxMDcwfQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\WVnYWxsZXJ5LmNvbS9TZWFyY2g%2FcT1zaG9jayZ0eXBlZmlsdGVyPXBpbm5lZHNpdGUiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDM4MTEzMjA0fQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\y93d3cueW91dHViZS5jb20vcGxheWxpc3Q%2FbGlzdD1QTDcwOEZCQjJBMDNFMjZEQkEiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NTE0MjQ0ODgxfQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\zdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cubWl4Y2xvdWQuY29tL3BsYXllci8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDYyMjc2NTQ1fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\UD06YOE6\_dedup=1;kage=13;kar=2;kauth=1;kcr=ch;kga=1000;kgender=f;kgg=2;klg=de;kmyd=ad_creative_1;kr=F;kw64=ZGFzIHNjaMO2bmUgbcOkZGNoZW4gdm9uIHNlaXRlIDE=;ord=5290858164372720[1].htm not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\5ODg2LWFsbGUtaGlsZmVzdWNoZW5kZW4tZXJvZWZmbnVuZy10aGVtYXMtYmVhY2h0ZW4uaHRtbCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjE5OTA1ODB9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\ed_in=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=6;sz=1x1;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\GUvZm9ydW0vNjs%2FdW5iMTg5c2Vzcz0xMDA3MmQ4MGM4NmRjMDAxZjE3YzNmNmU0NGU5NTlmOSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY1MDE4NDU4NDJ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\in=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=3;sz=728x90;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\iOiJodHRwOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL3JlZ2lzdGVyLnBocD9kbz1zaWdudXAiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDI2MDg4ODc1fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\iYWZmaWQiOjIwMDYsImhyZWYiOiJodHRwOi8vd3d3LmllZ2FsbGVyeS5jb20vQWRkb25zSUU3Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAzODI0MDcxOX0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\iYWZmaWQiOjIwMDYsImhyZWYiOiJodHRwOi8vd3d3LmllZ2FsbGVyeS5jb20vQWRkb25zSUU3Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAzODIyMzYyNH0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj02dGNCZ0JSemlYUSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU0MjI0NTI1Nzd9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj02YUFEb2lYODhmYyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjIwMjk3MjB9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj03VjE2aVpweFl4cyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU0MjE3NTE3NDZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1haUxyMUN4TFV0USIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzA4MTI5MDZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1hX2l0NF9OUThOVSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzM4OTY4Mjh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1oQVhCYnhXOTVEOCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU0MjIwOTUxODh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1qd1JQSEhJeWhXdyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzAxOTI5MDZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1qY1k0anlDSjdObyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU0MjI2ODUyMjN9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2Njg5OTU5MzU5NH0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwMzIyMjE5OX0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAyMTk4NDMyMX0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTQyMTYyNDI0Nn0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NDE5NTgzNTM1fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NTE0MDYxNjg4fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NDk1MjY5MDI3fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NTAzNDUyODQzfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2OTE3Mjk2MDg2fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\pZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93aWtpLmF1ZGFjaXR5dGVhbS5vcmcvd2lraS9NaWRpIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwNTcxNzY3MX0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\pZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cubWl4Y2xvdWQuY29tL3RhZy9kai1kcmVhbS8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDU3OTIzMTIzfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=7;sz=300x250,300x600;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\UFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUE9Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAyNTMxNzY4NX0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\W91dHViZS5jb20vd2F0Y2g%2Fdj12RWxocGlkYkdqOCZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTczMzM2NTB9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\wLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuYXVkYWNpdHktZm9ydW0uZGUvIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwMTY4NzExOX0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\wLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuYXVkYWNpdHktZm9ydW0uZGUvIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwNjk5ODcyNH0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\wNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9BZGRvbnMvRGV0YWlscy8xNDU5OCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzc2ODE5NDB9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\wOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL25ld3RocmVhZC5waHA_ZG89bmV3dGhyZWFkJmY9OCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjU0ODAxMDh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\xLjAuMy4zLjAuMTUwLjE1MC4wajEuMS4wLi4uMC4wLi4uMWFjLjEuWGRzbmoza1RmMGciLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NDIyNDQ3MDkxfQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\zdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cubWl4Y2xvdWQuY29tL3BsYXllci8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDU4NTYzODE5fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\STGNKIAB\_default;sz=970x250;tile=1;plat=pc;dc_dedup=1;kage=13;kar=2;kauth=1;kbsg=HPCH130421;kcr=ch;kga=1000;kgender=f;kgg=2;klg=de;kmyd=ad_creative_1;ord=2875261660856341[1].htm not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\1LjAuNS41LjAuMjM3LjIyNjQuMjBqNGoxLjI1LjAuLi4wLjAuLi4xYWMuMS5STWI1dUc1VHdKOCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTc4MTE4MzR9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\2MCwic3ViYWZmaWQiOjIwMDYsImhyZWYiOiJodHRwOi8vMTkyLjE2OC4xLjEvcnBTeXMuaHRtbCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY4OTk1NDI1MzN9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\3LjAuMC4wLjAuMTMyLjYwMi42ajEuNy4wLi4uMC4wLi4uMWFjLjEuaTA2VHl5YmZLd3MiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NDIyMzM0ODMxfQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\5ODg2LWFsbGUtaGlsZmVzdWNoZW5kZW4tZXJvZWZmbnVuZy10aGVtYXMtYmVhY2h0ZW4uaHRtbCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjU0NTYyMDJ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\5ODg2LWFsbGUtaGlsZmVzdWNoZW5kZW4tZXJvZWZmbnVuZy10aGVtYXMtYmVhY2h0ZW4uaHRtbCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjYyMTE0OTV9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=2;sz=150x1060;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\DQvcmVkZG90LTFfMDQuZXhlL2Rvd25sb2FkP3VzZV9taXJyb3I9aWdudW0mZG93bmxvYWQ9Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwNTgwNTIwNX0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\GUvZm9ydW0vNjs%2FdW5iMTg5c2Vzcz0xMDA3MmQ4MGM4NmRjMDAxZjE3YzNmNmU0NGU5NTlmOSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY1MDE3MjgwNjZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\GUvZm9ydW0vNjs%2FdW5iMTg5c2Vzcz1hMWVhODA5ODNkMDM3MDY5ZmE4MDViOWRmNzlhNzRhYSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY1MDcwMDcxMzF9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\hZmZpZCI6MTA2MCwic3ViYWZmaWQiOjIwMDYsImhyZWYiOiJodHRwOi8vMTkyLjE2OC4xLjEvIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2Njg5OTUwMjA3OH0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\iI6Imh0dHBzOi8vZHViMTE4Lm1haWwubGl2ZS5jb20vZGVmYXVsdC5hc3B4P2lkPTY0ODU1Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAyNTM0OTQ4Mn0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\in=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=4;sz=200x90;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\iOiJodHRwOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL3JlZ2lzdGVyLnBocD9kbz1zaWdudXAiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDI1NTk3NzUwfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1faGgtVS1uYnhtTSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzE0NDA0ODR9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1haUxyMUN4TFV0USIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzAxMjY2Mjd9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1Jc1lHbjNsblRGdyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzA4OTg3MDB9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1QS1EyYzBZeHJDSSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzQ2Mjg5MjF9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1UeTdnajNUQUN5byIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU0MjIzMzg0NTZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\mYXEtNzg4Nzg1MTg7anNlc3Npb25pZD01RTcwNkVBQ0RFNUJCRkRCM0M5OEI4MDJDMTc0MzJBMyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY1MDI0OTIyMjF9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\n=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=8;sz=300x250;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\tp%3A%2F%2Fapix.virtualsend.com%2Fwebbooster2%2Fminibar%2FAdsFrame.aspx%23zone%3D128%26width%3D160px%26height%3D600px%26platformId%3D134%26refhostname%3Dwww.youtube[1].gif