| |
| |||||||
Log-Analyse und Auswertung: Hatte Qvo6 was nunWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
02.09.2013, 16:53
| #1 |
 |  Hatte Qvo6 was nun Nach allerlei Versuchen den qvo6 rauszubringen war dies nur teilweise möglich. Unter dem IE-Button war er immer noch da. Nachdem ich das System 2 Tage zurückgesetzt habe und wieder gestartet habe ist er anscheinend ganz weg (inzwischen 3 mal gestartet). Ich trau der Sache jedoch nicht deshalb die Frage an die Spezialisten was nun ? Ich arbeite seit Jahren mit: Windows7; AVG; Malwarebytes; selten mit CCleaner Die Logfiles hab ich 3 Stunden vor der System-Rücksetzung erstellt. Gruss Ulf Code:
ATTFilter Malwarebytes Anti- Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.08.14.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16635 uwchif1 :: DESKTOP-ULF [Administrator] 14.08.2013 11:49:21 mbam-log-2013-08-14 (11-49-21).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 475716 Laufzeit: 48 Minute(n), 39 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Users\uwchif1\Downloads\iLividSetup.exe (PUP.Optional.Bandoo) -> Keine Aktion durchgeführt. (Ende) Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.08.31.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16660 uwchif1 :: DESKTOP-ULF [Administrator] 31.08.2013 13:48:41 mbam-log-2013-08-31 (13-48-41).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 474663 Laufzeit: 53 Minute(n), 45 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 7 HKCR\AppID\{A2773ED4-83BD-488A-A186-73590706C916} (PUP.Optional.MixiDJToolbar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\DataMngr (PUP.Optional.DataMngr) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\BabSolution\Redir (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 1 HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0L1N1H2O1S -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 1 C:\Users\uwchif1\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 2 C:\Users\uwchif1\Downloads\iLividSetup.exe (PUP.Optional.Bandoo) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\uwchif1\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.08.31.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16660 uwchif1 :: DESKTOP-ULF [Administrator] 01.09.2013 08:47:30 mbam-log-2013-09-01 (08-47-30).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 476568 Laufzeit: 47 Minute(n), 7 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\System Volume Information\SystemRestore\FRStaging\Users\uwchif1\Downloads\iLividSetup.exe (PUP.Optional.Bandoo) -> Keine Aktion durchgeführt. (Ende) Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.08.31.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16660 uwchif1 :: DESKTOP-ULF [Administrator] 01.09.2013 09:40:28 mbam-log-2013-09-01 (09-40-28).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 131614 Laufzeit: 17 Minute(n), 1 Sekunde(n) [Abgebrochen] Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\System Volume Information\SystemRestore\FRStaging\Users\uwchif1\Downloads\iLividSetup.exe (PUP.Optional.Bandoo) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-09-2013 04 Ran by uwchif1 (administrator) on DESKTOP-ULF on 02-09-2013 14:54:16 Running from C:\Users\uwchif1\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (AMD) C:\Windows\system32\atieclxx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE (Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgrsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe () C:\Program Files (x86)\AVG Secure Search\vprot.exe () C:\Windows\Samsung\PanelMgr\SSMMgr.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe () C:\Windows\Samsung\PanelMgr\caller64.exe (CyberLink) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Windows\system32\taskmgr.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\15.5.0\ScriptHelper.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610360 2009-09-14] () HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated) HKCU\...\Run: [SchnellerPC] - C:\Program Files (x86)\SchnellerPC\SCPCLauncher.exe [452584 2013-03-02] (Software Marketing Ltd) HKCU\...\Policies\system: [DisableLockWorkstation] 0 HKCU\...\Policies\system: [DisableChangePassword] 0 HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2314416 2013-08-15] () HKLM-x32\...\Run: [Samsung PanelMgr] - C:\Windows\Samsung\PanelMgr\SSMMgr.exe [618496 2010-06-07] () HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440 2013-07-01] (AVG Technologies CZ, s.r.o.) HKU\Default\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard) HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard) AppInit_DLLs: [0 ] () Startup: C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Persbackup.lnk ShortcutTarget: Persbackup.lnk -> C:\Program Files\Personal Backup 5\Persbackup.exe (Dr. J. Rathlev, D-24222 Schwentinental) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bluewin.ch/ SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=343&systemid=406&v=n8811-91&apn_uid=3719520732344115&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {81A13A02-5941-4CE4-AE8B-B6BBCA9C3C91} URL = SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=343&systemid=406&v=n8811-91&apn_uid=3719520732344115&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms} SearchScopes: HKLM-x32 - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^HJ^xdm255^YYA^ch&si=CK-gpd-jo7kCFYWN3godBiAAlA&ptb=8EC418E7-54A6-4905-8782-C4D5EE269429&ind=2013082914&n=77fd3522&psa=&st=sb&searchfor={searchTerms} SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={2E139345-69EB-48BD-92F0-F01D71887AD0}&mid=bcea127b049647d6aeda9128c028b174-837f3246ddc3f257f6db68ccd6395faa63eea49b&lang=de&ds=lw011&pr=sa&d=2013-07-25 15:37:53&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={2E139345-69EB-48BD-92F0-F01D71887AD0}&mid=bcea127b049647d6aeda9128c028b174-837f3246ddc3f257f6db68ccd6395faa63eea49b&lang=de&ds=lw011&pr=sa&d=2013-07-25 15:37:53&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms} SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=343&systemid=406&v=n8811-91&apn_uid=3719520732344115&apn_dtid=BND406&o=APN10645&apn_ptnrs=AG6&q={searchTerms} BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll No File BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll (AVG Secure Search) BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard) Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll (AVG Secure Search) Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation) Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll No File Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - No File Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll (AVG Secure Search) Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Chrome: ======= CHR Extension: (Google Docs) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Lightning Newtab) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\0.0.4.1_0 CHR Extension: (Skype Click to Call) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_1 CHR Extension: (AVG Security Toolbar) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\15.3.0.11_2 CHR Extension: (Chrome In-App Payments service) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0 CHR Extension: (NCH DE) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ommhmgednjnodcljhlljkaiidghdmikk\10.11.21.5_0 CHR Extension: (Gmail) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Users\uwchif1\AppData\Roaming\BabylonToolbar\CR\BabylonChrome1.crx CHR HKLM-x32\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\15.3.0.11\avg.crx CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx CHR HKLM-x32\...\Chrome\Extension: [ommhmgednjnodcljhlljkaiidghdmikk] - C:\Users\uwchif1\AppData\Local\CRE\ommhmgednjnodcljhlljkaiidghdmikk.crx ==================== Services (Whitelisted) ================= S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [167264 2011-11-10] () R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-03-25] (Nitro PDF Software) R2 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [1643184 2013-08-15] (AVG Secure Search) R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [x] S3 SXDS10; "C:\Program Files (x86)\Common Files\soft Xpansion\sxds10.exe" \Service [x] ==================== Drivers (Whitelisted) ==================== R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-07-10] (AVG Technologies CZ, s.r.o.) R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-08-15] (AVG Technologies) R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-08-31] (GFI Software) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 OxPCIeMf; C:\Windows\System32\DRIVERS\OxPCIeMf.sys [62000 2009-09-24] (OEM) R3 OxPCIeSer; C:\Windows\System32\DRIVERS\OxPCIeSer.sys [102960 2009-09-24] (OEM) S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) S2 SSPORT; C:\Windows\SysWow64\Drivers\SSPORT.sys [11576 2009-09-10] (Samsung Electronics) S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [90960 2013-03-15] (Windows (R) 2000 DDK provider) S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633680 2013-03-15] (Paragon) S1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390352 2013-03-15] (Paragon) R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-09-17] (CyberLink Corp.) R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-09-17] (CyberLink Corp.) S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [x] S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x] S3 lmimirr; system32\DRIVERS\lmimirr.sys [x] S2 SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-09-02 14:51 - 2013-09-02 14:52 - 01951950 _____ (Farbar) C:\Users\uwchif1\Desktop\FRST64.exe 2013-09-02 14:46 - 2013-09-02 14:46 - 01951950 _____ (Farbar) C:\Users\uwchif1\Downloads\FRST64.exe 2013-09-02 14:25 - 2013-09-02 14:25 - 00000476 _____ C:\Users\uwchif1\Desktop\defogger_disable.log 2013-09-02 14:25 - 2013-09-02 14:25 - 00000000 _____ C:\Users\uwchif1\defogger_reenable 2013-09-02 14:21 - 2013-09-02 14:21 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\SchnellerPC 2013-09-02 14:20 - 2013-09-02 14:20 - 00001005 _____ C:\Users\uwchif1\Desktop\SchnellerPC.lnk 2013-09-02 14:20 - 2013-09-02 14:20 - 00000000 ____D C:\Program Files (x86)\SchnellerPC 2013-09-02 11:29 - 2013-09-02 11:29 - 00000000 ____D E:\Eigene Dokumente\Fax 2013-08-31 23:38 - 2013-08-31 23:38 - 00000000 ____D C:\ProgramData\Browser Manager 2013-08-31 21:26 - 2013-08-31 21:26 - 00004332 _____ C:\Windows\System32\Tasks\Ad-Aware Antivirus Scheduled Scan 2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\LavasoftStatistics 2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\ProgramData\Ad-Aware Antivirus 2013-08-31 21:23 - 2013-09-01 20:09 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus 2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Lavasoft 2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Downloaded Installations 2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\blekko toolbars 2013-08-31 21:22 - 2013-09-01 08:05 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Ad-Aware Antivirus 2013-08-31 21:22 - 2013-08-31 21:22 - 00014456 _____ (GFI Software) C:\Windows\system32\Drivers\gfibto.sys 2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner 2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Lavasoft 2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 ____D C:\Program Files\Enigma Software Group 2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 _____ C:\autoexec.bat 2013-08-31 20:45 - 2013-08-31 21:07 - 00000000 ____D C:\Windows\037F8C0EE8E1408FABB4FC4ABF947E1B.TMP 2013-08-31 20:22 - 2013-08-31 21:08 - 00000000 ____D C:\ProgramData\SpeedMaxPc 2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\SpeedMaxPc 2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DriverCure 2013-08-31 19:13 - 2013-08-31 19:13 - 00000000 ___DC C:\Users\uwchif1\AppData\Local\MigWiz 2013-08-31 17:54 - 2013-08-31 19:35 - 00000000 ____D C:\Program Files (x86)\MyPC Backup 2013-08-31 17:54 - 2013-08-31 18:36 - 00000000 ____D C:\Program Files (x86)\Amazon 2013-08-31 17:54 - 2013-08-31 17:54 - 00129536 _____ C:\Users\Public\AlexaNSISPlugin.5792.dll 2013-08-31 13:45 - 2013-09-02 07:42 - 00001064 _____ C:\Windows\setupact.log 2013-08-31 13:45 - 2013-09-01 09:58 - 00003756 _____ C:\Windows\PFRO.log 2013-08-31 13:45 - 2013-08-31 13:45 - 00000000 _____ C:\Windows\setuperr.log 2013-08-30 14:16 - 2013-08-30 14:16 - 00001162 _____ C:\Users\uwchif1\Desktop\AusstellungStG - Verknüpfung.lnk 2013-08-29 21:48 - 2013-08-29 21:48 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5 2013-08-29 21:48 - 2009-09-27 09:39 - 00369152 ___SH (The Public) C:\Windows\SysWOW64\avisynth.dll 2013-08-29 21:48 - 2005-07-14 12:31 - 00032256 ___SH C:\Windows\SysWOW64\AVSredirect.dll 2013-08-29 21:48 - 2004-02-22 10:11 - 00719872 ___SH (Abysmal Software) C:\Windows\SysWOW64\devil.dll 2013-08-29 21:48 - 2004-01-25 00:00 - 00070656 ___SH (www.helixcommunity.org) C:\Windows\SysWOW64\yv12vfw.dll 2013-08-29 21:48 - 2004-01-25 00:00 - 00070656 ___SH (www.helixcommunity.org) C:\Windows\SysWOW64\i420vfw.dll 2013-08-29 21:37 - 2013-08-29 21:37 - 00001070 _____ C:\Users\Public\Desktop\SUPER ©.lnk 2013-08-29 21:37 - 2013-08-29 21:37 - 00000000 ____D E:\Eigene Dokumente\eRightSoft 2013-08-29 21:37 - 2012-10-05 19:54 - 00188416 __RSH C:\Windows\SysWOW64\winDCE32.dll 2013-08-29 21:37 - 2011-06-14 20:05 - 00121344 __RSH C:\Windows\SysWOW64\TAKDSDecoder.ax 2013-08-29 21:37 - 2011-02-11 11:26 - 00112128 __RSH C:\Windows\SysWOW64\OptimFROG.dll 2013-08-29 21:37 - 2010-01-07 00:00 - 00107520 __RSH C:\Windows\SysWOW64\TAKDSDecoder.dll 2013-08-29 21:37 - 2009-03-17 10:38 - 00070656 __RSH C:\Windows\SysWOW64\RLAPEDec.ax 2013-08-29 21:37 - 2009-01-18 17:15 - 00120832 __RSH C:\Windows\SysWOW64\MPCDx.ax 2013-08-29 21:37 - 2009-01-18 12:03 - 00107520 __RSH C:\Windows\SysWOW64\RLMPCDec.ax 2013-08-29 21:37 - 2008-03-16 14:30 - 00216064 __RSH (MONOGRAM Multimedia, s.r.o.) C:\Windows\SysWOW64\nbDX.dll 2013-08-29 21:37 - 2007-02-21 12:47 - 00031232 __RSH (Hans Mayerl) C:\Windows\SysWOW64\msfDX.dll 2013-08-29 21:37 - 2006-09-12 12:46 - 00227328 __RSH () C:\Windows\SysWOW64\ac3DX.ax 2013-08-29 21:37 - 2006-08-16 15:53 - 00175104 __RSH () C:\Windows\SysWOW64\CoreAAC.ax 2013-08-29 21:37 - 2006-05-03 11:06 - 00163328 __RSH (Gabest) C:\Windows\SysWOW64\flvDX.dll 2013-08-29 21:37 - 2006-03-10 21:21 - 00195584 __RSH C:\Windows\SysWOW64\MatroskaDX.ax 2013-08-29 21:37 - 2006-01-13 00:23 - 00123904 __RSH (CoreCodec) C:\Windows\SysWOW64\AVCDX.ax 2013-08-29 21:37 - 2005-11-25 21:46 - 00161792 __RSH (Gabest) C:\Windows\SysWOW64\RealMediaDX.ax 2013-08-29 21:37 - 2005-02-22 17:55 - 00081920 __RSH C:\Windows\SysWOW64\aac_parser.ax 2013-08-29 21:37 - 2005-02-13 00:00 - 00186880 __RSH (RadLight) C:\Windows\SysWOW64\RLOgg.ax 2013-08-29 21:37 - 2005-02-13 00:00 - 00067584 __RSH (RadLight, LLC) C:\Windows\SysWOW64\RLTheoraDec.ax 2013-08-29 21:37 - 2005-02-13 00:00 - 00051712 __RSH C:\Windows\SysWOW64\RLSpeexDec.ax 2013-08-29 21:37 - 2005-02-06 00:00 - 00092672 __RSH (RadLight) C:\Windows\SysWOW64\RLVorbisDec.ax 2013-08-29 21:37 - 2005-01-18 00:26 - 00179200 __RSH (Gabest) C:\Windows\SysWOW64\DiracSplitter.ax 2013-08-29 21:37 - 2004-10-10 09:50 - 00278528 _____ (Real Networks, Inc) C:\Windows\SysWOW64\pncrt.dll 2013-08-29 21:37 - 2004-09-17 04:07 - 00090112 __RSH (-) C:\Windows\SysWOW64\TTADSSplitter.ax 2013-08-29 21:37 - 2004-08-22 11:56 - 00090112 __RSH (-) C:\Windows\SysWOW64\TTADSDecoder.ax 2013-08-29 21:37 - 2004-07-02 17:33 - 00327749 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\drvc.dll 2013-08-29 21:37 - 2004-04-27 17:03 - 00017408 __RSH (RadLight) C:\Windows\SysWOW64\RLOFRDec.ax 2013-08-29 21:37 - 2003-12-07 08:59 - 00097280 __RSH C:\Windows\SysWOW64\FLACDX.ax 2013-08-29 