| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviertWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
14.08.2013, 20:51
| #1 |
| |  Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Hey Community, ich denke ich habe ein Virenproblem, bin mir da aber auch nicht hundert prozentig sicher, da mir so etwas noch nicht passiert ist. Nachdem ich mein Computer gestartet habe und meinen Webbrowser (Firefox) geöffnet habe, gibt mir mein Virenprogramm (Sophos) die Meldung, der Zugriff auf eine gefährliche Seite sei gesperrt. Dies wiederholt sich ungefähr 20 Mal und danach hört es auf. Darüber hinaus hab ich seit dem dies das erste Mal passiert ist, das Programm hdPlus auf meinem Rechner, welches ich nicht deinstallieren kann. Dies hat mich nicht stark beunruhigt. Ich wusste zwar dass etwas nicht stimmt aber ich konnte damit leben, da es mich nicht sonderlich eingeschränkt hat. Es ist also schon etwas einen Monat her, dass es das erste Mal passiert ist. Auch habe ich mein Virenprogramm Sophos den Computer scannen lassen, doch auch dies hat nichts ergeben. Heute ist mir jedoch folgendes passiert: Ich habe ganz normal im Internet gesurft als plötzlich das Sicherheitscenter von Windows, sowie die On-Access-Scans von Sophos deaktiviert wurden. Auch wurde das Design von Windows 7 auf das Grunddesign herabgesetzt. (Ich weiß nicht wie ich es anders beschreiben kann.) Ich denke mir, da ist auf jeden Fall etwas nicht in Ordung. Ich würde mich freuen, wenn mir jemand bei diesem Problem helfen könnte, da ich dem ratlos gegenüber stehe und darüberhinaus auch Sorge um meine Daten habe. MfG zak |
|
14.08.2013, 20:53
| #2 |
| /// TB-Ausbilder  | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert!! Hinweis an Mitlesende !! Dieses Thema und die Anweisungen sind nur für diesen speziellen Fall gedacht. Sie könnten andere Computer schwer beschädigen. Öffnet bitte euer eigenes Thema.  Ich werde dir bei deinem Problem helfen. Die Bereinigung funktioniert nur, wenn du dich an die folgenden Regeln hälst:  Bitte lesen:Regeln für die Bereinigung
Schritt 1: (Erinnerung: Antworte mir erst, wenn du alle Schritte abgearbeitet hast!) Deinstallation von Programmen
Schritt 2: AdwCleaner: Werbeprogramme suchen und löschen Achtung! Lade dir keinenfalls den ZipOpener herunter. Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 3: Systemscan mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32bit oder FRST 64bit (Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)
__________________ |
|
14.08.2013, 21:46
| #3 |
| | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Also alles gemacht. Ich hoffe ich geb die Antwort jetzt richtig ein...
__________________1. adwcleaner Code:
ATTFilter # AdwCleaner v3.000 - Report created14/08/2013at22:21:29
# Updated 13/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Rudi - RUDIS-PC
# Running from : C:\Users\Rudi\Desktop\adwcleaner.exe
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Program Files (x86)\Plus-HD-2.6
Folder Deleted : C:\Program Files (x86)\RelevantKnowledge
Folder Deleted : C:\Users\Rudi\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Rudi\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Rudi\AppData\Roaming\DataMgr
Folder Deleted : C:\Users\Rudi\AppData\Roaming\fbDownloader
File Deleted : C:\Windows\Tasks\Plus-HD-2.6-chromeinstaller.job
File Deleted : C:\Windows\System32\Tasks\Plus-HD-2.6-chromeinstaller
File Deleted : C:\Windows\Tasks\Plus-HD-2.6-codedownloader.job
File Deleted : C:\Windows\System32\Tasks\Plus-HD-2.6-codedownloader
File Deleted : C:\Windows\Tasks\Plus-HD-2.6-enabler.job
File Deleted : C:\Windows\System32\Tasks\Plus-HD-2.6-enabler
File Deleted : C:\Windows\Tasks\Plus-HD-2.6-firefoxinstaller.job
File Deleted : C:\Windows\System32\Tasks\Plus-HD-2.6-firefoxinstaller
File Deleted : C:\Windows\Tasks\Plus-HD-2.6-updater.job
File Deleted : C:\Windows\System32\Tasks\Plus-HD-2.6-updater
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [DataMgr]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audio-recorder-for-free_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audio-recorder-for-free_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_bluetoothview_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_bluetoothview_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_dp4-font-viewer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_dp4-font-viewer_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_gta-iv-san-andreas_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_gta-iv-san-andreas_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_k-lite-codec-pack_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_k-lite-codec-pack_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033440.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033440.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033440.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0033440.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{AD71F65D-CD13-4837-A2DC-E4D90020E7D4}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1725502f-d303-42bd-97a7-565d9bbd5c2b}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{712bc135-b9a4-47a4-be8e-a604af6cd42d}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8edf7d06-32d5-4440-9aba-ceb5653f3cdc}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e0889e89-24ff-4d8e-a7c5-a662fc4de900}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f76c2d2b-474a-44c2-a61f-a2dd08eb3c0c}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BD869336-44AA-4001-AFB2-3E3E0B33987A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345540}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345540}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346640}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346640}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344344440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311341140}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311341140}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311341140}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311341140}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342240}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Plus-HD-2.6
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Plus-HD-2.6
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.6
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16635
Setting Reset : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v23.0 (de)
Folder Deleted : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\Extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com
File Deleted : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\Extensions\om@offermosquito.com.xpi
File Deleted : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\searchplugins\Askcom.xml
File Deleted : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\searchplugins\fbdownloader_search.xml
File Deleted : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\user.js
[ File : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\prefs.js ]
Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.order.1", "Ask.com");
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.apps[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.bic"[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.cid"[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.firs[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.hada[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.inst[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.last[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.last[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.mode[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.repo[...]
Line Deleted : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.stat[...]
Line Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");
Line Deleted : user_pref("extensions.crossrider.bic", "13f0f7a62ea2bdc490b4efa100f5e706");
Line Deleted : user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=&locale=&apn_u[...]
Line Deleted : user_pref("om.config", "{\"active\":true,\"name\":\"de\",\"id\":11,\"dispId\":\"CH-11\",\"aboutLink\[...]
[ File : C:\Users\Mum\AppData\Roaming\Mozilla\Firefox\Profiles\9seed7g6.default\prefs.js ]
[OK] No bad entry found.
[ File : C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\mcthicgz.default\prefs.js ]
[OK] No bad entry found.
-\\ Google Chrome v
Folder Deleted : C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpfeggemggokijeahnacacopejaabljl
[ File : C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Restored : homepage
Restored : icon_url
Restored : search_url
Restored : keyword
Restored : urls_to_restore_on_startup
*************************
AdwCleaner[0].txt - [48060 octets] - [14/08/2013 22:21:29]
########## EOF - C:\AdwCleaner\AdwCleaner[0].txt - [48120 octets] ##########
2. FRST FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-08-2013 01
Ran by Rudi (administrator) on 14-08-2013 22:36:12
Running from C:\Users\Rudi\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(ASUSTeK Computer Inc.) C:\Windows\system32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
( ) C:\Windows\system32\lxebcoms.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2189416 2011-03-01] (Realtek
Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-13] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324096 2010-08-11] (Alcor
Micro Corp.)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Rudi\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013
-07-04] (Spotify Ltd)
HKCU\...\Run: [SSync] - C:\Users\Rudi\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKCU\...\Run: [SCheck] - C:\Users\Rudi\AppData\Roaming\SCheck\SCheck.exe [36864 2013-04-10] ()
HKCU\...\Run: [Snoozer] - C:\Users\Rudi\AppData\Roaming\Snz\Snz.exe [1137673 2013-07-23] ()
HKCU\...\Run: [Intermediate] - C:\Users\Rudi\AppData\Roaming\Intermediate\Intermediate.exe [36864 2013-04-10] ()
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_224_Plugin.exe -
update plugin [814472 2013-06-29] (Adobe Systems Incorporated)
MountPoints2: F - F:\Startme.exe
MountPoints2: {37fb8347-a0ca-11e2-a9cb-f46d04578b57} - G:\Startme.exe
MountPoints2: {9c7ec4bc-532e-11e1-ad6a-f46d04578b57} - F:\Startme.exe
MountPoints2: {ac2be2c1-dae2-11e0-bf5a-f46d04578b57} - G:\LaunchU3.exe -a
MountPoints2: {be23c5f4-fcab-11e1-8e04-f46d04578b57} - F:\iStudio.exe
HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010
-09-24] ()
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2010-11-12] (cyberlink)
HKLM-x32\...\Run: [Sophos AutoUpdate Monitor] - C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe [900160 2012-07
-06] (Sophos Limited)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096
2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009
-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [825560
2012-12-18] (Adobe Systems Inc.)
HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5716608 2011-07-21]
(ASUS)
HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07]
(ASUS)
HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016
2009-06-19] (ASUS)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
[59720 2013-04-21] (Apple Inc.)