not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\ttp%3A%2F%2Fapix.virtualsend.com%2Fwebbooster2%2Fminibar%2FAdsFrame.aspx%23zone%3D131%26width%3D728px%26height%3D90px%26platformId%3D134%26refhostname%3Dwww.youtube[1].gif not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\ttp%3A%2F%2Fapix.virtualsend.com%2Fwebbooster2%2Fminibar%2FAdsFrame.aspx%23zone%3D253%26width%3D728px%26height%3D90px%26platformId%3D134%26refhostname%3Dwww.youtube[1].gif not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\ueW91dHViZS5jb20vdXNlci9Eb21pbmlxdWVEb29NP2ZlYXR1cmU9Y3NwLWluLWZlZWQiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NTE0MjE1NjA2fQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\uMC4xNDIuMTI0NC4xajExLjEyLjAuLi4wLjAuLi4xYy4xLjkuaHAuSkU0R3dXQUF0RzgiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NTAyNDA3MjkwfQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\vd2F0Y2g%2Fdj1Uclc0aE1OdHV1byZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSZpbmRleD0yIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTUxNDMwODYwNX0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\W91dHViZS5jb20vd2F0Y2g%2Fdj15aHJycVFKYXdyMCZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTY5MzE5NTJ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\W91dHViZS5jb20vd2F0Y2g%2Fdj1EMHFSVks5UkxQQSZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTY1NzI0MjZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\W91dHViZS5jb20vd2F0Y2g%2Fdj1HT1BRSjQ5WGJjOCZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTc1NjI1MjR9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\wLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9FcnJvciIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzgwOTMyMjZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\WNrL3RoZW1lLTQ1ODU4NzY3L1NwZWVkcG9ydC1XLTEwMS1TdGljay9mYXEtMTA4MTMxODA3Iiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwMjQzMDIyMn0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\wOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL25ld3RocmVhZC5waHA_ZG89bmV3dGhyZWFkJmY9OCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjYwODI0MTN9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\xMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuYW52aWxzdHVkaW8uY29tLyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY1MDU3ODA0MTR9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\xMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3LmZhY2Vib29rLmNvbS8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDM3OTI1MTA2fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\xMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3LmZhY2Vib29rLmNvbS8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDM4MjcyNjUyfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\zdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cubWl4Y2xvdWQuY29tL3BsYXllci8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDU3OTYyNDYwfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\zdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cubWl4Y2xvdWQuY29tL3RhZy90YXBlLyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwNTgzODQyMDZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\LK09V42H\zdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly9tYXJrdXNnLnRyb2phbmVyLWJvYXJkLmRlLyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjUyNjU2NzJ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\1LjAuNS41LjAuMjM3LjIyNjQuMjBqNGoxLjI1LjAuLi4wLjAuLi4xYWMuMS5STWI1dUc1VHdKOCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTc4NTg3NzB9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\2lzcy50cnVlZGlnaS5uZXRkbmEtY2RuLmNvbS8%2FdDIwMmlkPTExMDc3JnQyMDJrdz1zZWl0ZSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzMxOTk2ODZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\5ODg2LWFsbGUtaGlsZmVzdWNoZW5kZW4tZXJvZWZmbnVuZy10aGVtYXMtYmVhY2h0ZW4uaHRtbCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjU0Nzc0NDd9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\=0;tpc=reddot;tpc=sound;tpc=cpp;tpc=multimedia;tpc=audio-capture;tpc=midi;aud=endusers;tile=1;sz=150x1060;u=e_7a84c426-aa1e-11e2-bb5d-0200ac1d1d8c;ord=91871140629788[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\iOiJodHRwOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL3JlZ2lzdGVyLnBocD9kbz1yZWdpc3RlciIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjU2MTY2NDh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\iOiJodHRwOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL3JlZ2lzdGVyLnBocD9kbz1zaWdudXAiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDI2MDgwMzg0fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj02YUFEb2lYODhmYyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzA4Njk1NDl9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj05c0RrbmkyTXdQUSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzA5NjAxODZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj0zTDhxQV9PbzlzOCIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTc4MTgyOTN9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1haUxyMUN4TFV0USIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjc2NzMzNTd9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1kOHZvci1oOXJKTSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzgzMDEwMDR9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\jAwNiwiaHJlZiI6Imh0dHA6Ly93d3cueW91dHViZS5jb20vd2F0Y2g%2Fdj1qd1JQSEhJeWhXdyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzAxMTcyMDZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cubWl4Y2xvdWQuY29tLyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwNTc4OTE1NTh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDk5NjEzOTE2fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NjkxNTQ5MjUyfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1NjkyNTExMTM2fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2MDQxMjM3ODM3fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NDcyOTIzMDIyfQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NTAyNTI0Nzc4fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\kIjoxMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHBzOi8vd3d3Lmdvb2dsZS5jaC8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY3MTU0MzU4Mzk4fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\klM0QyOCwyYjhhYjk2OC05Y2E3LTExZTItYTNkNy0zYzRhOTJkZmZjOGMsMTM2NTAyNTI1Nzg1MSIsIm1vZGUiOiJ0Y3IiLCJmcm9tX2NvbWJvIjoiIiwiYWZmaWQiOiIxMDYwIiwic3ViYWZmaWQiOiIyMDA2In0%3D[1].htm not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\odHRwOi8vd3d3LnRyb2phbmVyLWJvYXJkLmRlL3JlZ2lzdGVyLnBocD9kbz1hZGRtZW1iZXIiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDI1ODAxODc2fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\pZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93aWtpLmF1ZGFjaXR5dGVhbS5vcmcvd2lraS9NaWRpIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NjUwNTc5MjQ4NX0=[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\S5uZXRkbmEtY2RuLmNvbS8%2FdDIwMmlkPTExMjM0JmMxPXR4dCZ0MjAya3c9c2FnZW4iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY2NTAxODM2NTA3fQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\sImhyZWYiOiJodHRwOi8vd3d3LmllZ2FsbGVyeS5jb20vQWNjb3VudC9BY2NvdW50TWVyZ2UiLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDM4MjU1MzE4fQ==[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\vdWQuY29tL0RKRFJFQU1NSURJTUFOTi9kai1kcmVhbS1tZGgtc2hvdy0xOC0wMy0xMy8iLCJ3aWR0aCI6MTM2NiwiaGVpZ2h0Ijo3NjgsImxvYWRlcl9jbGllbnRfdGltZXN0YW1wIjoxMzY1MDU3OTUzNDkwfQ%3D%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\W91dHViZS5jb20vd2F0Y2g%2Fdj11dURfUDdMYmV4QSZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTY1ODYyNDh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\W91dHViZS5jb20vd2F0Y2g%2Fdj15aHJycVFKYXdyMCZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTY1NzcxNjh9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\W91dHViZS5jb20vd2F0Y2g%2Fdj1tVDV6NmJ6Z01zVSZsaXN0PVBMNzA4RkJCMkEwM0UyNkRCQSIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjU1MTcxNjYyNTd9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\Wl4Y2xvdWQuY29tL2RlbmlzLW1henphL2RyZWFtLXJhdmUtdm9sLTgtc2lkZS1hLTE5OTUvIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTA1ODEwMzAxOX0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\wLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9FcnJvciIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMzgwODM5NzZ9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\wNiwiaHJlZiI6Imh0dHA6Ly93d3cuaWVnYWxsZXJ5LmNvbS9TZWFyY2g%2FcT1hZGJsb2NrIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAzODA3NzY5NX0%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\xMDYwLCJzdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly90cmFuc2xhdGUuZ29vZ2xlLmNoLyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjY1MTAwMjYxMTF9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\y1uZXVlLXZlcnNjaGx1ZXNzZWx1bmdzLXRyb2phbmVyLXZhcmlhbnRlLXVtbGF1Zi5odG1sIiwid2lkdGgiOjEzNjYsImhlaWdodCI6NzY4LCJsb2FkZXJfY2xpZW50X3RpbWVzdGFtcCI6MTM2NTAyNjEwMzc4M30%3D[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\zdWJhZmZpZCI6MjAwNiwiaHJlZiI6Imh0dHA6Ly9tYXJrdXNnLnRyb2phbmVyLWJvYXJkLmRlLyIsIndpZHRoIjoxMzY2LCJoZWlnaHQiOjc2OCwibG9hZGVyX2NsaWVudF90aW1lc3RhbXAiOjEzNjUwMjU0NTk5NjN9[1].js not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\_dedup=1;kage=13;kar=2;kauth=1;kcr=ch;kga=1000;kgender=f;kgg=2;klg=de;kmyd=ad_creative_1;kr=F;kw64=ZGFzIHNjaMO2bmUgbcOkZGNoZW4gdm9uIHNlaXRlIDE=;ord=2764818497173770[1].htm not found!