21:36 - 2013-08-29 21:37 - 00000000 ____D C:\Program Files (x86)\eRightSoft 2013-08-29 21:35 - 2013-08-29 21:35 - 00000000 ____D C:\ProgramData\Registry Helper 2013-08-29 21:34 - 2013-08-30 09:01 - 00000000 ____D C:\ProgramData\eSafe 2013-08-29 21:24 - 2013-08-29 21:24 - 00000000 ____D C:\Users\uwchif1\AppData\Local\avgchrome 2013-08-29 21:19 - 2013-08-31 19:35 - 00000000 ____D C:\Program Files (x86)\VideoConverter 2013-08-29 21:19 - 2013-08-29 21:19 - 00003244 _____ C:\Windows\System32\Tasks\DSite 2013-08-29 21:19 - 2013-08-29 21:19 - 00000294 _____ C:\Windows\Tasks\DSite.job 2013-08-29 21:19 - 2013-08-29 21:19 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DSite 2013-08-29 21:17 - 2012-12-18 19:22 - 00039464 _____ (popularscreensavers.com) C:\Windows\SysWOW64\p5PSSavr.scr 2013-08-29 21:16 - 2013-08-29 21:16 - 00000000 ____D C:\Program Files (x86)\PopularScreensavers_7iEI 2013-08-29 21:15 - 2013-08-29 21:15 - 00000000 ____D C:\Users\uwchif1\AppData\Local\IAC 2013-08-29 20:26 - 2013-08-29 20:26 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4zEI 2013-08-29 20:02 - 2013-08-29 20:02 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\AVS4YOU 2013-08-29 20:01 - 2013-08-29 21:22 - 00000000 ____D C:\Program Files (x86)\AVS4YOU 2013-08-29 20:01 - 2013-08-29 20:02 - 00000000 ____D C:\ProgramData\AVS4YOU 2013-08-29 20:01 - 2012-03-23 19:59 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll 2013-08-29 19:03 - 2013-08-31 19:35 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\FreeVideoConverter 2013-08-29 18:29 - 2013-08-29 18:30 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\MOVAVI 2013-08-29 18:22 - 2013-08-31 19:35 - 00000000 ____D C:\Program Files (x86)\Conduit 2013-08-29 18:22 - 2013-08-30 08:59 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Conduit 2013-08-29 18:22 - 2013-08-29 18:22 - 00000009 _____ C:\END 2013-08-29 18:16 - 2013-08-29 18:17 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{28EE0CF4-4FA1-4831-B70E-305AF422CCA8} 2013-08-27 11:52 - 2013-08-27 11:52 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B0E3A927-825D-4349-A357-AE060E7591F9} 2013-08-25 17:39 - 2013-08-25 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{4694980C-3B66-4236-A275-8A0D55FEFC63} 2013-08-22 15:06 - 2013-08-22 15:06 - 00001662 _____ C:\Users\uwchif1\Desktop\Ausstellung-Restauration - Verknüpfung.lnk 2013-08-19 02:35 - 2013-08-19 02:35 - 00389120 _____ (SafeApp Software, LLC) C:\Windows\SysWOW64\RegistryHelperLM.ocx 2013-08-14 17:34 - 2013-08-14 17:35 - 68454702 _____ C:\Users\uwchif1\Downloads\Werkzeuge Manching.zip 2013-08-14 13:46 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-08-14 13:46 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-08-14 13:46 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-08-14 13:46 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-08-14 13:46 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-08-14 13:46 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-08-14 13:46 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-08-14 13:46 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-08-14 13:46 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-08-14 13:46 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-08-14 13:46 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-08-14 13:46 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-08-14 13:46 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-08-14 13:45 - 2013-08-14 13:46 - 00000000 ____D C:\Windows\system32\MRT 2013-08-14 08:02 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-08-14 08:02 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-08-14 08:02 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-08-14 08:02 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-08-14 08:02 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2013-08-14 08:02 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-08-14 08:02 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-08-14 08:02 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-08-14 08:01 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-08-14 08:01 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2013-08-14 08:00 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-08-14 08:00 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2013-08-14 08:00 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-08-14 08:00 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-08-14 08:00 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-08-14 08:00 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2013-08-14 08:00 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-08-14 08:00 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-08-14 08:00 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-08-14 08:00 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2013-08-14 08:00 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-08-14 08:00 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-08-14 08:00 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-08-14 08:00 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-08-14 08:00 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-08-14 08:00 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2013-08-14 08:00 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2013-08-14 08:00 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2013-08-14 08:00 - 2012-11-30 07:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2013-08-14 08:00 - 2012-11-30 07:41 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2013-08-14 08:00 - 2012-11-30 06:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 05:23 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-08-14 08:00 - 2012-11-30 04:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 04:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 04:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-08-14 08:00 - 2012-11-30 04:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2013-08-14 07:59 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-08-14 07:59 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2013-08-13 15:09 - 2013-08-13 15:10 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B77A04AC-DAC8-494F-9E35-F1D8FFA6DA20} 2013-08-13 15:09 - 2013-08-13 15:09 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{65664285-D53D-4372-AF47-A49D709217A5} 2013-08-12 20:46 - 2013-08-12 20:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{E8FAFCC9-02B6-4828-A4AF-713A64C4A5A8} 2013-08-12 08:46 - 2013-08-12 08:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3E36D23B-02D4-45A3-9334-BDA9B43B8E2A} 2013-08-07 17:04 - 2013-08-07 17:04 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3F5BC0E4-E415-4B3B-8C54-A74579033DDA} 2013-08-04 09:45 - 2013-08-31 19:35 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\PersBackup5 2013-08-04 09:45 - 2013-08-27 21:58 - 00000000 ____D E:\Eigene Dokumente\PersBackup 2013-08-04 09:44 - 2013-08-04 09:44 - 00000887 _____ C:\Users\Public\Desktop\Personal Backup 5.lnk 2013-08-04 09:44 - 2013-08-04 09:44 - 00000000 ____D C:\Program Files\Personal Backup 5 2013-08-03 17:44 - 2013-08-03 17:44 - 00000000 ____D C:\archive_db 2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\launcher 2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\explauncher 2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\backup 2013-08-03 16:51 - 2013-08-03 16:51 - 00000000 ____D C:\Program Files (x86)\Paragon Software ==================== One Month Modified Files and Folders ======= 2013-09-02 14:52 - 2013-09-02 14:52 - 00000000 ____D C:\FRST 2013-09-02 14:52 - 2013-09-02 14:51 - 01951950 _____ (Farbar) C:\Users\uwchif1\Desktop\FRST64.exe 2013-09-02 14:46 - 2013-09-02 14:46 - 01951950 _____ (Farbar) C:\Users\uwchif1\Downloads\FRST64.exe 2013-09-02 14:44 - 2011-12-14 19:01 - 00000099 _____ C:\Users\Public\LMDebug.log 2013-09-02 14:35 - 2010-07-17 10:52 - 00000000 ____D E:\Eigene Dokumente\Daten-Ulf 2013-09-02 14:25 - 2013-09-02 14:25 - 00000476 _____ C:\Users\uwchif1\Desktop\defogger_disable.log 2013-09-02 14:25 - 2013-09-02 14:25 - 00000000 _____ C:\Users\uwchif1\defogger_reenable 2013-09-02 14:25 - 2010-07-01 12:09 - 00000000 ____D C:\Users\uwchif1 2013-09-02 14:21 - 2013-09-02 14:21 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\SchnellerPC 2013-09-02 14:20 - 2013-09-02 14:20 - 00001005 _____ C:\Users\uwchif1\Desktop\SchnellerPC.lnk 2013-09-02 14:20 - 2013-09-02 14:20 - 00000000 ____D C:\Program Files (x86)\SchnellerPC 2013-09-02 14:14 - 2013-02-21 20:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-09-02 13:50 - 2012-06-08 13:49 - 00000000 ____D C:\Program Files (x86)\ MALWAREBYTES ANTI-MALWARE 2013-09-02 12:58 - 2010-12-28 16:01 - 00000000 ____D C:\ProgramData\MFAData 2013-09-02 11:33 - 2010-04-07 08:30 - 01987809 _____ C:\Windows\WindowsUpdate.log 2013-09-02 11:29 - 2013-09-02 11:29 - 00000000 ____D E:\Eigene Dokumente\Fax 2013-09-02 11:29 - 2009-12-31 06:05 - 00647128 _____ C:\Windows\system32\perfh007.dat 2013-09-02 11:29 - 2009-12-31 06:05 - 00127206 _____ C:\Windows\system32\perfc007.dat 2013-09-02 11:29 - 2009-07-14 07:13 - 01480600 _____ C:\Windows\system32\PerfStringBackup.INI 2013-09-02 07:49 - 2009-07-14 06:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-09-02 07:49 - 2009-07-14 06:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-09-02 07:42 - 2013-08-31 13:45 - 00001064 _____ C:\Windows\setupact.log 2013-09-02 07:42 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-09-01 20:09 - 2013-08-31 21:23 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus 2013-09-01 09:58 - 2013-08-31 13:45 - 00003756 _____ C:\Windows\PFRO.log 2013-09-01 09:06 - 2012-12-13 11:43 - 00000000 ____D E:\Eigene Dokumente\AusstellungStG 2013-09-01 08:23 - 2010-07-01 12:17 - 00001675 _____ C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-09-01 08:05 - 2013-08-31 21:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Ad-Aware Antivirus 2013-08-31 23:38 - 2013-08-31 23:38 - 00000000 ____D C:\ProgramData\Browser Manager 2013-08-31 21:26 - 2013-08-31 21:26 - 00004332 _____ C:\Windows\System32\Tasks\Ad-Aware Antivirus Scheduled Scan 2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\LavasoftStatistics 2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\ProgramData\Ad-Aware Antivirus 2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Lavasoft 2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Downloaded Installations 2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\blekko toolbars 2013-08-31 21:22 - 2013-08-31 21:22 - 00014456 _____ (GFI Software) C:\Windows\system32\Drivers\gfibto.sys 2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner 2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Lavasoft 2013-08-31 21:08 - 2013-08-31 20:22 - 00000000 ____D C:\ProgramData\SpeedMaxPc 2013-08-31 21:07 - 2013-08-31 20:45 - 00000000 ____D C:\Windows\037F8C0EE8E1408FABB4FC4ABF947E1B.TMP 2013-08-31 20:59 - 2011-05-25 15:37 - 00000000 ____D E:\Eigene Dokumente\WOMO 2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 ____D C:\Program Files\Enigma Software Group 2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 _____ C:\autoexec.bat 2013-08-31 20:30 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\SpeedMaxPc 2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DriverCure 2013-08-31 19:35 - 2013-08-31 17:54 - 00000000 ____D C:\Program Files (x86)\MyPC Backup 2013-08-31 19:35 - 2013-08-29 21:19 - 00000000 ____D C:\Program Files (x86)\VideoConverter 2013-08-31 19:35 - 2013-08-29 19:03 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\FreeVideoConverter 2013-08-31 19:35 - 2013-08-29 18:22 - 00000000 ____D C:\Program Files (x86)\Conduit 2013-08-31 19:35 - 2013-08-04 09:45 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\PersBackup5 2013-08-31 19:35 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2013-08-31 19:35 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat 2013-08-31 19:17 - 2011-12-26 17:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Audacity 2013-08-31 19:17 - 2010-07-03 11:30 - 00000000 ___RD E:\Eigene Dokumente\UlfAntik 2013-08-31 19:17 - 2010-07-01 12:17 - 00000000 ___RD C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-08-31 19:13 - 2013-08-31 19:13 - 00000000 ___DC C:\Users\uwchif1\AppData\Local\MigWiz 2013-08-31 18:36 - 2013-08-31 17:54 - 00000000 ____D C:\Program Files (x86)\Amazon 2013-08-31 18:36 - 2012-08-02 21:21 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Systweak 2013-08-31 18:35 - 2010-07-03 11:47 - 00000000 ____D C:\Program Files (x86)\Google 2013-08-31 18:15 - 2009-12-31 06:00 - 00000000 ____D C:\Windows\Panther 2013-08-31 17:54 - 2013-08-31 17:54 - 00129536 _____ C:\Users\Public\AlexaNSISPlugin.5792.dll 2013-08-31 13:45 - 2013-08-31 13:45 - 00000000 _____ C:\Windows\setuperr.log 2013-08-31 13:25 - 2010-11-15 22:50 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Deployment 2013-08-31 13:12 - 2010-07-22 10:24 - 00000000 ____D C:\ProgramData\Google 2013-08-31 13:12 - 2010-07-03 11:47 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Google 2013-08-31 11:17 - 2011-12-23 14:56 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt 2013-08-31 11:17 - 2010-07-02 16:01 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log 2013-08-31 11:16 - 2010-07-02 16:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\HpUpdate 2013-08-31 11:16 - 2010-07-02 16:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\HP Support Assistant 2013-08-30 14:39 - 2010-07-03 14:07 - 00000000 ____D E:\Eigene Dokumente\Schloss-Bilder-1#1 2013-08-30 14:16 - 2013-08-30 14:16 - 00001162 _____ C:\Users\uwchif1\Desktop\AusstellungStG - Verknüpfung.lnk 2013-08-30 09:51 - 2010-07-03 14:08 - 00000000 ____D E:\Eigene Dokumente\Archiv-Schloss 2013-08-30 09:13 - 2010-07-12 15:09 - 00000000 ____D E:\Eigene Dokumente\Buch-Schlösser 2013-08-30 09:01 - 2013-08-29 21:34 - 00000000 ____D C:\ProgramData\eSafe 2013-08-30 08:59 - 2013-08-29 18:22 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Conduit 2013-08-30 08:05 - 2012-08-02 21:40 - 00001660 _____ C:\Windows\system32\ASOROSet.bin 2013-08-30 08:05 - 2009-07-14 04:34 - 71565312 _____ C:\Windows\system32\config\software.bak 2013-08-30 08:05 - 2009-07-14 04:34 - 17039360 _____ C:\Windows\system32\config\system.bak 2013-08-30 08:05 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\security.bak 2013-08-29 22:14 - 2012-08-30 21:15 - 00000000 ____D C:\Program Files (x86)\NCH Software 2013-08-29 22:14 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\sam.bak 2013-08-29 22:11 - 2012-08-02 21:40 - 00000000 ____D C:\Windows\system32\config\RCCBakup 2013-08-29 21:48 - 2013-08-29 21:48 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5 2013-08-29 21:37 - 2013-08-29 21:37 - 00001070 _____ C:\Users\Public\Desktop\SUPER ©.lnk 2013-08-29 21:37 - 2013-08-29 21:37 - 00000000 ____D E:\Eigene Dokumente\eRightSoft 2013-08-29 21:37 - 2013-08-29 21:36 - 00000000 ____D C:\Program Files (x86)\eRightSoft 2013-08-29 21:35 - 2013-08-29 21:35 - 00000000 ____D C:\ProgramData\Registry Helper 2013-08-29 21:24 - 2013-08-29 21:24 - 00000000 ____D C:\Users\uwchif1\AppData\Local\avgchrome 2013-08-29 21:22 - 2013-08-29 20:01 - 00000000 ____D C:\Program Files (x86)\AVS4YOU 2013-08-29 21:19 - 2013-08-29 21:19 - 00003244 _____ C:\Windows\System32\Tasks\DSite 2013-08-29 21:19 - 2013-08-29 21:19 - 00000294 _____ C:\Windows\Tasks\DSite.job 2013-08-29 21:19 - 2013-08-29 21:19 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DSite 2013-08-29 21:16 - 2013-08-29 21:16 - 00000000 ____D C:\Program Files (x86)\PopularScreensavers_7iEI 2013-08-29 21:15 - 2013-08-29 21:15 - 00000000 ____D C:\Users\uwchif1\AppData\Local\IAC 2013-08-29 21:01 - 2012-08-30 21:16 