HKU\Mum\...\Run: [Spotify] - C:\Users\Rudi\AppData\Roaming\Spotify\spotify.exe [4640768 2013-07-04] (Spotify Ltd)
HKU\Mum\...\Run: [Spotify Web Helper] - C:\Users\Rudi\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384
2013-07-04] (Spotify Ltd)
HKU\UpdatusUser\...\Run: [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [x]
HKU\UpdatusUser\...\Run: [swg] - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[x]
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll,C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL C:\Windows
\SysWOW64\nvinit.dll,C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL [221840 2013-06-04] (Sophos Limited)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll,C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL [221840 2013-06-04] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-
FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe ()
Startup: C:\Users\Mum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel(R) Turbo Boost Technology
Monitor 2.0.lnk
ShortcutTarget: Intel(R) Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost
\SignalIslandUi.exe (Intel® Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q=
{searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKCU - {69018592-4B7A-4177-9DC7-E56B13AAAE9D} URL = hxxp://suche.lycos.de/cgi-bin/pursuit?query=
{searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
(Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files
\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin
\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files
\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX
\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft
Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java
\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files
(x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files
(x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files
(x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java
\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe
\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe
\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype
Technologies)
Winsock: Catalog9 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9 20 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [87616] (Sophos Limited)
Winsock: Catalog9-x64 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Winsock: Catalog9-x64 20 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [127040] (Sophos Limited)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default
FF SelectedSearchEngine: LEO Eng-Deu
FF Homepage: google.de
FF NetworkProxy: "backup.ftp", "192.168.1.1"
FF NetworkProxy: "backup.ftp_port", 3128
FF NetworkProxy: "backup.socks", "192.168.1.1"
FF NetworkProxy: "backup.socks_port", 3128
FF NetworkProxy: "backup.ssl", "192.168.1.1"
FF NetworkProxy: "backup.ssl_port", 3128
FF NetworkProxy: "ftp", "192.168.1.1"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "192.168.1.1"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "192.168.1.1"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "192.168.1.1"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX,
LLC.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle
Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll (
Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player
\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper
\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar
\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins
\1.118.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle
Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight
\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
(Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft
Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery
\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery
\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery
\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster
\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update
\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update
\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0-pre2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems
Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster
\npPandoWebPlugin.dll (Pando Networks)
FF Extension: No Name - C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\Extensions
\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-
ABCDEFFEDCBA}
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-
3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] C:\Program Files (x86)\Adobe\Acrobat
10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] C:\Program Files (x86)\DivX\DivX Plus
Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox
\DivXHTML5
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (YouTube) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions
\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions
\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (OfferMosquito) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions
\gbmdkmlcnbapgegninelmjbfibaghdmk\0.5_0
CHR Extension: (Gmail) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions
\pjkljhegncpnkpknbcohdijeoejaedia\7_1
==================== Services (Whitelisted) =================
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2010-11-13]
(CyberLink)
R2 lxeb_device; C:\Windows\system32\lxebcoms.exe [1052328 2010-04-14] ( )
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [66872 2012-07-18] ()
R2 PnkBstrB; C:\Windows\SysWow64\PnkBstrB.exe [107832 2012-11-02] ()
R2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [216640 2012-11-12] (Sophos
Limited)
R2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [139840 2012-06-15] (Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [232512 2012-07-06] (Sophos
Limited)
R2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [2869824 2012-11-
12] (Sophos Limited)
S2 swi_update_64; C:\ProgramData\Sophos\Web Intelligence\swi_update_64.exe [1998400 2012-11-12] (Sophos Limited)
==================== Drivers (Whitelisted) ====================
R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [142424 2013-03-18] (SlySoft, Inc.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [144672 2012-06-15] (Sophos Limited)
S4 SophosBootDriver; C:\Windows\System32\DRIVERS\SophosBootDriver.sys [25608 2011-10-23] (Sophos Plc)
R3 stdriver; C:\Windows\System32\DRIVERS\stdriverx64.sys [32536 2013-06-04] ()
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-14 22:32 - 2013-08-14 22:32 - 01575570 _____ (Farbar) C:\Users\Rudi\Desktop\FRST64.exe
2013-08-14 22:19 - 2013-08-14 22:26 - 00000000 ____D C:\AdwCleaner
2013-08-14 22:19 - 2013-08-14 22:19 - 00800594 _____ C:\Users\Rudi\Desktop\adwcleaner.exe
2013-08-14 20:06 - 2013-08-14 20:49 - 00000000 ____D C:\Users\Rudi\Desktop\Email
2013-08-14 19:57 - 2013-08-14 19:57 - 00000000 ____D C:\Users\Rudi\AppData\Local\{D52E9B0F-92E0-4CD8-814C-
7CCCF53A0B9C}
2013-08-09 23:11 - 2013-08-09 23:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-08 13:22 - 2013-08-08 13:22 - 01067456 _____ (Solid State Networks) C:\Users\Rudi\Desktop
\install_flashplayer11x32au_mssd_aaa_aih.exe
2013-08-07 00:13 - 2013-08-07 00:13 - 00000000 ____D C:\Users\Rudi\AppData\Local\{DD0D9705-3A35-44E4-8978-
3131919AE293}
2013-07-31 21:20 - 2013-07-31 21:20 - 00001072 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-07-31 21:01 - 2013-07-31 21:19 - 23385416 _____ C:\Users\Rudi\Desktop\vlc-2.1.0-pre2-win32.exe
2013-07-25 23:32 - 2013-07-25 23:33 - 00000000 ____D C:\Users\Rudi\AppData\Local\{5C7C2A05-EC5A-4E03-9325-
95FAF7E3F607}
2013-07-25 11:27 - 2013-07-25 11:27 - 00000000 ____D C:\Users\Rudi\AppData\Roaming\Snz
2013-07-24 23:45 - 2013-07-24 23:45 - 00288160 _____ C:\Windows\Minidump\072413-119652-01.dmp
2013-07-23 16:07 - 2013-07-23 16:08 - 00000000 ____D C:\Users\Rudi\AppData\Local\{0FBE813D-FDF8-42B8-B576-
7E7469A84C3B}
2013-07-21 13:21 - 2013-07-21 13:22 - 00000000 ____D C:\Users\Rudi\AppData\Local\{AB83EC75-EBF4-4B2D-B59B-
BB684139C05E}
==================== One Month Modified Files and Folders =======
2013-08-14 22:36 - 2009-07-14 06:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-
1.C7483456-A289-439d-8115-601632D005A0
2013-08-14 22:36 - 2009-07-14 06:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-
0.C7483456-A289-439d-8115-601632D005A0
2013-08-14 22:33 - 2013-08-14 22:33 - 00000000 ____D C:\FRST
2013-08-14 22:32 - 2013-08-14 22:32 - 01575570 _____ (Farbar) C:\Users\Rudi\Desktop\FRST64.exe
2013-08-14 22:26 - 2013-08-14 22:19 - 00000000 ____D C:\AdwCleaner
2013-08-14 22:19 - 2013-08-14 22:19 - 00800594 _____ C:\Users\Rudi\Desktop\adwcleaner.exe
2013-08-14 22:08 - 2011-01-12 17:50 - 00001124 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-14 21:23 - 2011-06-05 03:14 - 01932445 _____ C:\Windows\WindowsUpdate.log
2013-08-14 21:20 - 2011-08-27 15:32 - 00000000 ___HD C:\ASUS.DAT
2013-08-14 21:20 - 2011-01-12 17:50 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-14 21:19 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-14 21:19 - 2009-07-14 06:51 - 00182846 _____ C:\Windows\setupact.log
2013-08-14 20:49 - 2013-08-14 20:06 - 00000000 ____D C:\Users\Rudi\Desktop\Email
2013-08-14 20:01 - 2009-08-04 11:51 - 00709012 _____ C:\Windows\system32\perfh007.dat
2013-08-14 20:01 - 2009-08-04 11:51 - 00152358 _____ C:\Windows\system32\perfc007.dat
2013-08-14 20:01 - 2009-07-14 07:13 - 01645932 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-14 19:58 - 2011-08-27 19:03 - 00003926 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{84714A75
-57F2-419F-96FD-97F1A8917072}
2013-08-14 19:57 - 2013-08-14 19:57 - 00000000 ____D C:\Users\Rudi\AppData\Local\{D52E9B0F-92E0-4CD8-814C-
7CCCF53A0B9C}
2013-08-14 19:54 - 2013-06-12 23:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-14 19:54 - 2011-06-05 03:10 - 00206838 _____ C:\Windows\PFRO.log
2013-08-13 23:49 - 2012-06-07 22:12 - 00000000 ____D C:\Users\Rudi\AppData\Roaming\Spotify
2013-08-13 18:00 - 2013-04-13 11:55 - 00000000 ____D C:\Users\Rudi\AppData\Roaming\vlc
2013-08-13 01:21 - 2012-06-07 22:13 - 00000000 ____D C:\Users\Rudi\AppData\Local\Spotify
2013-08-13 01:02 - 2013-07-04 22:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox.bak
2013-08-09 23:11 - 2013-08-09 23:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-08 13:22 - 2013-08-08 13:22 - 01067456 _____ (Solid State Networks) C:\Users\Rudi\Desktop
\install_flashplayer11x32au_mssd_aaa_aih.exe
2013-08-07 00:13 - 2013-08-07 00:13 - 00000000 ____D C:\Users\Rudi\AppData\Local\{DD0D9705-3A35-44E4-8978-
3131919AE293}
2013-07-31 21:20 - 2013-07-31 21:20 - 00001072 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-07-31 21:20 - 2012-09-24 13:03 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-31 21:19 - 2013-07-31 21:01 - 23385416 _____ C:\Users\Rudi\Desktop\vlc-2.1.0-pre2-win32.exe
2013-07-30 20:04 - 2011-06-05 03:39 - 00002914 _____ C:\Windows\system32\AutoRunFilter.ini
2013-07-26 00:10 - 2013-05-22 09:04 - 00000000 ____D C:\Users\Rudi\Desktop\Neuseeland
2013-07-26 00:04 - 2011-08-29 19:04 - 00000000 ____D C:\Users\Rudi\AppData\Roaming\SoftGrid Client
2013-07-25 23:33 - 2013-07-25 23:32 - 00000000 ____D C:\Users\Rudi\AppData\Local\{5C7C2A05-EC5A-4E03-9325-
95FAF7E3F607}
2013-07-25 11:27 - 2013-07-25 11:27 - 00000000 ____D C:\Users\Rudi\AppData\Roaming\Snz
2013-07-24 23:50 - 2013-07-14 15:41 - 00000000 _____ C:\Windows\system32\vireng.log
2013-07-24 23:45 - 2013-07-24 23:45 - 00288160 _____ C:\Windows\Minidump\072413-119652-01.dmp
2013-07-24 23:45 - 2012-09-18 20:55 - 00000000 ____D C:\Windows\Minidump
2013-07-24 23:43 - 2012-09-18 20:55 - 632645115 _____ C:\Windows\MEMORY.DMP
2013-07-23 16:08 - 2013-07-23 16:07 - 00000000 ____D C:\Users\Rudi\AppData\Local\{0FBE813D-FDF8-42B8-B576-
7E7469A84C3B}
2013-07-21 13:22 - 2013-07-21 13:21 - 00000000 ____D C:\Users\Rudi\AppData\Local\{AB83EC75-EBF4-4B2D-B59B-