File\Folder C:\Users\melodja-chaosita\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\D8XA52EX\_default;sz=970x250;tile=1;plat=pc;dc_dedup=1;kage=13;kar=2;kauth=1;kbsg=HPCH130425;kcr=ch;kga=1000;kgender=f;kgg=2;klg=de;kmyd=ad_creative_1;ord=4142199349405495[1].htm not found!
C:\Users\melodja-chaosita\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Temp\MMDUtl.log moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Mozilla\Firefox\Profiles\z7frgny3.default\startupCache\startupCache.8.little moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Mozilla\Firefox\Profiles\z7frgny3.default\Cache\_CACHE_001_ moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Mozilla\Firefox\Profiles\z7frgny3.default\Cache\_CACHE_002_ moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Mozilla\Firefox\Profiles\z7frgny3.default\Cache\_CACHE_003_ moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Mozilla\Firefox\Profiles\z7frgny3.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\melodja-chaosita\AppData\Local\Mozilla\Firefox\Profiles\z7frgny3.default\_CACHE_CLEAN_ moved successfully.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\LMutilps32.log scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
24.05.2013, 11:32
| #10 |
| /// Helfer-Team | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? Das Log sollte in C:\ sein. Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). danach: ESET Online Scanner
danach: Downloade Dir bitte  SecurityCheck und:
|
|
29.05.2013, 20:10
| #11 |
| |  Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? Herzlichen Dank. ESET Smartinstaller? ich führe mal erst nur den ersten schritt aus... hab manchmal so paranoide momentehhhhh..... THX Kann es auch sein, dass dieses log wegen AVG Tune Up weg ist? ich kaufte mir die vollversion von Tune Up anfangs jahr. doch wegen Tune Up funktionierten Treiber von Native Instruments nicht mehr.. hab das AVG Tune Up auch ziemlich schnell wieder abgebrochen am 24.05.2013 mittags. doch einige sachen sind weg glaub ich... ESET Smartinstaller ausführen? und mein system von Avast scannen lasseen..? Ok ich fang mal an Code:
ATTFilter aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-05-29 21:34:16
-----------------------------
21:34:16.658 OS Version: Windows x64 6.1.7601 Service Pack 1
21:34:16.658 Number of processors: 4 586 0x2A07
21:34:16.658 ComputerName: HALLIGALLI UserName:
21:34:18.538 Initialize success
21:36:23.068 AVAST engine defs: 13052900
21:37:15.668 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:37:15.668 Disk 0 Vendor: WDC_WD75 01.0 Size: 715404MB BusType: 3
21:37:15.778 Disk 0 MBR read successfully
21:37:15.778 Disk 0 MBR scan
21:37:15.788 Disk 0 Windows 7 default MBR code
21:37:15.788 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15360 MB offset 2048
21:37:15.808 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 31459328
21:37:15.828 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 699942 MB offset 31664128
21:37:15.858 Disk 0 scanning C:\Windows\system32\drivers
21:37:23.719 Service scanning
21:37:48.969 Modules scanning
21:37:48.969 Disk 0 trace - called modules:
21:37:48.969
21:37:51.209 AVAST engine scan C:\Windows
21:37:53.959 AVAST engine scan C:\Windows\system32
21:40:14.739 AVAST engine scan C:\Windows\system32\drivers
21:40:26.059 AVAST engine scan C:\Users\melodja-chaosita
21:43:46.209 Disk 0 MBR has been saved successfully to "C:\Users\melodja-chaosita\Documents\Notes\MBR.dat"
21:43:46.219 The log file has been saved successfully to "C:\Users\melodja-chaosita\Documents\Notes\aswMBR29.5.13.txt"
21:49:22.780 AVAST engine scan C:\ProgramData
21:51:13.220 Scan finished successfully
21:54:26.853 Disk 0 MBR has been saved successfully to "C:\Users\melodja-chaosita\Documents\Notes\MBR.dat"
21:54:26.863 The log file has been saved successfully to "C:\Users\melodja-chaosita\Documents\Notes\aswMBR21.51.txt"
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=1553cf3fe3d9944da2b084346cc60597
# engine=13949
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-05-29 10:42:24
# local_time=2013-05-30 12:42:24 (+0100, Mitteleuropäische Sommerzeit)
# country="Switzerland"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1045 16777213 100 88 12371 57001328 0 0
# compatibility_mode=5893 16776574 100 94 1195711 121497194 0 0
# scanned=169760
# found=1
# cleaned=0
# scan_time=6671
sh=2A405015B0AE8722D9A9D6CF31FE1EA3395A2B4C ft=1 fh=c06bf6e317952262 vn="Win32/StartPage.ORB trojan" ac=I fn="C:\Users\melodja-chaosita\Downloads\vlc-2.0.5-win32.exe"
Code:
ATTFilter Results of screen317's Security Check version 0.99.63
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
AVG Internet Security 2013
Antivirus out of date!