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software 2013-08-29 20:43 - 2012-08-30 21:16 - 00000000 ____D C:\ProgramData\NCH Software 2013-08-29 20:38 - 2012-08-30 21:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\NCH Software 2013-08-29 20:26 - 2013-08-29 20:26 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4zEI 2013-08-29 20:02 - 2013-08-29 20:02 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\AVS4YOU 2013-08-29 20:02 - 2013-08-29 20:01 - 00000000 ____D C:\ProgramData\AVS4YOU 2013-08-29 18:30 - 2013-08-29 18:29 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\MOVAVI 2013-08-29 18:22 - 2013-08-29 18:22 - 00000009 _____ C:\END 2013-08-29 18:17 - 2013-08-29 18:16 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{28EE0CF4-4FA1-4831-B70E-305AF422CCA8} 2013-08-29 18:13 - 2010-07-03 14:13 - 00000000 ____D E:\Eigene Dokumente\Kamera 2013-08-27 21:58 - 2013-08-04 09:45 - 00000000 ____D E:\Eigene Dokumente\PersBackup 2013-08-27 11:52 - 2013-08-27 11:52 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B0E3A927-825D-4349-A357-AE060E7591F9} 2013-08-25 17:39 - 2013-08-25 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{4694980C-3B66-4236-A275-8A0D55FEFC63} 2013-08-25 12:08 - 2012-11-27 10:32 - 00000000 ____D E:\Eigene Dokumente\Buch-Altes-Eisen 2013-08-25 09:13 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-08-22 18:36 - 2012-08-02 21:21 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe 2013-08-22 15:06 - 2013-08-22 15:06 - 00001662 _____ C:\Users\uwchif1\Desktop\Ausstellung-Restauration - Verknüpfung.lnk 2013-08-19 02:35 - 2013-08-19 02:35 - 00389120 _____ (SafeApp Software, LLC) C:\Windows\SysWOW64\RegistryHelperLM.ocx 2013-08-16 21:55 - 2010-09-13 18:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Skype 2013-08-15 07:42 - 2013-07-25 15:37 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search 2013-08-15 07:42 - 2012-11-08 17:09 - 00045856 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys 2013-08-14 17:35 - 2013-08-14 17:34 - 68454702 _____ C:\Users\uwchif1\Downloads\Werkzeuge Manching.zip 2013-08-14 14:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-08-14 13:46 - 2013-08-14 13:45 - 00000000 ____D C:\Windows\system32\MRT 2013-08-14 13:45 - 2010-07-04 08:42 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-08-14 13:44 - 2009-07-14 04:34 - 00000534 _____ C:\Windows\win.ini 2013-08-13 15:10 - 2013-08-13 15:09 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B77A04AC-DAC8-494F-9E35-F1D8FFA6DA20} 2013-08-13 15:09 - 2013-08-13 15:09 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{65664285-D53D-4372-AF47-A49D709217A5} 2013-08-12 20:46 - 2013-08-12 20:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{E8FAFCC9-02B6-4828-A4AF-713A64C4A5A8} 2013-08-12 08:46 - 2013-08-12 08:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3E36D23B-02D4-45A3-9334-BDA9B43B8E2A} 2013-08-10 15:10 - 2013-01-31 14:37 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Nitro PDF 2013-08-07 17:04 - 2013-08-07 17:04 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3F5BC0E4-E415-4B3B-8C54-A74579033DDA} 2013-08-07 11:47 - 2010-07-03 20:21 - 00000000 ____D C:\Depot 2013-08-07 04:22 - 2010-07-01 12:18 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-08-04 09:46 - 2012-01-21 12:47 - 00000000 ____D E:\Eigene Dokumente\AG 2013-08-04 09:44 - 2013-08-04 09:44 - 00000887 _____ C:\Users\Public\Desktop\Personal Backup 5.lnk 2013-08-04 09:44 - 2013-08-04 09:44 - 00000000 ____D C:\Program Files\Personal Backup 5 2013-08-03 17:44 - 2013-08-03 17:44 - 00000000 ____D C:\archive_db 2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\launcher 2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\explauncher 2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\backup 2013-08-03 16:51 - 2013-08-03 16:51 - 00000000 ____D C:\Program Files (x86)\Paragon Software 2013-08-03 14:09 - 2010-07-01 20:55 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-08-03 14:08 - 2013-02-08 17:36 - 00000000 ____D C:\ProgramData\POIbase 2013-08-03 14:08 - 2013-02-08 17:36 - 00000000 ____D C:\Program Files (x86)\POIbase Files to move or delete: ==================== C:\Users\uwchif1\AppData\Local\Temp\356770a9-089c-4189-b988-6c4fcf78c93a.exe C:\Users\uwchif1\AppData\Local\Temp\BackupSetup.exe C:\Users\uwchif1\AppData\Local\Temp\BundleSweetIMSetup.exe C:\Users\uwchif1\AppData\Local\Temp\eb189944-ef15-4244-a419-7a92d9fd502c.exe C:\Users\uwchif1\AppData\Local\Temp\MybabylonTB.exe C:\Users\uwchif1\AppData\Local\Temp\propsys.dll C:\Users\uwchif1\AppData\Local\Temp\SHSetup.exe C:\Users\uwchif1\AppData\Local\Temp\UpdUninstall.exe C:\Users\uwchif1\AppData\Local\Temp\{5B16AC35-2C8E-4285-94A7-B144931E2B0C}\ISBEW64.exe C:\Users\uwchif1\AppData\Local\Temp\nsr3870.tmp\nsSCM.dll C:\Users\uwchif1\AppData\Local\Temp\nsk628C.tmp\nsDialogs.dll C:\Users\uwchif1\AppData\Local\Temp\nsk628C.tmp\nsisFirewall.dll C:\Users\uwchif1\AppData\Local\Temp\nsk628C.tmp\nsProcess.dll C:\Users\uwchif1\AppData\Local\Temp\nsk628C.tmp\System.dll C:\Users\uwchif1\AppData\Local\Temp\nsk628C.tmp\UAC.dll C:\Users\uwchif1\AppData\Local\Temp\nsk628C.tmp\xml.dll C:\Users\uwchif1\AppData\Local\Temp\HP Support Framework\HPSF_Config1.dll C:\Users\uwchif1\AppData\Local\Temp\3cf95438-ceae-4ebb-ae54-4daf11db89ec\CartSdk.dll C:\Users\uwchif1\AppData\Local\Temp\3cf95438-ceae-4ebb-ae54-4daf11db89ec\CartSdk64.exe C:\Users\uwchif1\AppData\Local\Temp\3cf95438-ceae-4ebb-ae54-4daf11db89ec\sbrc.exe C:\Users\uwchif1\AppData\Local\Temp\3cf95438-ceae-4ebb-ae54-4daf11db89ec\i386\sbbd.exe C:\Users\uwchif1\AppData\Local\Temp\3cf95438-ceae-4ebb-ae54-4daf11db89ec\amd64\sbbd.exe C:\Users\uwchif1\AppData\Local\Temp\2239ecf8-0d87-4063-a335-3402054db497\Statistics.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-09-01 00:10 ==================== End Of Log ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-09-2013 04 Ran by uwchif1 at 2013-09-02 14:54:53 Running from C:\Users\uwchif1\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= 2013 (Version: 2013.0.3392) 64 Bit HP CIO Components Installer (Version: 7.2.8) Adobe AIR (x32 Version: 2.5.1.17730) Adobe Community Help (x32 Version: 3.4.980) Adobe Dreamweaver CS5.5 (x32 Version: 11.5) Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94) Adobe Photoshop Elements 7.0 (x32 Version: 7.0) Adobe Photoshop Elements 7.0 (x32 Version: 7.0.0.3) ATI Catalyst Install Manager (Version: 3.0.765.0) Audacity 1.3.14 (Unicode) (x32) AVG 2013 (Version: 13.0.3222) AVG 2013 (Version: 13.0.3392) AVG Security Toolbar (x32 Version: 15.5.0.2) B109a-m (x32 Version: 130.0.396.000) BabylonObjectInstaller (x32 Version: 2.0.0.4) Biet-O-Matic v2.14.8 (x32 Version: Biet-O-Matic v2.14.8) Bing Bar (x32 Version: 7.0.850.0) BufferChm (x32 Version: 130.0.331.000) Canon Utilities Digital Photo Professional 3.7 (x32 Version: 3.7.3.0) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Core Implementation (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Full New (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Light (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0310.1824.32984) Catalyst Control Center HydraVision Full (x32 Version: 2010.0310.1824.32984) Catalyst Control Center InstallProxy (x32 Version: 2009.0908.2225.38429) Catalyst Control Center InstallProxy (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Localization All (x32 Version: 2010.0310.1824.32984) CCC Help Chinese Standard (x32 Version: 2010.0310.1823.32984) CCC Help Chinese Traditional (x32 Version: 2010.0310.1823.32984) CCC Help Czech (x32 Version: 2010.0310.1823.32984) CCC Help Danish (x32 Version: 2010.0310.1823.32984) CCC Help Dutch (x32 Version: 2010.0310.1823.32984) CCC Help English (x32 Version: 2010.0310.1823.32984) CCC Help Finnish (x32 Version: 2010.0310.1823.32984) CCC Help French (x32 Version: 2010.0310.1823.32984) CCC Help German (x32 Version: 2010.0310.1823.32984) CCC Help Greek (x32 Version: 2010.0310.1823.32984) CCC Help Hungarian (x32 Version: 2010.0310.1823.32984) CCC Help Italian (x32 Version: 2010.0310.1823.32984) CCC Help Japanese (x32 Version: 2010.0310.1823.32984) CCC Help Korean (x32 Version: 2010.0310.1823.32984) CCC Help Norwegian (x32 Version: 2010.0310.1823.32984) CCC Help Polish (x32 Version: 2010.0310.1823.32984) CCC Help Portuguese (x32 Version: 2010.0310.1823.32984) CCC Help Russian (x32 Version: 2010.0310.1823.32984) CCC Help Spanish (x32 Version: 2010.0310.1823.32984) CCC Help Swedish (x32 Version: 2010.0310.1823.32984) CCC Help Thai (x32 Version: 2010.0310.1823.32984) CCC Help Turkish (x32 Version: 2010.0310.1823.32984) ccc-core-static (x32 Version: 2010.0310.1824.32984) ccc-utility64 (Version: 2010.0310.1824.32984) CCleaner (Version: 3.19) Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000) CyberLink DVD Suite Deluxe (x32 Version: 7.0.2115) D3DX10 (x32 Version: 15.4.2368.0902) Destinations (x32 Version: 130.0.0.0) DeviceDiscovery (x32 Version: 130.0.372.000) DHTML Editing Component (x32 Version: 6.02.0001) DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904) DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224) Google Earth (x32 Version: 5.2.1.1588) GPBaseService2 (x32 Version: 130.0.371.000) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000) HP Advisor (x32 Version: 3.3.9512.3162) HP Customer Experience Enhancements (x32 Version: 6.0.1.3) HP Customer Participation Program 13.0 (Version: 13.0) HP Imaging Device Functions 13.0 (Version: 13.0) HP MediaSmart DVD (x32 Version: 3.1.3317) HP MediaSmart Music/Photo/Video (x32 Version: 3.1.3422) HP MediaSmart SmartMenu (Version: 3.1.0.1) HP Odometer (x32 Version: 2.10.0000) HP Photosmart B109a-m All-In-One Driver Software 13.0 Rel .6 (Version: 13.0) HP Print Projects 1.0 (Version: 1.0) HP Remote Solution (x32 Version: 1.1.12.0) HP Setup (x32 Version: 1.2.3560.3170) HP Solution Center 13.0 (Version: 13.0) HP Support Assistant (x32 Version: 7.0.39.15) HP Support Information (x32 Version: 10.1.0002) HP Update (x32 Version: 5.001.000.014) HPPhotoGadget (x32 Version: 130.0.282.000) hpPrintProjects (x32 Version: 130.0.303.000) HPProductAssistant (x32 Version: 130.0.371.000) hpWLPGInstaller (x32 Version: 130.0.303.000) HydraVision (x32 Version: 4.2.162.0) Intel(R) Rapid Storage Technology (x32 Version: 9.5.0.1037) Java 7 Update 21 (x32 Version: 7.0.210) Java Auto Updater (x32 Version: 2.1.9.5) JavaFX 2.1.1 (x32 Version: 2.1.1) Junk Mail filter update (x32 Version: 15.4.3502.0922) LabelPrint (x32 Version: 2.5.2017) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300) MarketResearch (x32 Version: 130.0.374.000) Mesh Runtime (x32 Version: 15.4.5722.2) Messenger Companion (x32 Version: 15.4.3502.0922) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Exchange Online Connector for Office Outlook 2003 (x32 Version: 1.0.1419.1) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1) Microsoft Office PowerPoint Viewer 2007 (German) (x32 Version: 12.0.6612.1000) Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft_VC80_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) Naviextras Toolbox (x32 Version: 3.11.0.24188) Naviextras Toolbox Prerequesities (x32 Version: 1.0.0) NAVIGON Fresh 3.4.1 (x32 Version: 3.4.1) Nitro Pro 8 (Version: 8.5.2.10) OpenOffice.org 3.2 (x32 Version: 3.2.9502) Personal Backup 5.4 (Version: 5.3) PlayReady PC Runtime amd64 (Version: 1.3.0) POIbase 1.051 (x32) Power2Go (x32 Version: 6.0.3304) PowerDirector (x32 Version: 7.0.3405) PS_AIO_06_B109a-m_SW_Min (x32 Version: 130.0.396.000) Recovery Manager (x32 Version: 5.5.2216) Scan (x32 Version: 13.0.0.0) SchnellerPC v3.1 (x32 Version: 3.1) SILKYPIX Developer Studio 3.0 SE (x32 Version: 3) Skype Click to Call (x32 Version: 5.6.8442) Skype™ 5.10 (x32 Version: 5.10.116) SolutionCenter (x32 Version: 130.0.373.000) Status (x32 Version: 130.0.373.000) StreamTransport version: 1.0.2.2171 (x32) SUPER © v2013.build.57+Recorder (2013/07/13) Version v2013.buil (x32 Version: v2013.build.57+Recorder) Toolbox (x32 Version: 130.0.648.000) TrayApp (x32 Version: 130.0.376.000) Visual Studio 2008 x64 Redistributables (x32 Version: 10.0.0.2) Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1) WarrantyExtension (x32 Version: 1.00.0000) Wartung Samsung CLP-320 Series (x32) WebReg (x32 Version: 130.0.132.017) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3555.0308) Windows Live Family Safety (Version: 15.4.3555.0308) Windows Live Fotogalerie (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4232.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3555.0308) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2) Windows Live Messenger (x32 Version: 15.4.3538.0513) Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) XMedia Recode 3.0.6.0 (x32 Version: 3.0.6.0) ==================== Restore Points ========================= 22-08-2013 08:38:35 Geplanter Prüfpunkt 29-08-2013 15:11:35 Geplanter Prüfpunkt 29-08-2013 20:10:49 RegClean Pro Do, Aug 29, 13 22:10 31-08-2013 11:03:28 Removed Visual Studio 2008 x64 Redistributables 31-08-2013 16:13:32 Windows Modules Installer 31-08-2013 16:18:44 Windows Modules Installer 31-08-2013 16:31:53 Konfiguriert LabelPrint 31-08-2013 16:54:21 Wiederherstellungsvorgang 31-08-2013 17:50:16 Windows Modules Installer 31-08-2013 17:51:12 Windows Modules Installer 31-08-2013 18:45:57 Installed SpyHunter 31-08-2013 19:07:05 Removed SpyHunter 01-09-2013 06:12:44 Windows Modules Installer 01-09-2013 06:21:08 Windows Modules Installer 02-09-2013 08:15:30 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => start w32time task_started Task: {17228B01-5AE1-450D-9DC0-8F06CCFF19C0} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {19237CD0-CE2C-4A1D-90CD-0735C317F79E} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation) Task: {2D841DF5-A51B-4F28-B682-95520689DDAD} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {35AEDA7F-E824-4CB9-995C-F546606D4826} - System32\Tasks\AdobeAAMUpdater-1.0-Desktop-ulf-uwchif1 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15] (Adobe Systems Incorporated) Task: {5B32E29E-7DE3-44F4-B3B2-2EF8562777F7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-12] (Adobe Systems Incorporated) Task: {607D647B-619C-43D7-8803-314ABD002856} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {7CCECA25-825D-44F8-919B-DBBF92219188} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company) Task: {978CEEFD-12D2-46BC-B7DE-69F74764F8CE} - System32\Tasks\DSite => C:\Users\uwchif1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE No File Task: {9F9BD0D2-91A4-4493-98C5-51EA0D84B291} - System32\Tasks\{2BD84779-3E1A-4CA9-A68F-FB306554FE00} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.) Task: {A349681D-6D04-40FE-B036-1C1D9365E92F} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe No File Task: {ADB805CA-077C-4A32-9F0D-0CA23F38B866} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {B01C81C4-78E2-4917-B038-3ED7A389DD4D} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation) Task: {B5C7E2EB-8AED-4E33-96B5-8CADF85AF55C} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe No File Task: {BBD8BCB0-BDBE-4E5C-ACAE-2D442526CA83} - System32\Tasks\4876 => C:\Windows\System32\wscript.exe [2009-07-14] (Microsoft Corporation) Task: {C3E1FE3F-2CF1-4ACE-A8DB-A5D171F7F0D0} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-22] (CyberLink) Task: {C4754DFC-EFF8-4099-BDBB-C9CD6BC75C1E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2013-08-20] (Microsoft) Task: {DE0C0731-6046-47BC-B123-758A95C321CA} - System32\Tasks\{56132BB2-1AF7-4709-8FDE-FBF556DCB25F} => c:\program files (x86)\internet explorer\iexplore.exe [2013-07-26] (Microsoft Corporation) Task: {DF02A282-E62A-499A-94DD-9B33BDEBC881} - System32\Tasks\0 => c:\program files (x86)\internet explorer\iexplore.exe [2013-07-26] (Microsoft Corporation) Task: {F6D51F3C-88AF-42EA-A3A0-F9A51A26748C} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2009-10-20] () Task: {FA45962B-FDC0-406B-A8E0-FA14747D6E11} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe No File Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DSite.job => C:\Users\uwchif1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE ==================== Loaded Modules (whitelisted) ============= 2010-07-03 09:27 - 2010-03-10 18:33 - 00036352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll 2009-07-14 01:30 - 2009-07-14 03:41 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\WINBRAND.dll 2011-07-18 15:22 - 2010-11-20 15:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fdproxy.