BB684139C05E}
2013-07-17 12:56 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
Files to move or delete:
====================
C:\Users\Rudi\savw_100_sa_sfx.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-17 14:34
==================== End Of Log ============================
3. Addition Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-08-2013 01
Ran by Rudi at 2013-08-14 22:36:56
Running from C:\Users\Rudi\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
Update for Microsoft Office 2007 (KB2508958) (x32)
Adobe Acrobat X Pro - English, Français, Deutsch (x32 Version: 10.1.5)
Adobe AIR (x32 Version: 2.5.1.17730)
Adobe Community Help (x32 Version: 3.4.980)
Adobe Content Viewer (x32 Version: 1.4.0)
Adobe Creative Suite 5.5 Design Standard (x32 Version: 5.5)
Adobe Flash Player 10 ActiveX (x32 Version: 10.0.42.34)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Adobe Reader XI (11.0.01) - Deutsch (x32 Version: 11.0.01)
Alcor Micro USB Card Reader (x32 Version: 1.8.17.26026)
AnyDVD (x32 Version: 7.1.8.0)
Apple Application Support (x32 Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
ASUS AI Recovery (x32 Version: 1.0.13)
ASUS FancyStart (x32 Version: 1.1.0)
ASUS LifeFrame3 (x32 Version: 3.0.21)
ASUS Live Update (x32 Version: 2.5.9)
ASUS Power4Gear Hybrid (Version: 1.1.43)
ASUS Splendid Video Enhancement Technology (x32 Version: 1.02.0031)
ASUS Virtual Camera (x32 Version: 1.0.21)
ASUS WebStorage (x32 Version: 2.0.46.1429)
AsusScr_K3 Series_ENG_Basic (x32 Version: 1.0.0001)
AsusVibe2.0 (x32 Version: 2.0.3.585)
ATK Package (x32 Version: 1.0.0014)
Audacity 2.0.2 (x32 Version: 2.0.2)
Battlelog Web Plugins (x32 Version: 1.118.0)
Bonjour (Version: 3.0.0.10)
Bookworm Deluxe (x32)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
Complément Messenger (x32 Version: 15.4.3502.0922)
Complemento Messenger (x32 Version: 15.4.3502.0922)
Control ActiveX de Windows Live Mesh para conexiones remotas (x32 Version: 15.4.5722.2)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (x32 Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (x32 Version: 15.4.5722.2)
Cooking Dash (x32)
CyberLink LabelPrint (x32 Version: 2.5.1908)
CyberLink Power2Go (x32 Version: 6.1.3602c)
CyberLink PowerDVD 10 (x32 Version: 10.0.2312.52)
D3DX10 (x32 Version: 15.4.2368.0902)
Digital DJ (x32 Version: 2.0)
DivX-Setup (x32 Version: 2.6.1.5)
ESN Sonar (x32 Version: 0.70.4)
Exam_PPL_(BMVBS) (x32 Version: 1.0)
Fast Boot (Version: 1.0.8)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922)
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922)
Game Park Console (x32 Version: 6.2.1.1)
Google Chrome (x32 Version: 25.0.1364.172)
Google Update Helper (x32 Version: 1.3.21.135)
Governor of Poker (x32)
Hotel Dash Suite Success (x32)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1118)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2932)
Intel(R) Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 7 (x32 Version: 7.0.70)
Java SE Development Kit 7 Update 21 (64-bit) (Version: 1.7.0.210)
Java SE Development Kit 7 Update 25 (64-bit) (Version: 1.7.0.250)
Java SE Development Kit 7 Update 7 (x32 Version: 1.7.0.70)
Jewel Quest 3 (x32)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Luxor 3 (x32)
Mahjongg dimensions (x32)
Mesh Runtime (x32 Version: 15.4.5722.2)
Messenger Companion (x32 Version: 15.4.3502.0922)
Messenger 分享元件 (x32 Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft PowerPoint Viewer (x32 Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
Mozilla Firefox 23.0 (x86 de) (x32 Version: 23.0)
Mozilla Maintenance Service (x32 Version: 23.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0)
NVIDIA Grafiktreiber 306.97 (Version: 306.97)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA Optimus 1.10.8 (Version: 1.10.8)
NVIDIA PhysX (x32 Version: 9.12.0604)
NVIDIA PhysX-Systemsoftware 9.12.0604 (Version: 9.12.0604)
NVIDIA Systemsteuerung 306.97 (Version: 306.97)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
OpenOffice.org 3.3 (x32 Version: 3.3.9567)
Pando Media Booster (x32 Version: 2.6.0.1)
PDF Settings CS5 (x32 Version: 10.0)
PhotoScape (x32)
QuickTime (x32 Version: 7.73.80.64)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922)
Ralink RT2860 Wireless LAN Card (x32 Version: 1.5.9.0)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6324)
Skype™ 6.3 (x32 Version: 6.3.105)
Sony Ericsson Update Engine (x32 Version: 2.12.10.19)
Sony Ericsson Update Service (x32 Version: 2.11.12.5)
Sophos Anti-Virus (x32 Version: 10.0.10)
Sophos AutoUpdate (x32 Version: 2.7.4.317)
SoundTap Audiostream-Rekorder (x32)
Source SDK Base 2007 (x32)
Spotify (HKCU Version: 0.9.1.57.ge7405149)
Steam (x32 Version: 1.0.0.0)
syncables desktop SE (x32 Version: 5.5.746.11492)
Texte, Themen und Strukturen interaktiv - Klausurentraining (x32 Version: 23584)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
VLC media player 2.1.0-pre2 (x32 Version: 2.1.0-pre2)
VoiceOver Kit (x32 Version: 1.42.128.0)
Ware PS/2-X64 8.0.5.0_WHQL (Version: 8.0.5.0)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (x32 Version: 15.4.5722.2)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Live 影像中心 (x32 Version: 15.4.3502.0922)
Windows Live 程式集 (x32 Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
WinFlash (x32 Version: 2.31.1)
WinRAR 4.01 (64-Bit) (Version: 4.01.0)
Wireless Console 3 (x32 Version: 3.0.19)
World of Goo (x32)
Xiph.Org Open Codecs 0.85.17777 (x32 Version: 0.85.17777)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (x32 Version: 15.4.5722.2)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922)
מסייע Messenger (x32 Version: 15.4.3502.0922)
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (x32 Version: 15.4.5722.2)
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (x32 Version: 15.4.5722.2)
==================== Restore Points =========================
10-07-2013 07:08:18 Windows Update
11-07-2013 22:34:46 Windows Update
19-07-2013 08:57:00 Windows Update
23-07-2013 16:32:47 Windows Update
30-07-2013 18:10:19 Windows Update
03-08-2013 12:21:52 Windows Update
06-08-2013 13:57:35 Windows Update
09-08-2013 21:06:46 Windows Update
14-08-2013 18:06:06 Windows Update
14-08-2013 20:03:15 TuneUp Utilities wird entfernt
14-08-2013 20:04:41 TuneUp Utilities Language Pack (de-DE) wird entfernt
14-08-2013 20:11:55 Removed Java(TM) 6 Update 35
14-08-2013 20:12:27 Removed Java(TM) 6 Update 35
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0786AD65-768E-4AB0-AA3B-9F895F2012BB} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation)
Task: {0FF29343-0AF1-45F8-94ED-EE1B1BA531F4} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {18FCBEA8-488D-4F74-9093-48B55BD14EE9} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {1EA2BF84-9866-4635-B949-71458CCD1B63} - \Plus-HD-2.6-updater No Task File
Task: {3417F0EA-2EAD-4085-8F91-3A71D4641437} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-18] (Adobe Systems Incorporated)
Task: {3D9BF754-A8FE-447F-B8BF-B4A76EC2674E} - \Plus-HD-2.6-firefoxinstaller No Task File
Task: {6454799E-A467-4F70-881E-4C5B66B78103} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12] (Google Inc.)
Task: {6A8397BD-1184-412A-BCD8-7E116FD60852} - \Plus-HD-2.6-chromeinstaller No Task File
Task: {708E0D99-EF40-429C-BB90-4E7660B8BD3A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8117E1CE-BFAB-4FA5-B773-A53D340884D9} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe No File
Task: {865BFBCA-7CB6-4206-B72F-B4354C930B07} - \Plus-HD-2.6-codedownloader No Task File
Task: {881FEAEB-AA48-4B32-947A-FE4B8F3C4153} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {8C22BAA8-E480-4F42-8171-8FB515C29E00} - System32\Tasks\AdobeAAMUpdater-1.0-Rudis-PC-Rudi => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-30] (Adobe Systems Incorporated)
Task: {8EC99FA4-5189-456C-BB24-B71BFAE555C2} - System32\Tasks\WPD\SqmUpload_S-1-5-21-3101294900-3047923089-2200517137-1002 => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation)
Task: {B1AAAA5D-5063-4D04-9516-5927118E5330} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {B6EC3EF0-485D-49B2-AC57-AAB4EDC9594D} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)
Task: {BC6CBF57-4670-4253-9175-114B897EAA37} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: {C12012C5-397F-4104-98C2-396321DCF603} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12] (Google Inc.)
Task: {C34F0690-E0B2-44F1-90CC-2005FA1DB6EB} - \Plus-HD-2.6-enabler No Task File
Task: {D12B552F-771C-4354-AFF7-79022379B9AA} - System32\Tasks\AdobeAAMUpdater-1.0-Rudis-PC-Mum => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-30] (Adobe Systems Incorporated)
Task: {DF8AC57C-0DDE-4FE5-8073-FCBC51B8C20D} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe No File
Task: {E7BBF892-5829-452D-97CA-4FC288075892} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3101294900-3047923089-2200517137-1022
Task: {E926E7BA-42EB-451B-8AED-50881F814E5A} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe No File
Task: {ECD91166-BCA8-44D2-8320-EDE9E8B9857D} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-21] (ASUS)
Task: {EE2DFCD8-54AC-487C-8918-0A3BAB822A5F} - System32\Tasks\User_Feed_Synchronization-{84714A75-57F2-419F-96FD-97F1A8917072} => C:\Windows\system32\msfeedssync.exe [2013-06-19] (Microsoft Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance.job => C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (08/14/2013 10:36:02 PM) (Source: Application Hang) (User: )
Description: Programm FRST64.exe, Version 3.3.8.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1774
Startzeit: 01ce992d768e1dc6
Endzeit: 16
Anwendungspfad: C:\Users\Rudi\Desktop\FRST64.exe
Berichts-ID: 183cf72e-0521-11e3-8c66-f46d04578b57
Error: (08/14/2013 09:22:42 PM) (Source: CVHSVC) (User: )
Description: Nur zur Information.
(Stream product id=0x0066): Streaming Failed
Error: (08/14/2013 09:21:41 PM) (Source: CVHSVC) (User: )
Description: Nur zur Information.
Too many failures while downloading ranges: 2
Error: (08/14/2013 09:18:21 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x800706b5, Die Schnittstelle ist unbekannt.
.
Error: (08/14/2013 09:18:21 PM) (Source: VSS) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x800706b5, Die Schnittstelle ist unbekannt.
]
Error: (08/14/2013 09:18:21 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x800706b5, Die Schnittstelle ist unbekannt.
.
Error: (08/14/2013 09:18:21 PM) (Source: VSS) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x800706b5, Die Schnittstelle ist unbekannt.
]
Error: (08/14/2013 09:12:48 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_RpcEptMapper, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc3c1
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17725, Zeitstempel: 0x4ec4aa8e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000269c5
ID des fehlerhaften Prozesses: 0x358
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_RpcEptMapper0
Pfad der fehlerhaften Anwendung: svchost.exe_RpcEptMapper1
Pfad des fehlerhaften Moduls: svchost.exe_RpcEptMapper2
Berichtskennung: svchost.exe_RpcEptMapper3
Error: (08/14/2013 07:58:57 PM) (Source: CVHSVC) (User: )
Description: Nur zur Information.
(Stream product id=0x0066): Streaming Failed
Error: (08/14/2013 07:58:06 PM) (Source: CVHSVC) (User: )
Description: Nur zur Information.
Too many failures while downloading ranges: 2
System errors:
=============
Error: (08/14/2013 09:22:30 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (08/14/2013 09:22:30 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (08/14/2013 09:22:30 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Google Update Service (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/14/2013 09:22:30 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update Service (gupdate) erreicht.
Error: (08/14/2013 09:12:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Remoteprozeduraufruf (RPC)" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Computers.