`````````Anti-malware/Other Utilities Check:`````````
Java 7 Update 21
Adobe Flash Player 11.7.700.202
Adobe Reader 10.1.6 Adobe Reader out of Date!
Mozilla Firefox (21.0)
Google Chrome 26.0.1410.64
Google Chrome 27.0.1453.94
Google Chrome Plugins...
````````Process Check: objlist.exe by Laurent````````
AVG avgwdsvc.exe
Symantec Norton Online Backup NOBuAgent.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````
|
|
30.05.2013, 09:58
| #12 |
| /// Helfer-Team | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? Aktualisiere:
Sehr gut!  damit bist Du sauber und entlassen!  adwCleaner entfernen
Tool-Bereinigung Die Reihenfolge ist hier entscheidend.
Zurücksetzen der Sicherheitszonen Lasse die Sicherheitszonen wieder zurücksetzen, da diese manipuliert wurden um den Browser für weitere Angriffe zu öffnen. Gehe dabei so vor: http://www.trojaner-board.de/111805-...ecksetzen.html Systemwiederherstellungen leeren Damit der Rechner nicht mit einer infizierten Systemwiederherstellung erneut infiziert werden kann, muessen wir diese leeren. Dazu schalten wir sie einmal aus und dann wieder ein: Systemwiederherstellung deaktivieren Tutorial fuer Windows XP, Windows Vista, Windows 7 Danach wieder aktivieren. Lektuere zum abarbeiten: http://www.trojaner-board.de/90880-d...tallation.html http://www.trojaner-board.de/105213-...tellungen.html PluginCheck http://www.trojaner-board.de/96344-a...-rechners.html Secunia Online Software Inspector http://www.trojaner-board.de/71715-k...iendungen.html http://www.trojaner-board.de/83238-a...sschalten.html http://www.trojaner-board.de/109844-...ren-seite.html PC wird immer langsamer - was tun? |
|
09.09.2013, 15:42
| #13 |
| /// Helfer-Team | Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? Fehlende Rückmeldung Gibt es Probleme beim Abarbeiten obiger Anleitung? Um Kapazitäten für andere Hilfesuchende freizumachen, lösche ich dieses Thema aus meinen Benachrichtigungen. Solltest Du weitermachen wollen, schreibe mir eine PN oder eröffne ein neues Thema. http://www.trojaner-board.de/69886-a...-beachten.html Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner sauber ist. |
|
| Themen zu Verschlüsselungs-Trojaner,PUP.InstallBrain bestätigt durch anti-malware.lWelches Risiko besteht sonst noch? |
| adware.agent, anderem, anhang, beheben, fehler, gecheckt, gesendet, internetseite, internetseiten, internetverbindung, pup.blabbers, pup.installbrain, pup.installbrain gefunden, pup.software.updater, seiten, verbindung, verschiedene, verschiedenen, verschlüsselungs-trojaner, win32/startpage.orb, wünsche |
Linear-Darstellung