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00748032 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll 2009-07-14 01:53 - 2009-07-14 03:40 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dfscli.dll 2012-08-15 16:52 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll 2009-07-14 02:31 - 2009-07-14 03:41 - 02137600 _____ (Microsoft Corporation) C:\Windows\System32\NLSData0007.dll 2009-07-14 02:40 - 2009-07-14 03:41 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll 2009-07-14 02:40 - 2009-07-14 03:41 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll 2011-07-18 15:23 - 2010-11-20 15:27 - 01050624 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll 2011-07-18 15:23 - 2010-11-20 15:27 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2013-03-25 19:26 - 2013-03-25 19:26 - 00108552 _____ (Nitro PDF) C:\PROGRA~1\COMMON~1\Nitro\Pro\8.0\NPSHEL~1.DLL 2013-03-28 02:48 - 2013-03-28 02:48 - 00266288 _____ (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgsea.dll 2011-06-11 01:15 - 2011-06-11 01:15 - 00608080 _____ (Microsoft Corporation) C:\Windows\system32\MSVCP100.dll 2011-06-11 01:15 - 2011-06-11 01:15 - 00829264 _____ (Microsoft Corporation) C:\Windows\system32\MSVCR100.dll 2013-06-27 01:54 - 2013-06-27 01:54 - 01018416 _____ (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll 2009-07-14 01:35 - 2009-07-14 03:40 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\FunDisc.dll 2009-07-14 02:08 - 2009-07-14 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\NetworkItemFactory.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\fdwcn.dll 2009-07-14 02:08 - 2009-07-14 03:41 - 00120832 _____ (Microsoft Corporation) C:\Windows\System32\wcnapi.dll 2009-07-14 01:35 - 2009-07-14 03:40 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\fdWNet.dll 2013-05-21 22:36 - 2013-05-21 22:36 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\D3D10Warp.dll 2009-07-14 01:19 - 2009-07-14 03:41 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\ktmw32.dll 2009-07-14 01:46 - 2009-07-14 03:41 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\tschannel.dll 2009-07-14 01:46 - 2009-07-14 03:41 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\TaskSchdPS.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\IEUI.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2009-07-14 01:19 - 2009-07-14 03:41 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\pcwum.dll 2011-07-18 15:23 - 2010-11-20 15:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll 2009-07-14 02:17 - 2009-07-14 03:41 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\UTILDLL.dll 2011-07-18 15:22 - 2010-11-20 15:26 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\LOGONCLI.DLL 2012-08-15 16:52 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\BROWCLI.DLL 2012-03-08 18:40 - 2012-03-08 18:40 - 00150376 _____ (Microsoft Corporation) C:\Program Files\Windows Live\Family Safety\fsapi.dll 2011-06-21 03:23 - 2011-06-21 03:23 - 00826880 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\sst3cdu.dll 2011-07-18 15:22 - 2010-11-20 15:27 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll 2013-05-21 22:37 - 2013-05-21 22:37 - 00762368 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\dtsh.dll 2011-07-18 15:22 - 2010-11-20 15:26 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll ==================== Alternate Data Streams (whitelisted) ========== AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\ProgramData\Temp:ED9F3B50 AlternateDataStreams: C:\Users\uwchif1\Desktop\SwissDomain.ch - Webhosting Schweiz.url:favicon AlternateDataStreams: E:\Eigene Dokumente\SwissDomain.ch - Webhosting Schweiz.url:favicon AlternateDataStreams: E:\Eigene Dokumente\Thumbs.db:encryptable ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/02/2013 02:33:20 PM) (Source: Application Hang) (User: ) Description: Programm iexplore.exe, Version 10.0.9200.16660 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 14ac Startzeit: 01cea7d5a22aeeb9 Endzeit: 0 Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe Berichts-ID: Error: (09/02/2013 08:03:21 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Mehrere requestedPrivileges-Elemente sind nicht im Manifest zulässig. Error: (09/01/2013 00:30:07 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Mehrere requestedPrivileges-Elemente sind nicht im Manifest zulässig. Error: (08/31/2013 09:13:52 PM) (Source: Application Hang) (User: ) Description: Programm uninstall.exe, Version 1.5.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 150c Startzeit: 01cea67de7c34d27 Endzeit: 0 Anwendungspfad: C:\Users\uwchif1\AppData\Local\Temp\nsa61B2.tmp\uninstall.exe Berichts-ID: Error: (08/31/2013 07:38:45 PM) (Source: System Restore) (User: ) Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0x80070005. Error: (08/31/2013 07:31:29 PM) (Source: System Restore) (User: ) Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0x80070005. Error: (08/31/2013 06:59:10 PM) (Source: System Restore) (User: ) Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0x80070005. Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service) (User: ) Description: Der Index kann nicht initialisiert werden. Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service) (User: ) Description: Die Anwendung kann nicht initialisiert werden. Kontext: Windows Anwendung Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service) (User: ) Description: Das Gatherer-Objekt kann nicht initialisiert werden. Kontext: Windows Anwendung, SystemIndex Katalog Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) System errors: ============= Error: (09/02/2013 07:42:20 AM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Uim_VIM Error: (09/02/2013 07:42:11 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "SSPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (09/02/2013 07:42:06 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (09/01/2013 09:03:02 PM) (Source: Service Control Manager) (User: ) Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen: %%5 Error: (09/01/2013 08:17:00 PM) (Source: Service Control Manager) (User: ) Description: Dienst "HP CUE DeviceDiscovery Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (09/01/2013 08:17:00 PM) (Source: Service Control Manager) (User: ) Description: Dienst "hpqcxs08" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (09/01/2013 08:17:00 PM) (Source: Service Control Manager) (User: ) Description: Dienst "Easybits Shared Services for Windows" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (09/01/2013 07:36:57 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Uim_VIM Error: (09/01/2013 07:36:46 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "SSPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (09/01/2013 07:36:41 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Microsoft Office Sessions: ========================= Error: (09/02/2013 02:33:20 PM) (Source: Application Hang)(User: ) Description: iexplore.exe10.0.9200.1666014ac01cea7d5a22aeeb90C:\Program Files\Internet Explorer\iexplore.exe Error: (09/02/2013 08:03:21 AM) (Source: SideBySide)(User: ) Description: C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exeC:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe2 Error: (09/01/2013 00:30:07 AM) (Source: SideBySide)(User: ) Description: C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exeC:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe2 Error: (08/31/2013 09:13:52 PM) (Source: Application Hang)(User: ) Description: uninstall.exe1.5.0.0150c01cea67de7c34d270C:\Users\uwchif1\AppData\Local\Temp\nsa61B2.tmp\uninstall.exe Error: (08/31/2013 07:38:45 PM) (Source: System Restore)(User: ) Description: Geplanter Prüfpunkt0x80070005 Error: (08/31/2013 07:31:29 PM) (Source: System Restore)(User: ) Description: Geplanter Prüfpunkt0x80070005 Error: (08/31/2013 06:59:10 PM) (Source: System Restore)(User: ) Description: Geplanter Prüfpunkt0x80070005 Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service)(User: ) Description: Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service)(User: ) Description: Kontext: Windows Anwendung Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service)(User: ) Description: Kontext: Windows Anwendung, SystemIndex Katalog Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) ==================== Memory info =========================== Percentage of memory in use: 50% Total physical RAM: 3959.08 MB Available physical RAM: 1974.91 MB Total Pagefile: 7916.34 MB Available Pagefile: 5688.99 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: (HP) (Fixed) (Total:348.07 GB) (Free:292.8 GB) NTFS Drive d: (FACTORY_IMAGE) (Fixed) (Total:12.96 GB) (Free:1.76 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive e: (Daten) (Fixed) (Total:337.51 GB) (Free:245.93 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 699 GB) (Disk ID: 1549F232) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=348 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=338 GB) - (Type=OF Extended) Partition 4: (Not Active) - (Size=13 GB) - (Type=07 NTFS) ==================== End Of Log ============================ Code:
ATTFilter GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-09-02 15:25:31
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST375052 rev.HP34 698.64GB
Running: k2ywrewy.exe; Driver: C:\Users\uwchif1\AppData\Local\Temp\fwliquoc.sys
---- User code sections - GMER 2.1 ----
.text C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe[1564] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075361465 2 bytes [36, 75]
.text C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe[1564] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000753614bb 2 bytes [36, 75]
.text ... * 2
.text C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1972] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 0000000075361465 2 bytes [36, 75]
.text C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1972] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 00000000753614bb 2 bytes [36, 75]
.text ... * 2
.text C:\Program Files (x86)\AVG Secure Search\vprot.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075361465 2 bytes [36, 75]
.text C:\Program Files (x86)\AVG Secure Search\vprot.exe[1092] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000753614bb 2 bytes [36, 75]
.text ... * 2
---- Threads - GMER 2.1 ----
Thread C:\Windows\System32\svchost.exe [6068:6000] 000007fef0bc9688
---- Registry - GMER 2.1 ----
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPER \xa9 - by eRightSoft\SUPER \xa9 entfernen.lnk 1
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER \xa9 - by eRightSoft\SUPER \xa9 entfernen.lnk 1
---- Disk sectors - GMER 2.1 ----
Disk \Device\Harddisk0\DR0 unknown MBR code
---- EOF - GMER 2.1 ----
|
|
02.09.2013, 17:13
| #2 |
| /// the machine /// TB-Ausbilder    | Hatte Qvo6 was nun hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
02.09.2013, 18:22
| #3 |
| | Hatte Qvo6 was nun Hier die Files:
__________________Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-09-2013 04 Ran by uwchif1 at 2013-09-02 14:54:53 Running from C:\Users\uwchif1\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= 2013 (Version: 2013.0.3392) 64 Bit HP CIO Components Installer (Version: 7.2.8) Adobe AIR (x32 Version: 2.5.1.17730) Adobe Community Help (x32 Version: 3.4.980) Adobe Dreamweaver CS5.5 (x32 Version: 11.5) Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94) Adobe Photoshop Elements 7.0 (x32 Version: 7.0) Adobe Photoshop Elements 7.0 (x32 Version: 7.0.0.3) ATI Catalyst Install Manager (Version: 3.0.765.0) Audacity 1.3.14 (Unicode) (x32) AVG 2013 (Version: 13.0.3222) AVG 2013 (Version: 13.0.3392) AVG Security Toolbar (x32 Version: 15.5.0.2) B109a-m (x32 Version: 130.0.396.000) BabylonObjectInstaller (x32 Version: 2.0.0.4) Biet-O-Matic v2.14.8 (x32 Version: Biet-O-Matic v2.14.8) Bing Bar (x32 Version: 7.0.850.0) BufferChm (x32 Version: 130.0.331.000) Canon Utilities Digital Photo Professional 3.7 (x32 Version: 3.7.3.0) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Core Implementation (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Full New (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Light (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0310.1824.32984) Catalyst Control Center HydraVision Full (x32 Version: 2010.0310.1824.32984) Catalyst Control Center InstallProxy (x32 Version: 2009.0908.2225.38429) Catalyst Control Center InstallProxy (x32 Version: 2010.0310.1824.32984) Catalyst Control Center Localization All (x32 Version: 2010.0310.1824.32984) CCC Help Chinese Standard (x32 Version: 2010.0310.1823.32984) CCC Help Chinese Traditional (x32 Version: 2010.0310.1823.32984) CCC Help Czech (x32 Version: 2010.0310.1823.32984) CCC Help Danish (x32 Version: 2010.0310.1823.32984) CCC Help Dutch (x32 Version: 2010.0310.1823.32984) CCC Help English (x32 Version: 2010.0310.1823.32984) CCC Help Finnish (x32 Version: 2010.0310.1823.32984) CCC Help French (x32 Version: 2010.0310.1823.32984) CCC Help German (x32 Version: 2010.0310.1823.32984) CCC Help Greek (x32 Version: 2010.0310.1823.32984) CCC Help Hungarian (x32 Version: 2010.0310.1823.32984) CCC Help Italian (x32 Version: 2010.0310.1823.32984) CCC Help Japanese (x32 Version: 2010.0310.1823.32984) CCC Help Korean (x32 Version: 2010.0310.1823.32984) CCC Help Norwegian (x32 Version: 2010.0310.1823.32984) CCC Help Polish (x32 Version: 2010.0310.1823.32984) CCC Help Portuguese (x32 Version: 2010.0310.1823.32984) CCC Help Russian (x32 Version: 2010.0310.1823.32984) CCC Help Spanish (x32 Version: 2010.0310.1823.32984) CCC Help Swedish (x32 Version: 2010.0310.1823.32984) CCC Help Thai (x32 Version: 2010.0310.1823.32984) CCC Help Turkish (x32 Version: 2010.0310.1823.32984) ccc-core-static (x32 Version: 2010.0310.1824.32984) ccc-utility64 (Version: 2010.0310.1824.32984) CCleaner (Version: 3.19) Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000) CyberLink DVD Suite Deluxe (x32 Version: 7.0.2115) D3DX10 (x32 Version: 15.4.2368.0902) Destinations (x32 Version: 130.0.0.0) DeviceDiscovery (x32 Version: 130.0.372.000) DHTML Editing Component (x32 Version: 6.02.0001) DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904) DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224) Google Earth (x32 Version: 5.2.1.1588) GPBaseService2 (x32 Version: 130.0.371.000) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000) HP Advisor (x32 Version: 3.3.9512.3162) HP Customer Experience Enhancements (x32 Version: 6.0.1.3) HP Customer Participation Program 13.0 (Version: 13.0) HP Imaging Device Functions 13.0 (Version: 13.0) HP MediaSmart DVD (x32 Version: 3.1.3317) HP MediaSmart Music/Photo/Video (x32 Version: 3.1.3422) HP MediaSmart SmartMenu (Version: 3.1.0.1) HP Odometer (x32 Version: 2.10.0000) HP Photosmart B109a-m All-In-One Driver Software 13.0 Rel .6 (Version: 13.0) HP Print Projects 1.0 (Version: 1.0) HP Remote Solution (x32 Version: 1.1.12.0) HP Setup (x32 Version: 1.2.3560.3170) HP Solution