Error: (08/14/2013 09:12:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "RPC-Endpunktzuordnung" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2013 07:57:20 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (08/14/2013 07:57:20 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (08/14/2013 07:57:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Google Update Service (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/14/2013 07:57:18 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update Service (gupdate) erreicht.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2012-12-19 16:31:03.573
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-19 16:31:03.493
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-19 16:31:03.401
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-12-19 16:31:03.322
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 39%
Total physical RAM: 6056.16 MB
Available physical RAM: 3658.21 MB
Total Pagefile: 12110.5 MB
Available Pagefile: 9727.46 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:88.92 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:254.45 GB) (Free:164.67 GB) NTFS (Disk=0 Partition=3)
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 343771F7)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=186 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=254 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
|
15.08.2013, 11:31
| #4 |
| /// TB-Ausbilder | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Sehr schön, dann gehts mal weiter. Schritt 1: (Erinnerung: Antworte mir erst, wenn du alle Schritte abgearbeitet hast!) Adware entfernen mit JRT Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 2: Scan mit Combofix
__________________  Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
15.08.2013, 13:38
| #5 |
| | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert 1. JRT Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.4.6 (08.15.2013:1)
OS: Windows 7 Home Premium x64
Ran by Rudi on 15.08.2013 at 13:42:18,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Successfully stopped: [Service] APNMCP
Successfully deleted: [Service] APNMCP
~~~ Registry Values
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\intermediate
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\scheck
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ssync
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC}
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{69018592-4B7A-4177-9DC7-E56B13AAAE9D}
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_current_user\software\microsoft\internet explorer\low rights\elevationpolicy\{a5aa24ea-11b8-4113-95ae-9ed71deaf12a}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\askpartnernetwork"
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\Users\Rudi\AppData\Roaming\intermediate"
Successfully deleted: [Folder] "C:\Users\Rudi\AppData\Roaming\scheck"
Successfully deleted: [Folder] "C:\Users\Rudi\AppData\Roaming\ssync"
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0008976E-E9EA-40ED-882D-B7E644263722}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0044B4FB-B02A-431A-BC4A-D7B28EE5D944}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{008A69DF-7020-4FAA-A92A-596F981C088E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{00FDA35C-4712-4C67-8DF0-3C9BA23DDE59}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{01982C38-8899-407C-853B-069D7BF1B376}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{02152C1B-B537-4961-AC8A-14E29BF9238B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0290F08D-AC95-4C54-A114-64A474FA8337}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{03AC5B85-6D76-4243-8779-BC718010DE52}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{04319C12-761F-4337-8EFE-8317C17C9835}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{04344642-CA5F-47E5-B135-6200AB5E8894}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{04EEF593-638C-4501-BC2A-A44C19E2074C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{05897DAE-8A6A-482E-86F9-13D40CC7410E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{05FFB23D-81F6-4A13-9E18-C4FE1A3A960C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{060C3704-F8B6-4BF0-AA5D-AEDF10B89305}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{072E5CD6-2810-4F6E-9440-B00A2365BA37}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0733F9C5-2C86-4FD0-BC6B-2F542417FA35}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{078F2E22-E3E8-4A22-BDAD-912DA01A75A7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{079D4551-2117-4957-BEB5-0A26490B18BB}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{084F80C9-130F-45C1-B302-3F92FF09C320}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0ADA1873-E6F8-40B7-B3DE-166AFDF6570A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0C9DDA4D-A4AE-462F-B83E-DA5E7FD927CA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0CA39770-3868-493C-B197-5777EABB590E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0CD42128-1B42-42A3-B432-A3623FD32A51}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0CD7D548-D587-4248-89C6-F132F859A703}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0E15629D-8814-4850-BF70-C4825E39410D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0E2AB567-1395-49D6-98D1-1221CE5E4625}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0E46E190-73F9-47A2-83D2-27EF59DCCA96}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0EE29BD1-1466-4E94-9B9F-300A1AECAD78}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0F80C407-8D26-4AAA-AF5B-206733E44E15}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0FAB29AA-D2CD-46DF-AD3B-C17103958805}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0FBE813D-FDF8-42B8-B576-7E7469A84C3B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{0FC779E7-B2AF-4807-B54A-74B35A3322C5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{103C6B1D-582F-4AFE-9CBB-63C4631E8FB1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1097A1DD-9972-4481-9B06-967E9CF63ED2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{13052B1C-742A-4C3B-A495-91775857A9BE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{13865A40-868B-4B8D-9EFE-63593499C663}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{13CF8BFF-959F-43D1-B4BD-166301F508B5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{146D71E5-AFBE-4FB6-8005-0FC411728733}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{14986987-9E5E-47E6-A278-B26C76B90BCF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{15FEB2CC-05CF-420E-A6EB-5E2289E1AD25}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{174E8B8E-7D4A-4CEA-97E1-9F66F1F2A1D2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{17C57FFF-9CD8-49AF-98FB-B95287F0C0DF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{182D3160-A604-4DBC-8B7A-A36E4D910E69}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1864877C-77DC-45FE-8C78-D8C1C07C4D5F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{18ABD57E-672F-4ADA-B807-FCB080BB29CC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{192D4C58-85AB-477A-A36A-3342D0944AC0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{19B72F9C-B0A1-46EE-A67B-EEC802947059}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1A477E3C-DB29-4B22-B839-9575504B86F7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1A6452DF-76EB-442D-9C46-9EC5448469DB}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1A7E0455-2E7B-408F-B84A-6E0FAB88779E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1ABA828A-1909-4509-88D6-955BFBC5A0A2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1BF31394-3E91-4E84-856A-D3EA7D6188D7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1C16C448-4246-4E05-B7E6-E57192A1854B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1C288123-54CF-4F57-A83E-CFFF3FDDFEB3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1C4967EB-1815-4FF1-B39C-26C8B13C50EA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1C9A2949-FE13-4967-A300-2DDB2EED06C8}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1E2B8416-D5C5-4F1A-8595-C6DD2176EA72}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1E358D06-9AE2-4F39-9F83-035D043ACCF6}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1E80C0A1-4E3E-4675-B585-ED804BEB1259}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1E8820E2-FF47-4E6D-8D26-E43EA1922166}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1EBA038C-B87C-4C93-9B0B-1AFEFDDCD1A9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1EE9D68B-A7FE-435F-9A3D-1FEEC4EF7D4D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1F235A41-BB21-41F3-BB4A-FF1E258B4765}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{1F567F00-6B81-4D34-BBD7-DF601EC2BA7B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2076BB3C-5219-4AF5-B1F4-2C329D828E19}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{207E47C1-1F2F-49AC-91A0-3386C544E187}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{217236E5-7921-4BBA-B970-C0FE36EE933C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{217FA0CC-FEF5-42D0-9EF2-F5EA173CCA2B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{227AD07C-5150-42D1-82B4-62A2F0C2CA84}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{23701E1F-66B7-4ED4-9202-69D434629A53}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{23AB6059-1190-4B11-A995-F641D4AAC418}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{24094848-ED76-4507-BEE3-1470BAD6F729}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{28C31CC7-378F-4EA5-A3DB-92310C3D7519}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{297228CF-B462-4EA0-BE49-463DDC130ECE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2AD23727-501F-4CA6-96A7-6834381E287D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2C00C808-BF0B-4CB5-89CB-8D357E2DF0BE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2C3185E6-4EA2-4165-BC5E-4503BA7024F4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2CA760B8-B9C7-4418-B9B4-5C676ECB9D3F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2CFF6337-58D3-4C28-B8FB-100F97848782}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2D1B1FC4-25A0-4EEF-9989-1CE352CEE04C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2D4CB14F-33F1-4906-A8C5-43C58E5EB13A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2E03839B-4BBC-498B-8446-C568B94AFA58}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2E20A55D-BE59-4DF4-9433-83DB71560C53}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2E21E9B1-7476-4CF7-A45D-BCA0F6588653}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2E4E9E33-7B90-4AFC-A420-57A252614ED6}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2EB92842-8653-44E1-BADF-EF638C6FAE82}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2F12C55A-35B7-4002-A513-D98DF70B4C53}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2F3659AA-AE8B-4D72-9612-043D6508D50D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2F3BA793-E0F7-436A-BCE1-1F8132A7C586}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{2FA16484-1E2B-4CA8-AF98-23ED5B3FFE50}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{30430367-3248-4F24-B1D9-3174A5FFA5B9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{30EA5730-8EC5-4EE3-99EA-ECC5534CEEF2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{31AADDE1-8765-4D52-BA6D-BFEF3CEBF962}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{32ADC37C-0788-4B0B-AF01-5A046610CF33}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{33087265-129D-455F-A880-D5935F43C8A9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{336C308C-7BC2-40D5-9425-983A7FEF3327}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{33A90146-CF64-4EBD-9BF3-B484D14BD52E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3400ACD4-C5C5-4DBB-A74A-1BBD6A654792}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{34A5C4C1-25D4-42F4-8E2A-CAB0A10678A1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{34BB73B5-C979-488A-A63A-7BC37D125AA3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{34D82F08-DE6C-42CC-80E0-919501EB2BC8}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{350DA73F-74CC-428A-B008-2DEC78A8762B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{35459E16-6BD8-4587-9122-3E42247627C6}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{36427752-C95B-4755-A732-42A1BB89137C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3651D3CC-1361-4D9B-9A46-637880A22884}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{365F60C8-6A6F-441A-83D8-52D34DF4D70A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{36E84D4E-55AE-4FEE-A85B-BD54082D03B4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{37D434F9-FE1C-4DD2-88CE-41260BB0B293}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{383FA313-A4C4-4CF4-9C5D-B452B4369998}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{38A9C0D0-35A0-4256-A494-355BCDD9DDED}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{39035334-EC33-4A4E-8BC2-9DA330E80DD5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3B13487A-912D-4623-A088-55382B509D8E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3BBFE580-B4D4-4BEE-951C-9AA065D5F6F9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3C649699-EF4F-4A9E-9AD2-B5C37999ED92}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3CA57617-745A-4680-AE5D-27CE35A0AE0A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3CA91EB0-F8E9-4BCC-A51E-57F30113AB67}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3D7F5D0B-10D3-4CA6-8299-155240C6FCA9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{3FD775F5-27A2-4B31-A796-1F2A8FB3A522}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{40A7E52B-FAC2-4BA7-B6C5-38C11BC5A0AF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{40D4E06B-FF87-42B8-AF08-BFA67FD0D7DE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{41B2370A-82E5-4548-BC9E-0E4C71009A71}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{41EAADF2-C848-4DFB-BA25-B48BF4B9F347}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{42AFDA79-429C-409C-880A-26DD9D030165}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{42F848A7-C320-46CC-84A2-C00D05D4D08D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{438B39DF-BFFA-4373-8639-E7B0A50FC227}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{44D79892-48C1-43BA-B2C7-39EF59C0B20E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{4529D7D2-816D-438A-819B-DA419AC7B334}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{45D4C983-9615-4163-B6C2-6CE6EA3AE3C1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{45E5894C-2CB9-4E5E-BC5B-7C543324F320}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{4646DFAC-715F-47D8-8B6C-022A5895EBFE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{468C1197-7C48-47F0-8735-60244E48FFE2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{4696AEB6-57E9-4E6D-994C-4E27EEDE13AF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{470C5D9B-7EF9-4FD6-B88D-816A7334B474}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{47F5D096-9DFE-47BE-86F2-274DA1105D74}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{48D20882-13CC-417E-8688-912F8C960297}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{49B68D66-81CD-4CCB-BEBA-FE16911E31B9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{49DB48F7-B776-4FC5-8B8A-22B2C8A85B1E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{4A7A96AA-D977-41B8-8DD7-2569DE119B36}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{4DC36712-70D8-4BF8-92B7-6739C148742B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{4F2A28C2-BB74-419F-B8AE-8BCA39913DC5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{4FCA4B0F-ADC4-401B-B445-1B086DBEE8C1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5111DDA5-D33D-42E3-9E5F-305451772E09}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5114C10E-1A0A-48A0-A8D6-8D094C9FE285}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5182801B-5539-4848-8418-D7393B55C944}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{51C2058B-EA0B-437F-8179-7EA62E92B7D5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{52A2D3DA-CFFE-48AD-B763-A62896B4A332}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5460488E-598C-4BF6-8ADE-62E65B2CEA86}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5464CE49-7E47-4348-B0EC-C31016A87B97}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{54C58BF5-FAEB-4388-92FC-3A2BB1C8F020}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{55CE2BBB-266A-40E1-BFE6-5665E41792F9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{56D8CE46-93DB-4E04-BB65-3CDACFBEDAC1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5712225A-E081-46CB-959F-1A57F5ADDE3E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5805B3F5-0D4C-4C46-8C56-BC6FDB09EF43}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5826DD8D-E731-4341-9739-3299F960BEB1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5944622B-9921-4616-8929-C744173973CB}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{59B73942-C619-4BC7-A3A8-AF3E65F69CEE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5A7BEF03-2D46-434E-8FA6-A08A64F50754}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5B02045F-2507-45D5-8240-4931E193BBD9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5B15091B-7589-4D77-842D-C0DF302D75B2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5C0CC5AE-0DC8-48C6-8CBF-346D9581D823}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5C0FE961-05A0-4D42-8436-7A256E611594}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5C7C2A05-EC5A-4E03-9325-95FAF7E3F607}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5D348B95-0C1C-4C31-9A66-6D47540D5908}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5D3929B9-5E34-4A4E-91D0-73CE35EEB5D7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5DAC0659-9884-488C-8A2C-AB7B52C75815}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5E136BA5-98DC-40C8-968D-D37637A0699E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5E7D6483-22D9-4C36-A0D4-13AA0EC1FBF0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5ECDB677-DB38-44FD-A297-CC9B1A2D1592}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5F735FF2-3862-4BCE-B4CC-26F08472CA2C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{5FE725AA-7B3F-4CB1-9B56-EADD8745D754}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6020784D-C6F9-481F-A7E6-371267919758}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{60D3CD85-64DC-468A-A739-835FB7FD2721}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{611BAAAE-A2A6-4324-96ED-BF868CA98657}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6191B343-A002-47B7-AC8B-AB22E82F0052}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6270FDFA-2B3B-4622-A58A-F962083E8FB0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6397AB13-6A74-41B7-AEC7-765E9126A3D3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{640A876D-3232-495A-BA63-3AA998669F40}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6411CEFA-CB7A-4C04-ADDC-6F716CD7A522}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{641BD57C-2A4E-47BC-AA5F-A45E13914A9D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{64CC8A41-A3A0-471B-AAA1-F46DC380356D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{65ED4AF0-F3BF-4486-93ED-E5063F1FC8C1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6629E521-1A6C-45F0-95C7-BBC41415704C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{666DDFD6-0D28-40BF-893E-872FC11731F0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{66C17323-7351-4C0E-9604-ED26E591DFAE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{67922529-B06B-47CF-AB71-008A63724F45}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{68A1D105-1177-47D0-82E4-F75DA23B6A01}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{695BB117-C48D-466B-87A9-1AF7D62FA420}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6A8B2550-0293-42FA-A767-D60D45E647C0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6ADA9EE7-9AA6-401B-A76C-7EC0D3EBEC79}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6B2560F8-3734-49A2-B4DC-537CE7CC01C2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6B81BD00-80A8-4A88-8440-44EC3475FF54}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6BA04E08-6989-40DA-B439-5BF569D327C9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6D33A49C-6273-44FD-AA7B-D51C0E31377D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6D341E2A-71FB-40FF-BB45-BDCF7EA8CBD8}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6EA3100F-59FD-40E2-A58C-AF578D588237}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6EBF670D-FEC1-41D6-B2C9-C03974099E40}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6ED59064-26EF-4C7D-9EDF-F6DB12412F7D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6F21A6A5-1CF8-44B0-9BA7-F26147C59B0A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{6FD99626-DF89-4248-87F6-9341BFB9D4AE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{70A63FC3-44CE-41D9-8C8E-8384D4B3A8DC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7172E531-2639-4630-B9DA-FFE9911B89D2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{71F0DD02-7FF5-45F2-8A88-D99094C83574}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{72384F85-915B-41FF-B983-13BDF76BD5DF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7263BDCA-57AC-45EE-AB1A-5FF8772462C2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{731CE06B-8F46-4F1C-8D5C-6578FBCFAE50}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{75F506FF-B0EC-4514-88F2-7D14F48D89BE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{76B5B3CE-F19D-428C-AAAB-38A025BE4F7C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{776A6FC5-ACCF-4B56-90D7-B51484CFBF44}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{776E2865-5D75-4398-B571-2B63807FC37D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{779FF14D-E22B-45A2-A026-C54ECB1C14CA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{77CE91E4-818B-4972-8C63-8D96522A06FA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{77E4ADA5-8B8F-4C60-8CC0-6C35B20ED4A3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{782ECEFA-6B81-4CB0-9832-3149C8F69DAF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{783CDF0B-1B55-49AD-963A-72884C238949}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{789A99A8-AACA-44C7-AD85-E8F9813AAD46}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{78EE43BF-AF28-4BF6-A6B5-DFA3EE9F0B68}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{79085DFF-22F6-4711-A7C5-06738926E038}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{79AB1D8A-BD0A-4C3F-99D2-4D2A040A95E7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{79E3141D-700A-4D78-A7FF-5E41345A1590}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7A64F5F3-3624-4FAE-814F-A7D1B6CEBDB4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7BD88A60-F1A6-49F9-A989-DC621735A53B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7BE3BEAF-A90A-469D-B965-81954519828D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7C17E383-9713-4378-ACD4-4BB718BFBCC3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7ECB87B9-EE3A-48FB-91C6-E590FA5A679F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7F10E585-B2B4-4553-A92A-EF2D16C783D4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7F934C89-1C5B-4ABE-B6ED-11940C3078A6}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7FA30B44-A986-4D46-96BC-F40BB758744A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7FA446BD-BB7C-4A53-AB2A-ADAE901B6E6B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{7FEEA4B2-0593-4921-9E16-32093756E78F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{81AFCF0F-18B0-4668-8B8D-643B88413596}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{822A76F2-E73F-42A2-ACBC-DDF9472AD1A2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8326C08D-3401-4B98-A015-896B00195F31}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{832C1AFE-ED28-438B-9D8B-37FF4FC3F808}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{832E7AD6-A61C-4F7E-8D5A-BAD57664DEF5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{83327909-B164-4BCB-B647-4DA8CCEB8D52}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{837939BE-0A62-4545-B462-51B0EF34E6F7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{83839DE2-B10A-4DA2-92F7-8FC819411634}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{838A1CE1-144E-49AA-8C68-BE40783AD284}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8444A4AC-5D3A-4E5B-8AD9-48C588584A90}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{84CFFB8D-12B7-4F85-8301-87C1EA2D35C7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{85B02371-B77B-4F17-9B55-5320CD9550BF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{85BDA715-BE0D-4E13-80A2-69935813F8AA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{86B2C960-9425-4A7B-AFCE-645BFA77E900}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{87A20628-FB45-40AF-B3FA-323D041EA20B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{892168FC-76F0-4DF0-9EDD-AFDA0FF4F901}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{898ADE64-F663-48AE-9E3C-3A0BC06A9948}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{89E6D4D9-495F-44EA-9DC8-83F0DFF89F31}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8B63E7D1-74AC-4EA0-95CC-DC1409A3637F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8B9B9A37-20BC-48BB-B89E-654C975927F0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8C2B48F4-7AFB-46DB-85CC-92BB72104BC1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8C3CA724-D349-4F55-A861-81A8785AA7B4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8C86D55B-7DFC-4C4D-9ECC-F2DFDC144B8E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8D702A05-668D-47DB-8915-89ED7F2084B7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8D9D4F89-158B-4934-984E-6F75C43C268D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8DC16CFD-CC68-4374-88BE-E6CFE8A0CA5C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8DF4A705-6666-456F-9699-F618A4B755BE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8E09473F-7720-47D7-BD9D-F4BE0084902C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8E198982-C4AD-47DD-A914-A3AC74843625}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{8E4089B3-393D-401C-8DA6-D108592A68B8}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{90157BE0-4D3B-4DE3-AB1F-B2EAB8525F6E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{911FD20F-9227-435F-9A4B-AA1E0A82548B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9198DB72-AC9A-496E-8729-BDBCB3C5EA87}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{929BCF35-9619-40AA-89A5-E9779920ACE4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{92C2FA13-71F6-40D2-B5C3-B49009991F63}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{92D84487-60E9-4F0C-834C-8ED6206D74BB}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9419970D-969F-414F-BC4F-0D0050566AD3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{949BDAEE-C411-4A16-9DB8-563EB73FB25E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9509E4EF-CFDF-4A05-A00F-45C5B626A315}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{966E1100-7664-424D-8AE0-D3472D67AEE0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{967F55DA-22ED-4D9E-B81A-515B9ECC9692}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{96D805BC-1540-4842-ADF4-7B16B24A4AEB}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{976CF5EE-8571-4E2D-A6E3-FBC4F1B26C62}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{97D26CC1-F7FF-4109-BB9F-3881BA6F4C3B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{98ED1354-8BEC-46D4-8745-FB948024721C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{99977261-FE0C-46EF-85C2-C4D96568B275}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9AB499A1-0CA0-4C94-93C5-F3173DA88A80}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9AC9D79B-2C1A-43E2-88CF-C36279738D5B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9AE27903-C416-4AA7-B1D8-11136FDD1B5C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9B7F8EE4-5A77-4783-B158-584543EF7D0B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9BC9B591-5D2D-4367-9F14-36ADFB963374}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9C759AE6-A7C4-4123-B0C2-32BF162F40F5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9C7B13FC-FF6E-42C6-AAAE-89EFE31DAD2D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9D878896-730E-485C-B363-F961677D502A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9DB11DEE-9F31-4B21-8B1D-441533C839E1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9DBED036-F1AD-42F2-A45A-DEA81772E3D3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9DF4E049-4174-4039-B890-78F8D02246CA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9E88B2B4-6934-4C53-9833-B4D0EF54993E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9EBF300E-6DEB-44EB-AE5C-B99B04CCEF4B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9FBC3139-753E-4991-B784-A76F035302B2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{9FFB753D-C8CC-4A15-A7A2-81FD6B387127}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A06E91AB-6785-4EA3-9B1B-150C360E8613}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A18FE205-2CD1-4B46-9273-2A3056A6C82D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A2248C8B-7A0F-4FDF-8FD2-04DBBCF38014}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A276FAE2-EAA4-48AE-B936-9D3824329480}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A2B51B78-38DC-4BA1-9689-E0EA845A5861}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A2C267E0-8EE5-40D7-B69B-ADEC54017E24}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A35468DB-2F43-431B-B746-1FA3E55DB46E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A37C3321-9840-46F1-97F5-8AB895F12C07}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A417D987-AAED-47D8-8D11-DC81882E16B6}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A4A3A600-A393-4DD6-91F2-FF96E6C47C7A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A4CCDEF4-DF99-4085-80DB-9D9D213EF094}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A5E2315A-87F6-4E7F-A192-36C69ACA294F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A70210FB-0AFD-492F-A7D7-876918A68BDF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A74FB161-5E0C-4214-A751-BF042D9EED51}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A753FCE9-F4AC-47D7-BCC0-05A2BEBA4C5C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A76966EB-E586-4D81-B3D3-EE9CB226D570}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A7B27626-1409-4D08-B01C-34CBAD3875E5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A84E42FA-EBD7-435F-A24E-4E50CD514D8A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A86E9342-2D7F-4E4F-9430-8D887AD3E1F3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A8B01E58-D958-4E25-82B5-428D2C336490}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A8D6AD4E-D746-4CB2-801E-519EEDFC2A15}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A9230247-89E4-4721-9B27-1EA5C25D181B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A9867030-5377-4F02-9BDA-DF9A94EACE9C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{A9E81EDC-B5EC-4CB6-A39B-08BBDF709D6E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