Center 13.0 (Version: 13.0) HP Support Assistant (x32 Version: 7.0.39.15) HP Support Information (x32 Version: 10.1.0002) HP Update (x32 Version: 5.001.000.014) HPPhotoGadget (x32 Version: 130.0.282.000) hpPrintProjects (x32 Version: 130.0.303.000) HPProductAssistant (x32 Version: 130.0.371.000) hpWLPGInstaller (x32 Version: 130.0.303.000) HydraVision (x32 Version: 4.2.162.0) Intel(R) Rapid Storage Technology (x32 Version: 9.5.0.1037) Java 7 Update 21 (x32 Version: 7.0.210) Java Auto Updater (x32 Version: 2.1.9.5) JavaFX 2.1.1 (x32 Version: 2.1.1) Junk Mail filter update (x32 Version: 15.4.3502.0922) LabelPrint (x32 Version: 2.5.2017) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300) MarketResearch (x32 Version: 130.0.374.000) Mesh Runtime (x32 Version: 15.4.5722.2) Messenger Companion (x32 Version: 15.4.3502.0922) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Exchange Online Connector for Office Outlook 2003 (x32 Version: 1.0.1419.1) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1) Microsoft Office PowerPoint Viewer 2007 (German) (x32 Version: 12.0.6612.1000) Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft_VC80_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000) Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000) Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) Naviextras Toolbox (x32 Version: 3.11.0.24188) Naviextras Toolbox Prerequesities (x32 Version: 1.0.0) NAVIGON Fresh 3.4.1 (x32 Version: 3.4.1) Nitro Pro 8 (Version: 8.5.2.10) OpenOffice.org 3.2 (x32 Version: 3.2.9502) Personal Backup 5.4 (Version: 5.3) PlayReady PC Runtime amd64 (Version: 1.3.0) POIbase 1.051 (x32) Power2Go (x32 Version: 6.0.3304) PowerDirector (x32 Version: 7.0.3405) PS_AIO_06_B109a-m_SW_Min (x32 Version: 130.0.396.000) Recovery Manager (x32 Version: 5.5.2216) Scan (x32 Version: 13.0.0.0) SchnellerPC v3.1 (x32 Version: 3.1) SILKYPIX Developer Studio 3.0 SE (x32 Version: 3) Skype Click to Call (x32 Version: 5.6.8442) Skype™ 5.10 (x32 Version: 5.10.116) SolutionCenter (x32 Version: 130.0.373.000) Status (x32 Version: 130.0.373.000) StreamTransport version: 1.0.2.2171 (x32) SUPER © v2013.build.57+Recorder (2013/07/13) Version v2013.buil (x32 Version: v2013.build.57+Recorder) Toolbox (x32 Version: 130.0.648.000) TrayApp (x32 Version: 130.0.376.000) Visual Studio 2008 x64 Redistributables (x32 Version: 10.0.0.2) Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1) WarrantyExtension (x32 Version: 1.00.0000) Wartung Samsung CLP-320 Series (x32) WebReg (x32 Version: 130.0.132.017) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3555.0308) Windows Live Family Safety (Version: 15.4.3555.0308) Windows Live Fotogalerie (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4232.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3555.0308) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2) Windows Live Messenger (x32 Version: 15.4.3538.0513) Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) XMedia Recode 3.0.6.0 (x32 Version: 3.0.6.0) ==================== Restore Points ========================= 22-08-2013 08:38:35 Geplanter Prüfpunkt 29-08-2013 15:11:35 Geplanter Prüfpunkt 29-08-2013 20:10:49 RegClean Pro Do, Aug 29, 13 22:10 31-08-2013 11:03:28 Removed Visual Studio 2008 x64 Redistributables 31-08-2013 16:13:32 Windows Modules Installer 31-08-2013 16:18:44 Windows Modules Installer 31-08-2013 16:31:53 Konfiguriert LabelPrint 31-08-2013 16:54:21 Wiederherstellungsvorgang 31-08-2013 17:50:16 Windows Modules Installer 31-08-2013 17:51:12 Windows Modules Installer 31-08-2013 18:45:57 Installed SpyHunter 31-08-2013 19:07:05 Removed SpyHunter 01-09-2013 06:12:44 Windows Modules Installer 01-09-2013 06:21:08 Windows Modules Installer 02-09-2013 08:15:30 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => start w32time task_started Task: {17228B01-5AE1-450D-9DC0-8F06CCFF19C0} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {19237CD0-CE2C-4A1D-90CD-0735C317F79E} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation) Task: {2D841DF5-A51B-4F28-B682-95520689DDAD} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {35AEDA7F-E824-4CB9-995C-F546606D4826} - System32\Tasks\AdobeAAMUpdater-1.0-Desktop-ulf-uwchif1 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15] (Adobe Systems Incorporated) Task: {5B32E29E-7DE3-44F4-B3B2-2EF8562777F7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-12] (Adobe Systems Incorporated) Task: {607D647B-619C-43D7-8803-314ABD002856} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {7CCECA25-825D-44F8-919B-DBBF92219188} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company) Task: {978CEEFD-12D2-46BC-B7DE-69F74764F8CE} - System32\Tasks\DSite => C:\Users\uwchif1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE No File Task: {9F9BD0D2-91A4-4493-98C5-51EA0D84B291} - System32\Tasks\{2BD84779-3E1A-4CA9-A68F-FB306554FE00} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.) Task: {A349681D-6D04-40FE-B036-1C1D9365E92F} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe No File Task: {ADB805CA-077C-4A32-9F0D-0CA23F38B866} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {B01C81C4-78E2-4917-B038-3ED7A389DD4D} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation) Task: {B5C7E2EB-8AED-4E33-96B5-8CADF85AF55C} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe No File Task: {BBD8BCB0-BDBE-4E5C-ACAE-2D442526CA83} - System32\Tasks\4876 => C:\Windows\System32\wscript.exe [2009-07-14] (Microsoft Corporation) Task: {C3E1FE3F-2CF1-4ACE-A8DB-A5D171F7F0D0} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-22] (CyberLink) Task: {C4754DFC-EFF8-4099-BDBB-C9CD6BC75C1E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2013-08-20] (Microsoft) Task: {DE0C0731-6046-47BC-B123-758A95C321CA} - System32\Tasks\{56132BB2-1AF7-4709-8FDE-FBF556DCB25F} => c:\program files (x86)\internet explorer\iexplore.exe [2013-07-26] (Microsoft Corporation) Task: {DF02A282-E62A-499A-94DD-9B33BDEBC881} - System32\Tasks\0 => c:\program files (x86)\internet explorer\iexplore.exe [2013-07-26] (Microsoft Corporation) Task: {F6D51F3C-88AF-42EA-A3A0-F9A51A26748C} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2009-10-20] () Task: {FA45962B-FDC0-406B-A8E0-FA14747D6E11} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe No File Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DSite.job => C:\Users\uwchif1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE ==================== Loaded Modules (whitelisted) ============= 2010-07-03 09:27 - 2010-03-10 18:33 - 00036352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll 2009-07-14 01:30 - 2009-07-14 03:41 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\WINBRAND.dll 2011-07-18 15:22 - 2010-11-20 15:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fdproxy.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00748032 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll 2009-07-14 01:53 - 2009-07-14 03:40 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\dfscli.dll 2012-08-15 16:52 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll 2009-07-14 02:31 - 2009-07-14 03:41 - 02137600 _____ (Microsoft Corporation) C:\Windows\System32\NLSData0007.dll 2009-07-14 02:40 - 2009-07-14 03:41 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll 2009-07-14 02:40 - 2009-07-14 03:41 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll 2011-07-18 15:23 - 2010-11-20 15:27 - 01050624 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll 2011-07-18 15:23 - 2010-11-20 15:27 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2013-03-25 19:26 - 2013-03-25 19:26 - 00108552 _____ (Nitro PDF) C:\PROGRA~1\COMMON~1\Nitro\Pro\8.0\NPSHEL~1.DLL 2013-03-28 02:48 - 2013-03-28 02:48 - 00266288 _____ (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgsea.dll 2011-06-11 01:15 - 2011-06-11 01:15 - 00608080 _____ (Microsoft Corporation) C:\Windows\system32\MSVCP100.dll 2011-06-11 01:15 - 2011-06-11 01:15 - 00829264 _____ (Microsoft Corporation) C:\Windows\system32\MSVCR100.dll 2013-06-27 01:54 - 2013-06-27 01:54 - 01018416 _____ (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll 2009-07-14 01:35 - 2009-07-14 03:40 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\FunDisc.dll 2009-07-14 02:08 - 2009-07-14 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\NetworkItemFactory.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00101376 _____ (Microsoft Corporation) C:\Windows\System32\fdwcn.dll 2009-07-14 02:08 - 2009-07-14 03:41 - 00120832 _____ (Microsoft Corporation) C:\Windows\System32\wcnapi.dll 2009-07-14 01:35 - 2009-07-14 03:40 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\fdWNet.dll 2013-05-21 22:36 - 2013-05-21 22:36 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\D3D10Warp.dll 2009-07-14 01:19 - 2009-07-14 03:41 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\ktmw32.dll 2009-07-14 01:46 - 2009-07-14 03:41 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\tschannel.dll 2009-07-14 01:46 - 2009-07-14 03:41 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\TaskSchdPS.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\IEUI.dll 2013-08-14 13:46 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2009-07-14 01:19 - 2009-07-14 03:41 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\pcwum.dll 2011-07-18 15:23 - 2010-11-20 15:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll 2009-07-14 02:17 - 2009-07-14 03:41 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\UTILDLL.dll 2011-07-18 15:22 - 2010-11-20 15:26 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\LOGONCLI.DLL 2012-08-15 16:52 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\BROWCLI.DLL 2012-03-08 18:40 - 2012-03-08 18:40 - 00150376 _____ (Microsoft Corporation) C:\Program Files\Windows Live\Family Safety\fsapi.dll 2011-06-21 03:23 - 2011-06-21 03:23 - 00826880 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\sst3cdu.dll 2011-07-18 15:22 - 2010-11-20 15:27 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll 2013-05-21 22:37 - 2013-05-21 22:37 - 00762368 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2009-07-14 02:08 - 2009-07-14 03:40 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\dtsh.dll 2011-07-18 15:22 - 2010-11-20 15:26 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll ==================== Alternate Data Streams (whitelisted) ========== AlternateDataStreams: C:\Windows:nlsPreferences AlternateDataStreams: C:\ProgramData\Temp:ED9F3B50 AlternateDataStreams: C:\Users\uwchif1\Desktop\SwissDomain.ch - Webhosting Schweiz.url:favicon AlternateDataStreams: E:\Eigene Dokumente\SwissDomain.ch - Webhosting Schweiz.url:favicon AlternateDataStreams: E:\Eigene Dokumente\Thumbs.db:encryptable ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/02/2013 02:33:20 PM) (Source: Application Hang) (User: ) Description: Programm iexplore.exe, Version 10.0.9200.16660 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 14ac Startzeit: 01cea7d5a22aeeb9 Endzeit: 0 Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe Berichts-ID: Error: (09/02/2013 08:03:21 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Mehrere requestedPrivileges-Elemente sind nicht im Manifest zulässig. Error: (09/01/2013 00:30:07 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Mehrere requestedPrivileges-Elemente sind nicht im Manifest zulässig. Error: (08/31/2013 09:13:52 PM) (Source: Application Hang) (User: ) Description: Programm uninstall.exe, Version 1.5.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 150c Startzeit: 01cea67de7c34d27 Endzeit: 0 Anwendungspfad: C:\Users\uwchif1\AppData\Local\Temp\nsa61B2.tmp\uninstall.exe Berichts-ID: Error: (08/31/2013 07:38:45 PM) (Source: System Restore) (User: ) Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0x80070005. Error: (08/31/2013 07:31:29 PM) (Source: System Restore) (User: ) Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0x80070005. Error: (08/31/2013 06:59:10 PM) (Source: System Restore) (User: ) Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0x80070005. Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service) (User: ) Description: Der Index kann nicht initialisiert werden. Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service) (User: ) Description: Die Anwendung kann nicht initialisiert werden. Kontext: Windows Anwendung Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service) (User: ) Description: Das Gatherer-Objekt kann nicht initialisiert werden. Kontext: Windows Anwendung, SystemIndex Katalog Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) System errors: ============= Error: (09/02/2013 07:42:20 AM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Uim_VIM Error: (09/02/2013 07:42:11 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "SSPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (09/02/2013 07:42:06 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (09/01/2013 09:03:02 PM) (Source: Service Control Manager) (User: ) Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen: %%5 Error: (09/01/2013 08:17:00 PM) (Source: Service Control Manager) (User: ) Description: Dienst "HP CUE DeviceDiscovery Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (09/01/2013 08:17:00 PM) (Source: Service Control Manager) (User: ) Description: Dienst "hpqcxs08" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (09/01/2013 08:17:00 PM) (Source: Service Control Manager) (User: ) Description: Dienst "Easybits Shared Services for Windows" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (09/01/2013 07:36:57 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Uim_VIM Error: (09/01/2013 07:36:46 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "SSPORT" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (09/01/2013 07:36:41 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Microsoft Office Sessions: ========================= Error: (09/02/2013 02:33:20 PM) (Source: Application Hang)(User: ) Description: iexplore.exe10.0.9200.1666014ac01cea7d5a22aeeb90C:\Program Files\Internet Explorer\iexplore.exe Error: (09/02/2013 08:03:21 AM) (Source: SideBySide)(User: ) Description: C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exeC:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe2 Error: (09/01/2013 00:30:07 AM) (Source: SideBySide)(User: ) Description: C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exeC:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe2 Error: (08/31/2013 09:13:52 PM) (Source: Application Hang)(User: ) Description: uninstall.exe1.5.0.0150c01cea67de7c34d270C:\Users\uwchif1\AppData\Local\Temp\nsa61B2.tmp\uninstall.exe Error: (08/31/2013 07:38:45 PM) (Source: System Restore)(User: ) Description: Geplanter Prüfpunkt0x80070005 Error: (08/31/2013 07:31:29 PM) (Source: System Restore)(User: ) Description: Geplanter Prüfpunkt0x80070005 Error: (08/31/2013 06:59:10 PM) (Source: System Restore)(User: ) Description: Geplanter Prüfpunkt0x80070005 Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service)(User: ) Description: Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service)(User: ) Description: Kontext: Windows Anwendung Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) Error: (08/31/2013 01:45:58 PM) (Source: Windows Search Service)(User: ) Description: Kontext: Windows Anwendung, SystemIndex Katalog Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-09-2013 05
Ran by uwchif1 (administrator) on DESKTOP-ULF on 02-09-2013 19:09:36
Running from C:\Users\uwchif1\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
(CyberLink) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_11_8_800_94_ActiveX.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610360 2009-09-14] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-02-20] (Google Inc.)