AA5714E4-DD98-4EF1-B949-BABBA2AD34E7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AA61591D-47E3-4995-AEA6-953263AA8C67}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AACE701C-7C1B-4629-869F-4C8EFE945693}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AB27654C-4F1E-4187-94FA-A89D6406CDB1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AB83EC75-EBF4-4B2D-B59B-BB684139C05E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{ABB713C3-8AB5-4EAF-BEA6-61B1D18CFCBC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AC16D57C-940E-404E-A2FB-A309942AFCFF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{ACC8321A-AAFC-4E72-8114-36A21500C044}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{ACE9D134-5BB1-4441-B304-68BEA8C8E91D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AE4BA8CA-6E22-49BC-BF1E-C4C5FFE6A82E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AE9597AF-83CE-41E5-B3E4-0B6A7C017576}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AEB8C28E-F2F9-4ECC-9879-FFFC96BF8CF2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{AED29FCC-6FCD-42E4-883D-DAF4B16DC63A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B1AA6B8E-B1DD-42B6-AA87-4D59FC05F15D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B1F7A478-39BB-450F-8655-EAEED6F53DFF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B20E611F-D01B-4822-880B-A9173F0D0934}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B278E597-AF6E-413D-AF58-5D479266D5F2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B2A79A28-C020-4B3C-9804-65729AB4431F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B2E0A325-7821-4FDB-A80E-72398E00B1AE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B2E4C35A-1681-4418-A403-556A788C675D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B3146D24-145F-4106-B26B-86338F43C500}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B3792618-780E-4959-9970-2A082585655A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B47807D7-BE66-4E75-96B8-51137F9077B5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B5DDE0D1-C3FB-4127-9F3D-44855177D5EC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B6008F27-E082-4D36-AC53-5E9C79255959}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B776A4E9-39F7-41F5-8BB0-BC4EABE9C297}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B7F39A72-DC80-4008-997A-F386836836C4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B8D0A389-2A95-4C7E-905C-E28F3FF6F3AA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{B9577158-544A-46E2-98C1-95E8266E463F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BA012738-B5F1-4697-B22D-6494368A3871}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BBCB9CE7-018A-46E7-98E8-B2A5DB33ECCC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BC3D5C7E-7D43-409A-B8CF-CD1A6B85E8C7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BC98062B-E8B7-454E-B6FC-46A35AF6A6A2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BC9E7BFD-7CA1-43DB-B880-09634D47D0D9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BCA4D04D-EA09-412E-8FEF-1A74BB1E859E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BCE389CE-80DD-4DE4-965D-614B968721DD}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BDEE1DD9-E001-4F5D-9EC3-E7E466BED8E0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BDF67BE4-F1AE-41C6-A7C3-22C1C979DE15}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BECD9144-1DBF-457E-B1FE-CBD869B2B876}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BF163A2A-EDE2-4017-8A69-59B7815613C0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{BF1F2013-99E3-45AB-9BC1-105E192B08B8}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C0EA860B-FB6D-4087-A291-B9BECB4353A2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C1B371D7-67FD-449C-944D-F46D0A9E53BC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C24C3DFC-E79C-4E0A-B998-035D61AB579E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C25B8BD3-778D-4DA0-9973-C7024FE8CFDC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C2BD661C-6BEB-4E0F-821C-DD9873CCEFAE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C3769E7E-3D3E-41E4-B469-A6AEE818ACA1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C45C57B9-A965-49AF-BDF3-0EE5E6E98520}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C4B45828-9CB5-408E-822F-10E2CB983393}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C4F1AEFC-51C6-432E-A44C-D0D37B6D7E53}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C5AA6098-4416-4F19-B404-FDB5BDC684DD}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C5BAF4C9-4CAC-438E-B6CA-5FA6EEBA5678}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C5E32290-60F9-40DA-8171-61EEEF21CB3C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C62C0BFC-3871-438D-BCFF-5130E799729A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C6F39C5F-263A-40C7-AD8D-6EB006D9FA1E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C73ABD5F-588E-4A3C-AB60-045A58F17873}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C810216A-9E37-410B-8DC6-949A69484479}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C8E0512C-FCCE-460C-AC32-EEBF377B258F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C901DC37-A727-4DAF-A3A5-9C0DCBF4F183}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C92210AF-CBF5-44D0-92DE-F798A13DF5D6}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C97003A8-6B7C-4467-98BF-975095E157D0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C97CAE98-8864-4E3D-878C-0A0D0DDA0DE9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C9885A10-FBC5-4B23-B31B-0BC640E79C4F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{C9969015-BA5F-4791-B854-409E1FFA2EEC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CAC2FFC7-A215-488F-857A-37CCC52B1526}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CAD7E36C-E9E2-4015-ADAE-7029292DA0AB}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CAEAF523-A68F-4341-8058-0E9260BB3945}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CAF2B9DB-F3FB-4ACC-BCA1-EF0E5E38D5C0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CB57EFD1-9840-4CC4-8ADE-751ADDD2C95A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CC2D1E3E-8181-4C8E-836A-39FA4BC4F49B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CC36CD4B-7147-4B34-A30E-FA946D2F2A42}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CCE2A361-CF24-4942-9B15-D33706626A62}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CDF54F1C-DD33-4A47-823E-13F7CF786AD7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CE9C4CE3-5628-473B-BC79-5C4BF2476713}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{CEE84E44-C379-425D-8A0C-9AD3D09E382B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D0821265-4B7D-47A7-9195-12CC052C6E8B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D087F270-6F2A-48A4-8949-F82BD53C8FA0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D17A77D2-6A81-4CF6-9BB3-11BAA0110E9B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D1B956FD-8CB6-4AD3-8E14-744EE58B22CF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D52E9B0F-92E0-4CD8-814C-7CCCF53A0B9C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D5F65F7E-C4A5-4A77-860C-C62EECB0442C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D608C1FD-696E-4DC9-888F-AEAEFF026ABF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D62C71BF-6521-4366-BB82-A17EF550C3DF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D71C9319-4793-4B3C-8BE8-17F01105D836}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D73B37F0-F6E9-4212-9ABB-AC61ABA2C492}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D75D3860-7094-4A56-9248-8A24FBC70961}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D79519AF-B2A3-4373-8354-BA60BEA74A6A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D8ED6397-6B26-465C-81BD-A188EFCE63E9}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D90BC997-2CE2-40BE-A2FE-609142F1EF93}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D97FA1B1-838D-4BE1-98F6-662AE8C1EEFF}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D9A1339B-7F52-4C04-B106-0D29CF270C08}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{D9D736E1-6A8D-4CC8-95D6-E9E5F74457F4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DA229CEF-C7FE-40D3-B390-9ADC1390D4A3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DA806384-246B-4DC3-BC78-130A52DFD2CE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DABBD926-9094-471F-BF4B-2205B64ED422}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DB01B53E-CAD5-4E25-9AE1-0E2952C92957}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DB106368-C86B-4AF0-806A-3D34599FACEE}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DB188B4A-4A35-4EC7-A195-942611D70081}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DB9913BA-EF3F-4891-8CE3-8A6E8996F4E3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DC7079A1-9998-4250-AEC2-E58F4DEB2F13}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DCEFFA34-97F4-447A-B077-ED9919B20903}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DCFBAA00-CC60-4A9A-B0BC-5ECF24956072}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DD0D9705-3A35-44E4-8978-3131919AE293}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DD57C3D0-8570-4A4A-A15D-40ECD7BA4840}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DE7C3882-AA58-40B4-9FBF-238A427DC8BC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DF9266DF-C50D-4B87-BB2E-4630B7120955}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DFA80C27-6004-4CFA-B54E-711DEEFA9137}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DFE3C67C-5ED7-4623-A1D9-893CCDE6886A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{DFE9AD52-60D6-495C-9CF7-11589FEE3620}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E08826C8-9700-4FFF-BC9C-CBE691BB1001}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E3637484-A067-4F49-95F1-8CE684F23410}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E48091A5-DB5C-42F1-8595-389DEECB7BF5}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E549BFEE-9E37-4BA0-979C-2C3C44CD3D34}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E574CA07-F9BF-42A0-991A-AF772DF11893}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E6F90A81-5EF8-4FDE-BF45-4A6361899844}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E736A441-B9C6-4CFF-B404-71484CD9D47E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E7531DA2-2AAC-470C-9EFE-38C7F7DBBCE4}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E7AB01FC-A529-4D48-9D60-7CDFDA5D9D7D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E7B77BC5-E0CD-435C-A533-D88A6AD05A4A}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E7D2F5A5-4E3E-4F61-9412-013CCD5BA226}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E7F9F729-9A8D-4BF9-A533-DC0B0D1F788D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E97EDEE9-8447-4FEC-A298-71E1A1460FA6}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E9BCFD87-4B8F-48A9-B9C1-1F2E3208E134}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E9D0EACE-E90C-4BEC-9F65-C486BF07DA7B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E9D962E4-EB08-4B28-8512-7332449912F3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{E9F82390-05BA-4974-9707-67A4798C56A0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{EB379E5B-8DF1-4413-91D1-282732D586E7}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{EB43B30F-E3BE-4B15-8A59-888BC3E0F2EB}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{ECACF057-2EA1-4DA4-B237-819F554650C2}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{EF2A3169-F7D9-4544-8E8D-51D8C4916CD8}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{EF3F4758-33AA-4387-A23F-D5D4EE95028B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{EF5906F7-975A-492E-8D31-4FDC294C9DB1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{EF9F2EEE-9D31-4BFC-84DF-206854BD4233}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{EFEB5552-80E4-44C0-A64B-01EE2C78DB19}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F0612434-6397-43C5-817A-1FD8BE6ADB7C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F1B8EE0B-97A8-4836-B0E8-05BA6E3344D0}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F2E95D03-CBC2-4E77-9687-C0499CE15328}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F2F3C7E6-F746-438E-9BAD-4BEE80D7DC3E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F3615C39-51AD-4BFA-A70B-721501C33D9D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F385B7E8-72BD-402D-82A7-B128D1F73699}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F4F9EC09-CDFC-48E4-A419-32E3C18BDDB1}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F519911C-62A9-45AD-AF25-E731A1D56464}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F55C7A62-59AC-44CD-BFB2-0D4F43111232}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F64203DB-A69A-4A1C-AB04-B7EDCB329632}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F71EC9D6-44B4-47FD-93E1-3C59D30D406F}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F7B70022-D3B5-4D28-AD75-27A3C83FAE03}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F823D2BC-F148-4182-A683-15713EFAE235}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F857BD04-76C6-4A02-ACDE-F9CA7657EB72}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F88F9E08-6EBF-47EA-A37F-FC657496C23E}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F8909BF7-5D6A-49DE-8A14-3BC417ADD61B}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F8C017CD-6DF0-4EB2-B62C-E5B0593975B3}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{F9A9A252-CD5D-418B-B638-0D7C78B15DFA}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FA081A99-F166-46AE-9E06-3BD6CC959C36}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FABFCCBD-A31F-4A80-9633-33BD98AAA259}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FB72B92C-C8C4-4122-B288-90E9EBF82F0D}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FBC88DFF-9065-4A6C-9F9E-F3102CB13F75}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FC3DF1EF-6DF5-416C-9C3F-A34DFA3A6BAC}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FC58AA7A-2B0F-4714-8C83-DB0B21478E9C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FCA0FF75-1596-4496-90AC-4ACB6557F816}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FD1BE00E-C515-465F-A070-1C8D6DF52615}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FD9DACE8-B6D9-4A2F-B433-9B17CCDA0890}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FDA6E553-AD64-473E-91B7-568065E2983C}
Successfully deleted: [Empty Folder] C:\Users\Rudi\appdata\local\{FDDC3D9E-1456-45E1-A25F-CC37B67CAE12}
Successfully deleted: [Folder] "C:\ProgramData\AskPartnerNetwork"
Successfully deleted: [Folder] "C:\Program Files (x86)\askpartnernetwork"
~~~ FireFox
Emptied folder: C:\Users\Rudi\AppData\Roaming\mozilla\firefox\profiles\xhfymxkb.default\minidumps [290 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 15.08.2013 at 13:47:42,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter ComboFix 13-08-14.02 - Rudi 15.08.2013 14:02:12.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.6056.4152 [GMT 2:00]
ausgeführt von:: c:\users\Rudi\Desktop\ComboFix.exe
AV: Sophos Anti-Virus *Disabled/Updated* {65FBD860-96D8-75EF-C7ED-7BE27E6C498A}
SP: Sophos Anti-Virus *Disabled/Updated* {DE9A3984-B0E2-7A61-FD5D-409005EB0337}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Rudi\savw_100_sa_sfx.exe
c:\windows\msvcr71.dll
c:\windows\SysWow64\frapsvid.dll
c:\windows\SysWow64\System32\MASetupCleaner.exe
c:\windows\SysWow64\System32\muzapp.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-07-15 bis 2013-08-15 ))))))))))))))))))))))))))))))
.
.
2013-08-15 12:12 . 2013-08-15 12:12 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-08-15 12:12 . 2013-08-15 12:12 -------- d-----w- c:\users\Mum\AppData\Local\temp
2013-08-15 12:12 . 2013-08-15 12:12 -------- d-----w- c:\users\Gast\AppData\Local\temp
2013-08-15 12:12 . 2013-08-15 12:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-08-15 11:48 . 2013-08-15 11:48 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8ECC484A-5F50-4B27-8E70-07BDEF71754E}\offreg.dll
2013-08-15 11:42 . 2013-08-15 11:42 -------- d-----w- c:\windows\ERUNT
2013-08-14 21:17 . 2013-08-14 21:21 -------- d-----w- c:\windows\system32\MRT
2013-08-14 20:33 . 2013-08-14 20:33 -------- d-----w- C:\FRST
2013-08-14 20:19 . 2013-08-14 20:26 -------- d-----w- C:\AdwCleaner
2013-08-14 18:07 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8ECC484A-5F50-4B27-8E70-07BDEF71754E}\mpengine.dll
2013-07-25 09:27 . 2013-07-25 09:27 -------- d-----w- c:\users\Rudi\AppData\Roaming\Snz
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-14 21:17 . 2011-09-07 18:15 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-07-09 04:45 . 2013-08-14 18:12 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-07-05 11:40 . 2013-07-05 11:40 312232 ----a-w- c:\windows\system32\javaws.exe
2013-07-05 11:40 . 2013-07-05 11:40 189352 ----a-w- c:\windows\system32\javaw.exe
2013-07-05 11:40 . 2013-07-05 11:40 188840 ----a-w- c:\windows\system32\java.exe
2013-07-05 11:40 . 2013-07-05 11:40 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-07-05 11:40 . 2013-01-19 10:02 972712 ----a-w- c:\windows\system32\deployJava1.dll
2013-07-05 11:40 . 2013-01-19 10:02 1093032 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-06-28 22:04 . 2012-04-02 12:18 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-28 22:04 . 2011-09-07 20:23 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-19 18:14 . 2013-06-19 18:14 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-06-19 18:14 . 2013-06-19 18:14 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-06-19 18:14 . 2013-06-19 18:14 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-06-19 18:14 . 2013-06-19 18:14 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-06-19 18:14 . 2013-06-19 18:14 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-06-19 18:14 . 2013-06-19 18:14 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-06-19 18:14 . 2013-06-19 18:14 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-06-19 18:14 . 2013-06-19 18:14 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-06-19 18:14 . 2013-06-19 18:14 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-06-19 18:14 . 2013-06-19 18:14 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-06-19 18:14 . 2013-06-19 18:14 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-06-19 18:14 . 2013-06-19 18:14 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-06-19 18:14 . 2013-06-19 18:14 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-06-19 18:14 . 2013-06-19 18:14 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-06-19 18:14 . 2013-06-19 18:14 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-06-19 18:14 . 2013-06-19 18:14 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-06-19 18:14 . 2013-06-19 18:14 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-06-19 18:14 . 2013-06-19 18:14 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-06-19 18:14 . 2013-06-19 18:14 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-06-19 18:14 . 2013-06-19 18:14 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-06-19 18:14 . 2013-06-19 18:14 81408 ----a-w- c:\windows\system32\icardie.dll
2013-06-19 18:14 . 2013-06-19 18:14 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-06-19 18:14 . 2013-06-19 18:14 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-06-19 18:14 . 2013-06-19 18:14 441856 ----a-w- c:\windows\system32\html.iec
2013-06-19 18:14 . 2013-06-19 18:14 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-06-19 18:14 . 2013-06-19 18:14 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-06-19 18:14 . 2013-06-19 18:14 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-06-19 18:14 . 2013-06-19 18:14 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-06-19 18:14 . 2013-06-19 18:14 235008 ----a-w- c:\windows\system32\url.dll
2013-06-19 18:14 . 2013-06-19 18:14 216064 ----a-w- c:\windows\system32\msls31.dll
2013-06-19 18:14 . 2013-06-19 18:14 197120 ----a-w- c:\windows\system32\msrating.dll
2013-06-19 18:14 . 2013-06-19 18:14 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-06-19 18:14 . 2013-06-19 18:14 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-06-19 18:14 . 2013-06-19 18:14 102912 ----a-w- c:\windows\system32\inseng.dll
2013-06-19 18:13 . 2013-06-19 18:13 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-06-19 18:13 . 2013-06-19 18:13 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-06-19 18:13 . 2013-06-19 18:13 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-06-19 18:13 . 2013-06-19 18:13 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-06-19 18:13 . 2013-06-19 18:13 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-06-19 18:13 . 2013-06-19 18:13 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-06-19 18:13 . 2013-06-19 18:13 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-06-19 18:13 . 2013-06-19 18:13 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-06-19 18:13 . 2013-06-19 18:13 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-06-19 18:13 . 2013-06-19 18:13 149504 ----a-w- c:\windows\system32\occache.dll
2013-06-19 18:13 . 2013-06-19 18:13 144896 ----a-w- c:\windows\system32\wextract.exe
2013-06-19 18:13 . 2013-06-19 18:13 13824 ----a-w- c:\windows\system32\mshta.exe
2013-06-19 18:13 . 2013-06-19 18:13 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-06-19 18:13 . 2013-06-19 18:13 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-06-19 18:13 . 2013-06-19 18:13 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-06-05 03:34 . 2013-07-11 20:35 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 14:05 . 2013-04-09 04:45 32536 ----a-w- c:\windows\system32\drivers\stdriverx64.sys
2013-06-04 10:50 . 2012-07-26 19:09 37400 ----a-w- c:\windows\system32\SophosBootTasks.exe
2013-06-04 06:00 . 2013-07-11 20:35 624128 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 04:53 . 2013-07-11 20:35 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2013-05-22 15:29 . 2011-11-23 16:42 893552 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2013-05-22 15:29 . 2011-11-23 16:42 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2013-05-22 15:29 . 2011-10-06 04:21 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2013-05-17 13:38 . 2010-06-24 19:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Spotify Web Helper"="c:\users\Rudi\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-07-04 1104384]
"Snoozer"="c:\users\Rudi\AppData\Roaming\Snz\Snz.exe" [2013-07-23 1137673]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"BDRegion"="c:\program files (x86)\Cyberlink\Shared files\brs.exe" [2010-11-12 75048]
"Sophos AutoUpdate Monitor"="c:\program files (x86)\Sophos\AutoUpdate\almon.exe" [2012-07-06 900160]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2012-12-18 825560]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2011-07-21 5716608]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
.
c:\users\Mum\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Intel(R) Turbo Boost Technology Monitor 2.0.lnk - c:\program files\Intel\TurboBoost\SignalIslandUi.exe [2010-11-30 204288]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe -d [2011-8-27 12862]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll c:\progra~2\Sophos\SOPHOS~1\sophos_detoured.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService]
@="service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"RemoteControl10"="c:\program files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SophosAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 CLKMSVC10_38F51D56;CyberLink Product - 2011/06/04 18:42;c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe;c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 swi_update_64;Sophos Web Intelligence Update;c:\programdata\Sophos\Web Intelligence\swi_update_64.exe;c:\programdata\Sophos\Web Intelligence\swi_update_64.exe [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe;c:\program files (x86)\Google\Update\GoogleUpdate.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 SophosBootDriver;SophosBootDriver;c:\windows\system32\DRIVERS\SophosBootDriver.sys;c:\windows\SYSNATIVE\DRIVERS\SophosBootDriver.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]
S1 SAVOnAccess;SAVOnAccess;c:\windows\system32\DRIVERS\savonaccess.sys;c:\windows\SYSNATIVE\DRIVERS\savonaccess.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe;c:\windows\SYSNATIVE\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 lxeb_device;lxeb_device;c:\windows\system32\lxebcoms.exe;c:\windows\SYSNATIVE\lxebcoms.exe [x]
S2 SAVAdminService;Sophos Anti-Virus Statusreporter;c:\program files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe;c:\program files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [x]
S2 SAVService;Sophos Anti-Virus;c:\program files (x86)\Sophos\Sophos Anti-Virus\SavService.exe;c:\program files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 swi_service;Sophos Web Intelligence Service;c:\program files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe;c:\program files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 stdriver;SoundTap Filter Driver v6.05.00;c:\windows\system32\DRIVERS\stdriverx64.sys;c:\windows\SYSNATIVE\DRIVERS\stdriverx64.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - CLKMDRV10_38F51D56
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-15 04:08 1629648 ----a-w- c:\program files (x86)\Google\Chrome\Application\25.0.1364.172\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12 15:50]
.
2013-08-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12 15:50]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-01 2189416]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2010-08-11 324096]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-12-14 172144]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-12-14 399984]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-12-14 441968]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll c:\progra~2\Sophos\SOPHOS~1\sophos_detoured.dll c:\windows\SysWOW64\nvinit.dll c:\progra~2\Sophos\SOPHOS~1\sophos_detoured.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: An vorhandene PDF-Datei anfügen - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: In Adobe PDF konvertieren - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Linkziel an vorhandene PDF-Datei anhängen - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Linkziel in Adobe PDF konvertieren - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
LSP: c:\programdata\Sophos\Web Intelligence\swi_ifslsp.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\
FF - prefs.js: browser.search.selectedEngine - LEO Eng-Deu
FF - prefs.js: browser.startup.homepage - google.de
FF - prefs.js: network.proxy.ftp - 192.168.1.1
FF - prefs.js: network.proxy.ftp_port - 3128
FF - prefs.js: network.proxy.http - 192.168.1.1
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.socks - 192.168.1.1
FF - prefs.js: network.proxy.socks_port - 3128
FF - prefs.js: network.proxy.ssl - 192.168.1.1
FF - prefs.js: network.proxy.ssl_port - 3128
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-07-29 08:50; toolbar_SGT-V7@apn.ask.com; c:\users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\xhfymxkb.default\extensions\toolbar_SGT-V7@apn.ask.com.xpi
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-08-15 14:23:49
ComboFix-quarantined-files.txt 2013-08-15 12:23
.