HKCU\...\Policies\system: [DisableLockWorkstation] 0
HKCU\...\Policies\system: [DisableChangePassword] 0
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2314416 2013-08-15] ()
HKLM-x32\...\Run: [Samsung PanelMgr] - C:\Windows\Samsung\PanelMgr\SSMMgr.exe [618496 2010-06-07] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440 2013-07-01] (AVG Technologies CZ, s.r.o.)
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
HKU\TEMP\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
AppInit_DLLs-x32: c:\progra~3\browse~1\261095~1.52\{c16c1~1\browse~1.dll [97280 2009-07-14] ()
Startup: C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Persbackup.lnk
ShortcutTarget: Persbackup.lnk -> C:\Program Files\Personal Backup 5\Persbackup.exe (Dr. J. Rathlev, D-24222 Schwentinental)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bluewin.ch/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={2E139345-69EB-48BD-92F0-F01D71887AD0}&mid=bcea127b049647d6aeda9128c028b174-837f3246ddc3f257f6db68ccd6395faa63eea49b&lang=de&ds=lw011&pr=sa&d=2013-07-25 15:37:53&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={2E139345-69EB-48BD-92F0-F01D71887AD0}&mid=bcea127b049647d6aeda9128c028b174-837f3246ddc3f257f6db68ccd6395faa63eea49b&lang=de&ds=lw011&pr=sa&d=2013-07-25 15:37:53&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms}
BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll No File
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll (AVG Secure Search)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll (AVG Secure Search)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll No File
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll (AVG Secure Search)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\..\Interfaces\{A328258A-2FBA-4FFE-ABCD-2FDBB2A8A1DC}: [NameServer]192.168.1.1
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Lightning Newtab) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\0.0.4.1_0
CHR Extension: () - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0
CHR Extension: () - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\15.3.0.11_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (NCH DE) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ommhmgednjnodcljhlljkaiidghdmikk\10.11.21.5_0
CHR Extension: (Gmail) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Users\uwchif1\AppData\Roaming\BabylonToolbar\CR\BabylonChrome1.crx
CHR HKLM-x32\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\15.3.0.11\avg.crx
CHR HKLM-x32\...\Chrome\Extension: [ommhmgednjnodcljhlljkaiidghdmikk] - C:\Users\uwchif1\AppData\Local\CRE\ommhmgednjnodcljhlljkaiidghdmikk.crx
==================== Services (Whitelisted) =================
S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [167264 2011-11-10] ()
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-03-25] (Nitro PDF Software)
R2 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [1643184 2013-08-15] (AVG Secure Search)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [x]
S3 SXDS10; "C:\Program Files (x86)\Common Files\soft Xpansion\sxds10.exe" \Service [x]
==================== Drivers (Whitelisted) ====================
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-07-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-08-15] (AVG Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 OxPCIeMf; C:\Windows\System32\DRIVERS\OxPCIeMf.sys [62000 2009-09-24] (OEM)
R3 OxPCIeSer; C:\Windows\System32\DRIVERS\OxPCIeSer.sys [102960 2009-09-24] (OEM)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S2 SSPORT; C:\Windows\SysWow64\Drivers\SSPORT.sys [11576 2009-09-10] (Samsung Electronics)
S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [90960 2013-03-15] (Windows (R) 2000 DDK provider)
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633680 2013-03-15] (Paragon)
S1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390352 2013-03-15] (Paragon)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-09-17] (CyberLink Corp.)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-09-17] (CyberLink Corp.)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 lmimirr; system32\DRIVERS\lmimirr.sys [x]
S2 SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-02 18:34 - 2013-09-02 18:34 - 00000328 _____ C:\Windows\PFRO.log
2013-09-02 16:45 - 2013-09-02 16:45 - 00000000 ____D C:\Users\uwchif1\AppData\Local\adawarebp
2013-09-02 16:25 - 2013-01-31 10:52 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\TuneUp Software
2013-09-02 16:25 - 2011-12-15 21:32 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Macromedia
2013-09-02 14:52 - 2013-09-02 14:52 - 00000000 ____D C:\FRST
2013-09-02 14:25 - 2013-09-02 14:25 - 00000000 _____ C:\Users\uwchif1\defogger_reenable
2013-09-02 11:29 - 2013-09-02 11:29 - 00000000 ____D E:\Eigene Dokumente\Fax
2013-08-31 23:38 - 2013-08-31 23:38 - 00000000 ____D C:\ProgramData\Browser Manager
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\LavasoftStatistics
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\ProgramData\Ad-Aware Antivirus
2013-08-31 21:23 - 2013-09-03 03:01 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2013-08-31 21:23 - 2013-09-03 03:01 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Lavasoft
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\blekko toolbars
2013-08-31 21:22 - 2013-09-03 03:01 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-08-31 21:22 - 2013-09-01 08:05 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Ad-Aware Antivirus
2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 _____ C:\autoexec.bat
2013-08-31 20:22 - 2013-08-31 21:08 - 00000000 ____D C:\ProgramData\SpeedMaxPc
2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\SpeedMaxPc
2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DriverCure
2013-08-31 19:13 - 2013-08-31 19:13 - 00000000 ___DC C:\Users\uwchif1\AppData\Local\MigWiz
2013-08-31 17:54 - 2013-08-31 18:36 - 00000000 ____D C:\Program Files (x86)\Amazon
2013-08-29 21:48 - 2013-08-29 21:48 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5
2013-08-29 21:37 - 2013-08-29 21:37 - 00000000 ____D E:\Eigene Dokumente\eRightSoft
2013-08-29 21:36 - 2013-08-29 21:37 - 00000000 ____D C:\Program Files (x86)\eRightSoft
2013-08-29 21:35 - 2013-08-29 21:35 - 00000000 ____D C:\ProgramData\Registry Helper
2013-08-29 21:34 - 2013-08-30 09:01 - 00000000 ____D C:\ProgramData\eSafe
2013-08-29 21:24 - 2013-08-29 21:24 - 00000000 ____D C:\Users\uwchif1\AppData\Local\avgchrome
2013-08-29 21:19 - 2013-09-03 03:01 - 00000000 ____D C:\Program Files (x86)\VideoConverter
2013-08-29 21:19 - 2013-08-29 21:19 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DSite
2013-08-29 21:16 - 2013-08-29 21:16 - 00000000 ____D C:\Program Files (x86)\PopularScreensavers_7iEI
2013-08-29 21:15 - 2013-08-29 21:15 - 00000000 ____D C:\Users\uwchif1\AppData\Local\IAC
2013-08-29 20:26 - 2013-08-29 20:26 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4zEI
2013-08-29 20:02 - 2013-08-29 20:02 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\AVS4YOU
2013-08-29 20:01 - 2013-08-29 21:22 - 00000000 ____D C:\Program Files (x86)\AVS4YOU
2013-08-29 20:01 - 2013-08-29 20:02 - 00000000 ____D C:\ProgramData\AVS4YOU
2013-08-29 19:03 - 2013-09-03 03:01 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\FreeVideoConverter
2013-08-29 18:29 - 2013-08-29 18:30 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\MOVAVI
2013-08-29 18:22 - 2013-08-31 19:35 - 00000000 ____D C:\Program Files (x86)\Conduit
2013-08-29 18:22 - 2013-08-30 08:59 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Conduit
2013-08-29 18:22 - 2013-08-29 18:22 - 00000009 _____ C:\END
2013-08-29 18:16 - 2013-08-29 18:17 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{28EE0CF4-4FA1-4831-B70E-305AF422CCA8}
2013-08-27 11:52 - 2013-08-27 11:52 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B0E3A927-825D-4349-A357-AE060E7591F9}
2013-08-25 17:39 - 2013-08-25 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{4694980C-3B66-4236-A275-8A0D55FEFC63}
2013-08-25 09:54 - 2013-08-25 09:54 - 00001027 _____ C:\Users\uwchif1\Desktop\AusstellungStG - Verknüpfung.lnk
2013-08-22 15:06 - 2013-08-22 15:06 - 00001662 _____ C:\Users\uwchif1\Desktop\Ausstellung-Restauration - Verknüpfung.lnk
2013-08-14 17:34 - 2013-08-14 17:35 - 68454702 _____ C:\Users\uwchif1\Downloads\Werkzeuge Manching.zip
2013-08-14 13:46 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 13:46 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 13:46 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-14 13:46 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-14 13:46 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 13:46 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 13:46 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 13:46 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 13:46 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-14 13:46 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 13:46 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 13:46 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 13:45 - 2013-08-14 13:46 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 08:02 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 08:02 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 08:02 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 08:02 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 08:02 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 08:02 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 08:02 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 08:02 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 08:01 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 08:01 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 08:00 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 08:00 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 08:00 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 08:00 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 08:00 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 08:00 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 08:00 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 08:00 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 08:00 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 08:00 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 08:00 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 08:00 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 08:00 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 08:00 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 08:00 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 08:00 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-08-14 08:00 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-08-14 08:00 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-08-14 08:00 - 2012-11-30 07:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-08-14 08:00 - 2012-11-30 07:41 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-08-14 08:00 - 2012-11-30 06:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 05:23 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-08-14 08:00 - 2012-11-30 04:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 04:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 04:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 04:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-08-14 07:59 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 07:59 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-13 15:09 - 2013-08-13 15:10 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B77A04AC-DAC8-494F-9E35-F1D8FFA6DA20}
2013-08-13 15:09 - 2013-08-13 15:09 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{65664285-D53D-4372-AF47-A49D709217A5}
2013-08-12 20:46 - 2013-08-12 20:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{E8FAFCC9-02B6-4828-A4AF-713A64C4A5A8}
2013-08-12 08:46 - 2013-08-12 08:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3E36D23B-02D4-45A3-9334-BDA9B43B8E2A}
2013-08-07 17:04 - 2013-08-07 17:04 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3F5BC0E4-E415-4B3B-8C54-A74579033DDA}
2013-08-04 09:45 - 2013-09-03 03:06 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\PersBackup5
2013-08-04 09:45 - 2013-08-27 21:58 - 00000000 ____D E:\Eigene Dokumente\PersBackup
2013-08-04 09:44 - 2013-08-04 09:44 - 00000887 _____ C:\Users\Public\Desktop\Personal Backup 5.lnk
2013-08-04 09:44 - 2013-08-04 09:44 - 00000000 ____D C:\Program Files\Personal Backup 5
2013-08-03 17:44 - 2013-08-03 17:44 - 00000000 ____D C:\archive_db
2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\launcher
2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\explauncher
2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\backup
2013-08-03 16:51 - 2013-08-03 16:51 - 00000000 ____D C:\Program Files (x86)\Paragon Software
==================== One Month Modified Files and Folders =======
2013-09-03 03:06 - 2012-08-30 21:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\NCH Software
2013-09-03 03:06 - 2011-12-26 17:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Audacity
2013-09-03 03:06 - 2010-12-28 15:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Malwarebytes
2013-09-03 03:06 - 2010-07-03 11:47 - 00000000 ____D C:\Program Files (x86)\Google
2013-09-03 03:06 - 2010-07-03 11:30 - 00000000 ___RD E:\Eigene Dokumente\UlfAntik
2013-09-03 03:06 - 2010-07-01 12:17 - 00000000 ___RD C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-03 03:06 - 2010-07-01 12:09 - 00000000 ____D C:\Users\uwchif1
2013-09-03 03:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-03 03:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-09-03 03:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-09-03 03:05 - 2012-08-30 21:15 - 00000000 ____D C:\Program Files (x86)\NCH Software
2013-09-03 03:05 - 2010-07-22 10:24 - 00000000 ____D C:\ProgramData\Google
2013-09-03 03:05 - 2010-07-03 11:47 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Google
2013-09-03 03:04 - 2010-07-03 14:07 - 00000000 ____D E:\Eigene Dokumente\Schloss-Bilder-1#1
2013-09-03 03:01 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2013-09-03 03:01 - 2013-08-31 21:23 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus
2013-09-03 03:01 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-09-03 03:01 - 2013-08-29 21:19 - 00000000 ____D C:\Program Files (x86)\VideoConverter
2013-09-03 03:01 - 2013-08-29 19:03 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\FreeVideoConverter
2013-09-03 02:43 - 2013-05-30 17:38 - 00000000 ____D C:\Windows\Minidump
2013-09-02 19:09 - 2013-09-02 19:08 - 01951954 _____ (Farbar) C:\Users\uwchif1\Downloads\FRST64.exe
2013-09-02 19:06 - 2012-07-25 16:33 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-02 18:41 - 2009-07-14 06:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-02 18:41 - 2009-07-14 06:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-02 18:35 - 2012-07-25 16:33 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-02 18:34 - 2013-09-02 18:34 - 00000328 _____ C:\Windows\PFRO.log
2013-09-02 18:34 - 2013-08-02 22:24 - 00003071 _____ C:\Windows\setupact.log
2013-09-02 18:34 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-02 18:33 - 2010-04-07 08:30 - 01707819 _____ C:\Windows\WindowsUpdate.log
2013-09-02 18:25 - 2012-06-08 13:49 - 00000000 ____D C:\Program Files (x86)\ MALWAREBYTES ANTI-MALWARE
2013-09-02 18:20 - 2010-07-17 10:52 - 00000000 ____D E:\Eigene Dokumente\Daten-Ulf
2013-09-02 18:14 - 2013-02-21 20:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-02 17:19 - 2011-12-23 14:56 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-09-02 17:19 - 2010-07-02 16:01 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-09-02 17:18 - 2010-07-02 16:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\HpUpdate
2013-09-02 17:18 - 2010-07-02 16:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\HP Support Assistant
2013-09-02 17:13 - 2010-12-28 16:01 - 00000000 ____D C:\ProgramData\MFAData
2013-09-02 16:45 - 2013-09-02 16:45 - 00000000 ____D C:\Users\uwchif1\AppData\Local\adawarebp
2013-09-02 15:07 - 2011-12-14 19:01 - 00000099 _____ C:\Users\Public\LMDebug.log
2013-09-02 14:52 - 2013-09-02 14:52 - 00000000 ____D C:\FRST
2013-09-02 14:25 - 2013-09-02 14:25 - 00000000 _____ C:\Users\uwchif1\defogger_reenable
2013-09-02 11:29 - 2013-09-02 11:29 - 00000000 ____D E:\Eigene Dokumente\Fax
2013-09-01 09:06 - 2012-12-13 11:43 - 00000000 ____D E:\Eigene Dokumente\AusstellungStG
2013-09-01 08:05 - 2013-08-31 21:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Ad-Aware Antivirus
2013-08-31 23:38 - 2013-08-31 23:38 - 00000000 ____D C:\ProgramData\Browser Manager
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\LavasoftStatistics
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\ProgramData\Ad-Aware Antivirus
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Lavasoft
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\blekko toolbars
2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2013-08-31 21:08 - 2013-08-31 20:22 - 00000000 ____D C:\ProgramData\SpeedMaxPc
2013-08-31 20:59 - 2011-05-25 15:37 - 00000000 ____D E:\Eigene Dokumente\WOMO
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 _____ C:\autoexec.bat
2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\SpeedMaxPc
2013-08-31 20:22 - 2013-08-31 20:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DriverCure
2013-08-31 19:35 - 2013-08-29 18:22 - 00000000 ____D C:\Program Files (x86)\Conduit
2013-08-31 19:13 - 2013-08-31 19:13 - 00000000 ___DC C:\Users\uwchif1\AppData\Local\MigWiz
2013-08-31 18:36 - 2013-08-31 17:54 - 00000000 ____D C:\Program Files (x86)\Amazon
2013-08-31 18:36 - 2012-08-02 21:21 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Systweak
2013-08-31 18:15 - 2009-12-31 06:00 - 00000000 ____D C:\Windows\Panther
2013-08-31 13:25 - 2010-11-15 22:50 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Deployment
2013-08-30 09:51 - 2010-07-03 14:08 - 00000000 ____D E:\Eigene Dokumente\Archiv-Schloss
2013-08-30 09:01 - 2013-08-29 21:34 - 00000000 ____D C:\ProgramData\eSafe
2013-08-30 08:59 - 2013-08-29 18:22 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Conduit
2013-08-30 08:05 - 2009-07-14 04:34 - 71565312 _____ C:\Windows\system32\config\software.bak
2013-08-30 08:05 - 2009-07-14 04:34 - 17039360 _____ C:\Windows\system32\config\system.bak
2013-08-30 08:05 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\security.bak
2013-08-29 22:14 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\sam.bak
2013-08-29 22:11 - 2012-08-02 21:40 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-08-29 21:48 - 2013-08-29 21:48 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5
2013-08-29 21:37 - 2013-08-29 21:37 - 00000000 ____D E:\Eigene Dokumente\eRightSoft
2013-08-29 21:37 - 2013-08-29 21:36 - 00000000 ____D C:\Program Files (x86)\eRightSoft
2013-08-29 21:35 - 2013-08-29 21:35 - 00000000 ____D C:\ProgramData\Registry Helper
2013-08-29 21:24 - 2013-08-29 21:24 - 00000000 ____D C:\Users\uwchif1\AppData\Local\avgchrome
2013-08-29 21:22 - 2013-08-29 20:01 - 00000000 ____D C:\Program Files (x86)\AVS4YOU
2013-08-29 21:19 - 2013-08-29 21:19 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\DSite
2013-08-29 21:16 - 2013-08-29 21:16 - 00000000 ____D C:\Program Files (x86)\PopularScreensavers_7iEI
2013-08-29 21:15 - 2013-08-29 21:15 - 00000000 ____D C:\Users\uwchif1\AppData\Local\IAC
2013-08-29 21:01 - 2012-08-30 21:16 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2013-08-29 20:43 - 2012-08-30 21:16 - 00000000 ____D C:\ProgramData\NCH Software
2013-08-29 20:26 - 2013-08-29 20:26 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4zEI
2013-08-29 20:02 - 2013-08-29 20:02 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\AVS4YOU
2013-08-29 20:02 - 2013-08-29 20:01 - 00000000 ____D C:\ProgramData\AVS4YOU
2013-08-29 18:30 - 2013-08-29 18:29 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\MOVAVI
2013-08-29 18:22 - 2013-08-29 18:22 - 00000009 _____ C:\END
2013-08-29 18:17 - 2013-08-29 18:16 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{28EE0CF4-4FA1-4831-B70E-305AF422CCA8}
2013-08-27 21:58 - 2013-08-04 09:45 - 00000000 ____D E:\Eigene Dokumente\PersBackup
2013-08-27 15:03 - 2009-12-31 06:05 - 00647128 _____ C:\Windows\system32\perfh007.dat
2013-08-27 15:03 - 2009-12-31 06:05 - 00127206 _____ C:\Windows\system32\perfc007.dat
2013-08-27 15:03 - 2009-07-14 07:13 - 01480600 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-27 11:52 - 2013-08-27 11:52 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B0E3A927-825D-4349-A357-AE060E7591F9}
2013-08-25 17:39 - 2013-08-25 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{4694980C-3B66-4236-A275-8A0D55FEFC63}
2013-08-25 12:08 - 2012-11-27 10:32 - 00000000 ____D E:\Eigene Dokumente\Buch-Altes-Eisen
2013-08-25 09:54 - 2013-08-25 09:54 - 00001027 _____ C:\Users\uwchif1\Desktop\AusstellungStG - Verknüpfung.lnk
2013-08-25 09:13 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-22 20:23 - 2010-07-12 15:09 - 00000000 ____D E:\Eigene Dokumente\Buch-Schlösser
2013-08-22 15:06 - 2013-08-22 15:06 - 00001662 _____ C:\Users\uwchif1\Desktop\Ausstellung-Restauration - Verknüpfung.lnk
2013-08-21 20:09 - 2010-07-03 14:13 - 00000000 ____D E:\Eigene Dokumente\Kamera
2013-08-16 21:55 - 2010-09-13 18:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Skype
2013-08-15 07:42 - 2013-07-25 15:37 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search
2013-08-15 07:42 - 2012-11-08 17:09 - 00045856 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-08-14 17:35 - 2013-08-14 17:34 - 68454702 _____ C:\Users\uwchif1\Downloads\Werkzeuge Manching.zip
2013-08-14 14:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-14 13:46 - 2013-08-14 13:45 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 13:45 - 2010-07-04 08:42 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-14 13:44 - 2009-07-14 04:34 - 00000534 _____ C:\Windows\win.ini
2013-08-13 15:10 - 2013-08-13 15:09 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{B77A04AC-DAC8-494F-9E35-F1D8FFA6DA20}
2013-08-13 15:09 - 2013-08-13 15:09 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{65664285-D53D-4372-AF47-A49D709217A5}
2013-08-12 20:46 - 2013-08-12 20:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{E8FAFCC9-02B6-4828-A4AF-713A64C4A5A8}
2013-08-12 08:46 - 2013-08-12 08:46 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3E36D23B-02D4-45A3-9334-BDA9B43B8E2A}
2013-08-10 15:10 - 2013-01-31 14:37 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Nitro PDF
2013-08-07 17:04 - 2013-08-07 17:04 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{3F5BC0E4-E415-4B3B-8C54-A74579033DDA}
2013-08-07 11:47 - 2010-07-03 20:21 - 00000000 ____D C:\Depot
2013-08-04 09:46 - 2012-01-21 12:47 - 00000000 ____D E:\Eigene Dokumente\AG
2013-08-04 09:44 - 2013-08-04 09:44 - 00000887 _____ C:\Users\Public\Desktop\Personal Backup 5.lnk
2013-08-04 09:44 - 2013-08-04 09:44 - 00000000 ____D C:\Program Files\Personal Backup 5
2013-08-03 17:44 - 2013-08-03 17:44 - 00000000 ____D C:\archive_db
2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\launcher
2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\explauncher
2013-08-03 17:33 - 2013-08-03 17:33 - 00000000 ____D C:\ProgramData\backup
2013-08-03 16:51 - 2013-08-03 16:51 - 00000000 ____D C:\Program Files (x86)\Paragon Software
2013-08-03 14:09 - 2010-07-01 20:55 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-08-03 14:08 - 2013-02-08 17:36 - 00000000 ____D C:\ProgramData\POIbase
2013-08-03 14:08 - 2013-02-08 17:36 - 00000000 ____D C:\Program Files (x86)\POIbase
Files to move or delete:
====================
C:\Users\uwchif1\AppData\Local\Temp\Temp1_pb-setup-5.4.8.2.zip\pb-setup-x64-5.4.0802.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\TeamViewer_Desktop.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\TeamViewer_Resource_de.dll
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\TeamViewer_Service.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_w32.dll
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_w32.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_x64.dll
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_x64.exe
C:\Users\uwchif1\AppData\Local\Temp\HP Support Framework\HPSF_Config1.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-01 00:10
==================== End Of Log ============================
--- --- --- Hier noch die neue Malware-Log: [CODE][Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.09.02.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16660 uwchif1 :: DESKTOP-ULF [Administrator] 02.09.2013 18:26:50 mbam-log-2013-09-02 (18-26-50).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 267808 Laufzeit: 3 Minute(n), 28 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 3 HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\DataMngr (PUP.Optional.DataMngr) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 1 HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0L1N1H2O1S -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Users\uwchif1\Downloads\iLividSetup.exe (PUP.Optional.Bandoo) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) /CODE] |
|
02.09.2013, 19:32
| #4 |
| /// the machine /// TB-Ausbilder | Hatte Qvo6 was nun So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.09.2013, 07:44
| #5 |
| | Hatte Qvo6 was nun Hallo Schrauber Kann es sein, dass der ADwCleaner mehr als 15 Minuten braucht ? Gruss Ulf |
|
03.09.2013, 08:26
| #6 |
| /// the machine /// TB-Ausbilder | Hatte Qvo6 was nun Möglich, wenn viel Müll drauf ist.
__________________ --> Hatte Qvo6 was nun |
|
03.09.2013, 13:23
| #7 |
| | Hatte Qvo6 was nun Hallo Schrauber ADWCleaner nach 70 Minuten abgebrochen ohne Ende-Meldung Code:
ATTFilter # AdwCleaner v3.002 - Bericht erstellt am 03/09/2013 um 08:38:38
# Updated 01/09/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : uwchif1 - DESKTOP-ULF
# Gestartet von : C:\Users\uwchif1\Downloads\adwcleaner.exe
# Option : Suchen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Datei Gefunden : C:\END
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\user.js
Datei Gefunden : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
Datei Gefunden : C:\Windows\System32\roboot64.exe
Ordner Gefunden : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Ordner Gefunden : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ommhmgednjnodcljhlljkaiidghdmikk
Ordner Gefunden C:\Program Files (x86)\AVG Secure Search
Ordner Gefunden C:\Program Files (x86)\Babylon
Ordner Gefunden C:\Program Files (x86)\Common Files\337
Ordner Gefunden C:\Program Files (x86)\Common Files\AVG Secure Search
Ordner Gefunden C:\Program Files (x86)\Conduit
Ordner Gefunden C:\ProgramData\AVG Secure Search
Ordner Gefunden C:\ProgramData\AVG Security Toolbar
Ordner Gefunden C:\ProgramData\Babylon
Ordner Gefunden C:\ProgramData\blekko toolbars
Ordner Gefunden C:\ProgramData\boost_interprocess
Ordner Gefunden C:\ProgramData\Browser Manager
Ordner Gefunden C:\ProgramData\eSafe
Ordner Gefunden C:\ProgramData\SpeedMaxPc
Ordner Gefunden C:\Users\uwchif1\AppData\Local\AVG Secure Search
Ordner Gefunden C:\Users\uwchif1\AppData\Local\Conduit
Ordner Gefunden C:\Users\uwchif1\AppData\Local\cre
Ordner Gefunden C:\Users\uwchif1\AppData\Local\iac
Ordner Gefunden C:\Users\uwchif1\AppData\Local\PackageAware
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\adawaretb
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\AVG Secure Search
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\AVG Security Toolbar
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\BabylonToolbar
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\Conduit
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\iac
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\mixidj
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\searchresultstb
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\Softonic
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\DriverCure
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\DSite
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\SpeedMaxPc
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\Systweak
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden : HKCU\Software\58eda88b234ef40
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\AVG Security Toolbar
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gefunden : HKCU\Software\AVG Secure Search
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\Google\Chrome\Extensions\ommhmgednjnodcljhlljkaiidghdmikk
Schlüssel Gefunden : HKCU\Software\IM
Schlüssel Gefunden : HKCU\Software\ImInstaller
Schlüssel Gefunden : HKCU\Software\Microsoft\Babylon
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : HKCU\Software\systweak
Schlüssel Gefunden : HKCU\Software\YahooPartnerToolbar
Schlüssel Gefunden : [x64] HKCU\Software\AVG Secure Search
Schlüssel Gefunden : [x64] HKCU\Software\Conduit
Schlüssel Gefunden : [x64] HKCU\Software\IM
Schlüssel Gefunden : [x64] HKCU\Software\ImInstaller
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Babylon
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : [x64] HKCU\Software\Softonic
Schlüssel Gefunden : [x64] HKCU\Software\systweak
Schlüssel Gefunden : [x64] HKCU\Software\YahooPartnerToolbar
Schlüssel Gefunden : HKLM\Software\AVG Secure Search
Schlüssel Gefunden : HKLM\Software\AVG Security Toolbar
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\S
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\Software\DataMngr
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\ommhmgednjnodcljhlljkaiidghdmikk
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Schlüssel Gefunden : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Schlüssel Gefunden : HKLM\Software\systweak
Schlüssel Gefunden : HKLM\Software\Web Assistant
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Tarma Installer
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Web Assistant
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Wert Gefunden : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Wert Gefunden : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]
Wert Gefunden : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Wert Gefunden : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Wert Gefunden : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16660
-\\ Google Chrome v29.0.1547.62
[ Datei : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [13815 octets] - [03/09/2013 08:16:47]
AdwCleaner[R1].txt - [13666 octets] - [03/09/2013 08:38:38]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [13727 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.7 (09.01.2013:1)
OS: Windows 7 Home Premium x64
Ran by uwchif1 on 03.09.2013 at 14:07:28.80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\viprotocol.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-664934409-1946662044-424594877-1001\Software\web assistant
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-664934409-1946662044-424594877-1001\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\web assistant
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\viprotocol
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\s
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\babylon_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\babylon_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibar_installer_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibar_installer_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibartoolbar_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\incredibartoolbar_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\systweakasp_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\systweakasp_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{e55e7026-ef2a-4a17-aaa7-db98ea3fd1b1}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
~~~ Files
Successfully deleted: [File] "C:\Users\uwchif1\appdata\locallow\microsoft\silverlight\outofbrowser\index\portal.qtrax.com"
Successfully deleted: [File] "C:\end"
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\ProgramData\blekko toolbars"
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\ProgramData\browser manager"
Successfully deleted: [Folder] "C:\ProgramData\esafe"
Successfully deleted: [Folder] "C:\ProgramData\speedmaxpc"
Successfully deleted: [Folder] "C:\Users\uwchif1\AppData\Roaming\drivercure"
Successfully deleted: [Folder] "C:\Users\uwchif1\AppData\Roaming\dsite"
Successfully deleted: [Folder] "C:\Users\uwchif1\AppData\Roaming\speedmaxpc"
Successfully deleted: [Folder] "C:\Users\uwchif1\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\local\adawarebp"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\local\iac"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\adawaretb"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\babylontoolbar"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\datamngr"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\iac"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\mixidj"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\searchresultstb"
Successfully deleted: [Folder] "C:\Users\uwchif1\appdata\locallow\softonic"
Successfully deleted: [Folder] "C:\Program Files (x86)\babylon"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\eusing free registry cleaner"
Successfully deleted: [Folder] "C:\Program Files (x86)\popularscreensavers_7iei"
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0018790D-443D-40B8-8A11-4F0CC83F5BD8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{01241157-A2A7-4950-9B4D-26866881A9CF}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{033370C3-D30B-4EB3-A1FE-E1BABBEDBF26}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{03CD9ECE-166C-4742-BEB7-76D0D6197D49}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{055490FD-4688-4124-9999-32ECA3AD97D4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{05F19C17-04E5-4746-BEC2-5F84725E1B2C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0A6193E1-395D-481D-8BBD-F4FB1B279E65}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0AB7D604-E320-4940-902E-36E09B74B1C4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0B32008A-9E4B-4DA1-B270-9DFB0C73D6A8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0BA86071-D555-444F-9CC9-0C94E1BF1594}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0C0E5C92-55A8-4D7E-99A5-AE4153050224}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0CE66290-2577-42CC-AA17-104B248CF1BA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0DC4DF0D-1F5D-42C7-9F05-22B7CEAFA3B2}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0E93C7E2-B444-4005-A7C8-74ACE9EA5FCD}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0E94D7A5-F465-4CAD-B096-1E2CB32A22E6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0F5D9FA8-9DEF-4A6D-ACF4-A17CE5F3CBE5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0FAD0512-FEE5-4368-A3DB-7AD1494CF5BC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{0FBCCA35-50D0-4829-BA80-EEEFC97D81E3}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1141CB1C-8FC1-4904-A51B-F7DA3BA26908}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{120C5F0C-AC74-4105-AEDC-575BB8B1DA0B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{147E5E74-E7C0-4236-B340-35EAFB242042}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{14C29A5D-DCCA-4F08-A894-3FCDDDE53C12}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1531A489-7BC7-4057-914A-E732B47C9C75}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{15DA9485-3832-4E48-845F-4B93E72958A4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{15E5DA9B-4FA8-4D26-9860-596DDF4C0632}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{16F15EEA-0C8B-4A57-B265-81CA8445D708}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{16F764C1-D998-48BF-ABBB-A87A5BC3B7A9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{174D1EC3-6880-4814-9EA9-BC4A0461B66B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{18AE0FD5-63E6-4F09-BC9B-7818D3758FC1}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1A9B9661-1183-4C76-9CDE-26BE0471E405}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1B02D208-C11F-4958-9A08-5EE5384F2B0A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1B03A355-F98D-4209-B3D2-3852F444D676}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1C892974-486C-4A7E-B40D-1432807209ED}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1CD97D97-B629-4366-8F6D-F1C6E38F6075}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1D22BF12-BD5F-4B37-BA8F-210B3350D81D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1DE80DDA-AA91-4022-8021-0E2E0E2E7E3F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1EB9F53D-70AB-4A76-BD8F-C87A1D3EBCD6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{1EEAD5E1-DEA3-43A8-9F38-B09B9C239EDD}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{20F93157-8330-42D0-B914-7128DD2925FA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{22209210-8E38-411E-AD63-087CDB8C5BE0}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{22705C58-