Vor Suchlauf: 19 Verzeichnis(se), 95.775.522.816 Bytes frei
Nach Suchlauf: 25 Verzeichnis(se), 95.768.494.080 Bytes frei
.
- - End Of File - - 7E1F9555A9014557F8FCF1F3178EEA8C
D41D8CD98F00B204E9800998ECF8427E
|
|
15.08.2013, 13:57
| #6 |
| /// TB-Ausbilder | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Windows-Defender abschalten Da du einen anderen Virenscanner benutzt solltest du dringend den windowseigenen Scanner abschalten:
Mehr zu den Hintergründen und einer tieferen Deaktivierung: LINK Gut!  Soweit ich das sehe haben wir damit alles Schädliche entfernt. Um sicher sein zu können müssen jetzt noch ein paar Kontrollen machen und werden dann deinen Computer noch auf einen sicheren Stand bringen. Da diese Scans jetzt sehr lange dauern können bitte ich dich mir erst wieder zu schreiben, wenn du auch wirklich alles erledigt hast oder Probleme auftreten sollten. Schritt 1: (Erinnerung: Antworte mir erst, wenn du alle Schritte abgearbeitet hast!) Quick-Scan mit Malwarebytes Downloade Dir bitte Schritt 2: Hinweis: Der Scan kann sehr lange (einige Stunden) dauern!  Schritt 3: Scan mit SecurityCheck Downloade Dir bitte  SecurityCheck und:
__________________ --> Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert |
|
15.08.2013, 18:52
| #7 |
| | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert 1. Malwarebytes Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.08.15.03 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16660 Rudi :: RUDIS-PC [Administrator] Schutz: Aktiviert 15.08.2013 15:11:10 mbam-log-2013-08-15 (15-11-10).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 304737 Laufzeit: 6 Minute(n), 19 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 9 C:\Users\Rudi\AppData\Roaming\Common\LuaRT (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\alien (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\luasql (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\Microsoft.VC80.CRT (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\mime (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\socket (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 53 C:\Users\Rudi\Downloads\SoftonicDownloader_fuer_bluetoothview.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\alien.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\base.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\debug_ext.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\debug_init.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\getopt.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\io_ext.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\lfs.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\list.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\lpeg.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\ltn12.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\lua.exe (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\lua5.1.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\lua51.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\luacom.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\math_ext.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\mime.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\modules.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\package_ext.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\set.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\socket.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\std.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\strbuf.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\string_ext.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\table_ext.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\tree.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\wlua.exe (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\alien\core.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\alien\struct.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\util.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode\array.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode\calls.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode\number.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode\object.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode\others.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode\strings.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\decode\util.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\array.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\calls.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\number.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\object.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\others.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\output.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\output_utility.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\json\encode\strings.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\luasql\sqlite3.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\mime\core.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\socket\core.dll (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\socket\http.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rudi\AppData\Roaming\Common\LuaRT\socket\url.lua (PUP.Optional.LuaRT.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=48a106eb5884e14c86f00669eedf6d04
# engine=14782
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-08-15 04:47:24
# local_time=2013-08-15 06:47:24 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 17911 128215094 0 0
# compatibility_mode=8450 16777213 100 98 18321 60733476 0 0
# scanned=401010
# found=3
# cleaned=0
# scan_time=11805
sh=008339B2263D4E32D5E0439A1D1D2433E94DA38F ft=1 fh=6e6ec6ea7c4ea583 vn="a variant of Win32/Adware.RK.AM application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RelevantKnowledge\rlls.dll.vir"
sh=158332739A5CCE9695A15FBA4A029A908BA4BFDA ft=1 fh=96fa98951ac2ea99 vn="a variant of Win32/Adware.RK application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RelevantKnowledge\rlservice.exe.vir"
sh=5D11871F1E042EF6B9E86BBE2AB40A902861B79C ft=1 fh=461e7790a681d7a0 vn="Win32/Adware.RK application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RelevantKnowledge\rlvknlg64.exe.vir"
Code:
ATTFilter Results of screen317's Security Check version 0.99.72 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Sophos Anti-Virus WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Java 7 Update 7 Java SE Development Kit 7 Update 7 Java version out of Date! Adobe Flash Player 10 Flash Player out of Date! Adobe Flash Player 11.7.700.224 Adobe Reader XI Mozilla Firefox (23.0) Google Chrome 25.0.1364.152 Google Chrome 25.0.1364.172 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Sophos Sophos Anti-Virus SavService.exe Sophos Sophos Anti-Virus SAVAdminService.exe Sophos Sophos Anti-Virus Web Intelligence swi_service.exe Malwarebytes' Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` |
|
15.08.2013, 19:04
| #8 |
| /// TB-Ausbilder | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Brauchst du das DevelopmentKit von Java? Wenn ja ... bitte Update, wenn nein, weg damit. Prima! Damit wären wir fertig. Wir räumen jetzt noch ein wenig auf und dann habe ich am Ende etwas Lesestoff für dich. Schritt 1: Tools deinstallieren Die Reihenfolge ist hier entscheidend.
Schritt 2: Falls du mich jetzt fragen willst, was mit den noch gefundenen Bedrohungen von Eset ist ... lies bitte jetzt nochmal meinen Hinweis zu delfix einige wenige Zeilen weiter oben.Schritt 3: ESET deinstallieren (Optional)
Schritt 4: Java Update (Windows XP, Vista, 7) Dein Java ist nicht mehr aktuell. Ältere Versionen enthalten Sicherheitslücken, die von Malware missbraucht werden können. Schritt 5: Entferne Adobe Flash 10 und älter über die Systemsteuerung. Abschließend noch Tipps zu folgenden Themen:
Lesestoff:Systemupdates Man kann es gar nicht oft genug erwähnen, wie wichtig es ist, sein System aktuell zu halten. Dein Auto bringst du ja auch regelmässig zur Inspektion in die Werkstatt. Stelle also bitte sicher, dass die Systemupdates aktiviert sind:
Lesestoff:Softwareupdates Ebenso wichtig wie die Systemprogramme ist auch die Software, die du täglich nutzt. Die folgende Liste gibt dir einen kleinen Überblick mit Links zu den Updates, welche Programme dringend aktuell gehalten werden müssen (falls du sie überhaupt installiert hast und nutzt), weil durch deren Sicherheitslücken oft Malware auf die Computer gelangen kann:
Lesestoff:Sicherheitssoftware Würde dich jemand nackt auf dem Motorrad auf der Autobahn überholen würdest du auch den Kopf schütteln. Dein Computer braucht auch einen Schutz vor den täglichen kleinen Angriffen durch Schädlinge. Neben hervorragenden kommerziellen Anti-Viren-Lösungen gibt es auch durchaus gute Schutzprogramme, die kostenfrei mit reduziertem Funktionsumfang erhältlich sind. Aber vorsicht, hier gilt nicht "je mehr desto besser". Was du brauchst ist genau einen Virenscanner mit Hintergrundwächter. Nicht mehr und nicht weniger. Es gibt hier viele Produkte auf dem Markt, die einem gute Dienste leisten. Ich persönlich empfehle dir Avast Free Antivirus. Es bietet relativ guten Schutz, bei wenig nerviger Werbung und installiert dir ein Browserplugin, das dich vor gefährlichen Webseiten warnt.
 Lesestoff:Sicheres Surfen Zunächst muss man sagen, dass es üblicherweise immer der menschliche Faktor ist, der es Malware ermöglicht auf einen Computer zu gelangen. Kaufst du Leuten, die an deiner Haustür klingeln, auch sofort ohne nachzudenken irgendwelches Zeug ab? Gewöhne dir daher zunächst einige Verhaltensregeln beim Surfen im Internet an:
Aber selbst bei der peinlichen Einhaltung dieser Regeln kann es dennoch zu einer sogenannten Drive-By-Infektion kommen, bei der ein Schädling aus dem Schutzmechanismus des Webbrowsers ausbricht. Um die Sicherheit noch weiter zu erhöhen gibt es spezielle Schutzsoftware, die deinen Browser noch weiter absichert.
Zuletzt denke bitte über die Benutzung eines alternativen Browsers nach. Programme, die nicht so oft verwendet werden, sind auch nicht so sehr im Focus der "bösen Jungs". D.h. du bist mit einem exotischen Browser eher auf der sicheren Seite. Grundsätzlich bist du erst einmal deutlich sicherer, wenn du nicht den Internet Explorer benutzt.
Damit wünsche ich dir noch viel Spaß beim Surfen im Internet ... und vielleicht möchtest du ja das Trojaner-Board unterstützen? Eine Bitte: Gib mir eine kurze Rückmeldung, wenn alles erledigt ist und keine Fragen mehr vorhanden sind, damit ich diesen Thread aus meinen Abos löschen kann.
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
15.08.2013, 19:36
| #9 |
| | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Leider bekomme ich folgende Fehlermeldung, wenn ich Java installieren will.  |
|
15.08.2013, 19:42
| #10 |
| /// TB-Ausbilder | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Das kann mal passieren ... ist aber okay.
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
15.08.2013, 19:47
| #11 |
| | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Aber ich kanns ja nicht fertig stellen.... |
|
15.08.2013, 19:49
| #12 |
| /// TB-Ausbilder | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Das kommt üblicherweise am Ende, wenn alles vorbei ist. Du kannst auch die Windows 32 offline version versuchen: Java-Downloads für alle Betriebssysteme
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
15.08.2013, 19:53
| #13 |
| | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Ne bringt irgendwie auch nichts.... Jedenfalls kommt das direkt am Anfang.  |
|
15.08.2013, 20:01
| #14 |
| | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Mit der 64-Bit Version hat es dann doch funktioniert  Soweit habe ich dann keine weiteren Fragen. Vielen Dank für alles  |
|
15.08.2013, 20:18
| #15 |
| /// TB-Ausbilder | Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert Schön, dass wir helfen konnten  Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen Falls du noch Lob oder Kritik loswerden möchtest, dann gibt es diesen Bereich hier: Lob, Kritik und Wünsche - Trojaner-Board
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
| Themen zu Zugriff auf gefährliche Seite gesperrt - 20 Mal hintereinander - Sicherheitsdienste wurden von alleine deaktiviert |
| computer, daten, deaktiviert, design, firefox, folgendes, gefährliche, leben, meldung, problem, programm, pup.offerbundler.st, pup.optional.luart.a, rechner, seite, sicherheitscenter, sophos, virenproblem, wiederholt, win32/adware.rk, win32/adware.rk.am, windows, windows 7, zugriff |
+ R Taste und kopiere folgenden Text in das Ausführen-Fenster und klicke OK.
Linear-Darstellung