28EF-41FE-9D62-892EF8E47B2C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{22C8C36C-0583-4A08-A155-B47FDFA35043}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{22E52855-44D7-4109-833C-5F30FCD5682D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2314AB5C-ED69-4DE8-ADC1-5735EB681E11}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{232CA417-2354-48BF-9BF9-1ADE1FE598C3}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{237D5377-CE40-4856-86AD-753F4AB72295}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{25726AFF-CCAB-4DD8-954C-4412E699502A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2602EF56-E81F-4C73-9323-BAA8C80567B6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{264D7C0B-F2B8-4E92-9531-119AB98FEE89}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{26594EC7-2374-40F8-95DF-5DFBCF37FDB9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{26C9000F-F7A1-49EA-9430-BE69BF5E1AAC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2764D5BD-5B29-4F4D-BCE2-10F12A0F78E8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{28042FB3-FE3C-45AA-97F3-3B219A8A4015}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{288C1C2D-88FF-4F6F-B5CF-5DC1D19628C9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{28EE0CF4-4FA1-4831-B70E-305AF422CCA8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{295F0D7D-83C8-4040-A6D0-E7921BA07B29}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2994D517-3EAC-41CE-B226-31AE0C725C59}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2A409529-6506-4088-89D2-0D5248192E89}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2BA0F5B5-1240-4ECF-9F87-B0A303159AF9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2C14C837-E478-477E-B2C5-23349E4CA323}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2C57A002-27DA-419C-9683-74356E32D3C8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2D21C6DA-499D-4EA9-8429-62FA69C3726A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{2E193F44-702E-480A-99B1-14E179B8D48F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{30FD7FD4-B481-4399-A370-C9C3CDF38EE0}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3179E8BD-BDCC-4000-9CD6-71179AC271FB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{324AFC43-5596-4B63-91D1-100D15FC044B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{340477CC-CFAC-421F-9036-DBDB00058030}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3669337A-34D3-4EED-9D09-5334C96FB538}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3670B2D9-9474-47E7-8732-B30C5E81BF41}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{386338CC-EBC6-4F3D-AB7B-68074AA2C78A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{38A3E4E3-B6D3-4489-9CA6-02DFE51FC290}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{38EBC65B-1835-4A8C-BD7F-6A39BC597B43}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3A2FB3CF-74C4-40F7-897E-ADB286A40894}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3B7FA254-4BC0-49B8-BBFB-BDF8E252B6A6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3C32AD8E-4D3F-4078-BCF6-059F75B0D83E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3E36D23B-02D4-45A3-9334-BDA9B43B8E2A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3F5BC0E4-E415-4B3B-8C54-A74579033DDA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3FA3EBB3-BE4B-438E-9A61-E365D485B6A9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{3FF79BFE-C384-43F5-B18E-C36F9B166198}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{40A88983-8643-4D23-A693-36402A9CC663}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{41AF34C6-E407-42C4-B6AA-FC88EFB7113B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{421D0189-725E-428A-B99A-8B235E066BDE}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{430FF9D9-77DC-475C-B941-D0D6DADE4BD0}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{43D9E7DC-9E73-4026-AE80-131F4F2EA4EC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4453C154-15D0-48CA-AFD4-8F48F15E1C7B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{447EC848-3E34-49EB-90D9-F3FCD154E33A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4483B78E-391F-41EB-BFAD-A65843A2B25B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{449FB63B-9AD4-4D0A-9331-3FFBD10EEFF7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{466460BA-0B76-4947-9E92-C2A5A9A96E0F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4694980C-3B66-4236-A275-8A0D55FEFC63}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{46AD5FAB-1BFE-40E8-B8F4-4DABAB931851}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4A2D88D8-5B31-4458-8330-418BC2FA0694}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4A620A59-53AC-4C09-9B48-1C07687A8361}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4AFF65E2-7631-4DA4-B98C-EC5483E5BDC5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4B18A947-948D-4481-8E69-0D0E50E0A8C6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4D519A71-C98E-4CD5-A316-A24A4D7AA3B8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4E22DA72-52D2-4218-B0B6-DB850251A92D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4E26F495-EF6C-4C27-A79E-60E065EE0391}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4E8F41C5-2E0B-4AA0-B773-11C4540F0E23}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4ED3537B-EB0B-431F-8E2C-F4008D596751}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4EE477DB-3D76-440E-891D-4D34215199DF}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4FB27A25-1B1B-40A1-9EC8-3CC471B181D6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{4FCB0003-2595-478B-B645-43865FD385DF}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5192B8B7-5FDD-4CD8-AC30-90E4868EE7B9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{542F9B61-58DD-4F26-9A47-9850850DBFF9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{56FD61C6-80D1-4A8F-8203-8688F5985B89}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5748744F-7C68-47FF-BD38-B533BBC2142F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5989A0A5-B775-4658-9257-82570522CA81}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{59B7A71D-36D9-481A-ADAC-CA34D867552A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5E1F103A-21F1-49D1-ADA8-D1C687A5BFEC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5E214160-2E41-4EB3-A0D4-72AFFC98B6FB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5EB493FE-6E7B-428B-82BA-2D989C90F254}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5F047352-2095-44AF-B001-22FD9AF65658}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{5F279004-C7DC-45AE-A2A6-7E1BA1F93BF2}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{61314287-89B1-40B3-9F86-EDE461F38572}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6180C35C-E421-4D5F-953E-A71E98BA244C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{627E4393-E99E-4F4B-85BF-3A8E9A712B6E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{64AB584A-7BD7-43BB-9DA4-54CEDF91846B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{65664285-D53D-4372-AF47-A49D709217A5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{662EA896-1709-423A-9D4A-A89F83047D95}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{66948433-B67B-4915-8DFC-3CFF7DCDFEBA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{671C6160-502E-4CCA-A190-A7BF2C826A56}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{69AFB7A5-CED4-4181-94BE-87391B2469EC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{69E965D5-E272-4CFD-B7B4-AFD3C3DD055F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{69F50295-5A42-4586-9CA5-E6057C38F0CB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6A1684C5-1FAE-42CF-931D-C87D7A9CD99A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6A234CB0-FB74-41D4-B5F8-D6E1BD8F2362}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6A53E8FD-6CA7-4BF8-8B39-D664A33A29CC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6AB74B22-0DB5-456D-BE49-5187F5E9431A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6AD95462-B372-4C79-A860-A5ACBDD1FEBA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6B4125E0-6D33-4DA8-B46E-70C346FF602E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6E247C13-FB7F-43D3-BDBF-77F966E74E47}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6F4E7963-3019-4BCF-A6E3-A7253B20BCC5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{6FD81F98-6791-4F6A-AFCD-72E3B05AC490}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{709CB609-465C-4A55-8E47-A90C7FEA9084}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{712C4CCB-ACAF-4183-94D1-88A4879BC2CA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{71D86573-6A1B-4540-A4F8-C52866E31BA5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{71F67776-D83E-4C1F-8828-29FF3904560D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{73CB117F-09E6-4BF1-91FB-E37F3ADD3B76}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{743390A9-760D-424F-ADA2-A792C2DED1D5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{77C51768-BDCA-48A6-9FE6-77DEB7CFB9B5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{783AD7D8-2242-47DE-8BAC-D69FA0EA1786}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{78996659-31D6-4AB4-A6CA-B3B5A8AA8DB5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{799F3AB5-DD05-47E2-BEBC-E726DA2D7B82}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{7A51B8D3-5A7F-462E-AFF7-E37DEBFF33A7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{7BB298FF-C33F-4BEE-9B4D-0356C49AF632}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{7DFB06F0-BE32-4F47-884E-8BD93B78F754}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{801AD4CA-93AA-460D-AD5C-3E35F425AD50}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{80EA2CE4-3F87-4D76-9E8F-9CCE1CAF70EC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{83436D4E-1936-4D5C-9FA3-75227EE5765F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{841E0DAC-46C1-4108-B3B1-E86181E3799D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{844CA77B-9C29-4E99-809F-74DB17B067DC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{84AA7C5E-0A08-4604-89BD-F2EEA7ED3C7B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8561F376-3C64-49FA-9A3E-5BE1738B97C8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{861C8498-7A04-47BC-9268-3D1A9640E23E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{866C8EA3-25E7-4EA8-BFF5-CA39070C5340}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8749051B-B649-47A8-847D-06DEF946A296}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{87778B80-7AFA-478C-B142-BBAEF68A1D1F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{87850989-0909-412C-9739-B427205F6F1A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{884085EB-9F7B-45F0-B6C2-6894B0C0DED1}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{898E06CA-50EF-45E9-8830-6A5F864FB38E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8A19E630-EA86-44A1-9296-4FAC1A5F0A89}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8B6610A7-5138-4549-ACFA-1C3C75FBDE1F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8B92A36E-E49D-4F9E-8301-D72E1F5F85AD}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8BC5B932-9F90-468C-86A3-F90686BA23CB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8D2AFE43-01F9-4A46-BD17-7F5EEDA6FC1F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8DA7D96F-6F59-4590-84D8-E082EBF37111}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8F13D73F-0688-424F-A561-28BC02BCE88D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{8FBFBA30-50A0-4FDC-8B33-4041354DF6D0}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9074EE4E-EBCD-4FE3-8142-AC508D28C376}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{91CEACFA-0901-48F4-B060-F2C47F471327}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{92A5BCE7-3664-4DEA-AA2B-9E95ACB51EBB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{935294A1-65AE-45F1-BF46-0EB70557FC61}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{936098FD-FA0F-412C-BA7D-01F140BC03EC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{93B40D60-09B1-473F-8C17-7E6A218A9EFA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9674FF26-B876-4036-BECA-F65C95CC53AE}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9731F31A-EE3E-44AB-9998-2F76A92435F1}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{976799FD-CB09-4E1D-87E1-1789AD521777}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{98F3B299-0497-40D8-BC7C-F14D46A6E526}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9A015153-27C6-4026-B1A2-361B1D2F76ED}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9A3BCE21-A5B3-4D54-A640-C8EE43988D0D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9B1BA21B-CD00-4261-81E7-FEFE850DCB8F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9BAF72AF-39D1-4797-B6F2-15D8BAE084F1}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9C5FD839-5F8C-4830-88AB-275173A2E6F2}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9C91E167-339C-4E0C-88F4-85E6DDDE031E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9CD537E8-FB40-4C7D-A8F5-744A7835E685}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{9E6C3F4B-C4C7-46B2-AC0C-3F3B806E6EBA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A01843BA-E1D0-4BE3-A1E1-E073E38093DB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A0EB3AF7-A632-411B-B1D9-49A6AEAEB96C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A1A86C3D-99FD-4D68-9831-20EFB3590490}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A1D5DB76-BA41-4492-9BF5-847368EA7835}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A3C6ED43-B2A6-4563-B759-BE172E67CF8A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A3C81720-C270-4DAA-BA87-94C7E48D9D9B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A48DA2AE-441F-47DE-80CD-72831DF4D55D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A5194174-46A3-43B4-A434-FB7D8E659C43}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A9059550-D59A-48A4-BDA1-469D9FFDE9E5}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{A93C02BC-18C6-4DE8-9429-E216D443B074}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{AA462EF3-B67D-4154-9CC7-78A7DDA78BDD}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{AA9F0E52-AD8D-4C5B-96A7-534F1390AE63}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{AAE853D8-DFD8-4964-9BA0-BD8DFB975AB7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{AC32709C-066F-453E-AAE5-736A5BCD3EA4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{AC5B6F38-407A-4C8B-BF38-A913F36EBD79}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{ACFBAD1F-53E3-4704-9B9F-55459BF0A882}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{ADEA97F2-2AC3-492B-9E75-B31DD92C23EE}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B07B7BFE-0ED1-426F-BF85-4A915DF91419}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B0E3A927-825D-4349-A357-AE060E7591F9}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B22F1CF5-5927-449B-846D-BC2B4EF56ADD}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B30FFC63-A039-4DDB-8B69-4EE89293A002}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B3676A66-C46A-4F0D-82A1-61C7FD86B020}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B3B872B5-6E19-457E-A8EB-DCE9A5997D48}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B3C04E37-F180-480B-925F-6314919689A7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B430F2D8-F83C-4FB9-B07D-A7FEAD41B2DD}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B49A50F4-F99B-47C6-8758-D3AC6F00EC99}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B55668DA-0E07-46A3-9D35-B95C44B589B4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B5744018-45F1-4905-97B6-01AF2092003F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B6F3C410-6841-4B0F-BD38-BF1E0A132EE7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B77A04AC-DAC8-494F-9E35-F1D8FFA6DA20}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B891F780-1783-43D3-8B00-78DBB4C0C298}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B8D4758A-6090-4F1A-9B2D-036C5F285058}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{B9D693BC-6B85-498F-A4A5-E3BA64BDF558}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BA9A9ADB-63DE-4436-A07A-B6E7A8C14F17}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BAB9F79A-7936-42AD-AC01-8F27E5A882DC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BB099FE4-423E-4239-92F4-B569D4AFFA56}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BB1DBAFE-FEBD-4EB1-8006-0814D384EDA2}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BC758B4F-5ADE-44D5-96BF-84A403379C9D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BE355719-A679-4A8C-B83E-DF6605B9ABA7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BE9D9079-9C22-4647-8804-1EC63681FBF4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{BFA446F8-48FA-4565-9A86-9D51192197AB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{C202B389-2ED2-488A-A984-14F63010892A}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{C269247D-0F7C-45BD-9029-0FB722DE2B53}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{C2808C73-3715-46CF-845B-28FC10D64C34}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{C46BE3AD-33C9-4D92-852A-DF1EB3854990}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{C72B704A-5F2B-4C20-89D0-C30161506612}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{C75CC4F7-2EED-4F40-92F4-111CBAB677EB}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{C7892D6E-D41A-479D-8F65-D5A201AADA2D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CA15E1CB-0F34-47A8-9405-5D46E1301E08}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CBEE0EDE-9E20-41BA-8B48-B68BE55F5AEF}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CC0F1EFF-796E-4CBF-AA27-EF92B0475D29}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CD0A9848-0FD6-4761-ABF3-FD5C81D118BA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CD53D53E-66A4-4011-B4DA-23647E7F96EA}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CDCC8279-2C05-4F67-8E86-F11BB71273CE}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CE215504-393F-476C-A816-75DE2C45F46B}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CF23C916-2357-4994-86C2-A3A6FC64ED4C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{CF3A93DA-9F2B-45A9-9873-0B911F0F78AE}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D00C6DC6-F3B2-4D36-A8A6-A85ED25B85DE}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D0F42A6E-845F-40CC-ACAB-0A939B79BEDC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D14B0FD0-11DB-4867-88D8-7136CAC79CF7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D168EF03-9C51-4149-B0F2-25D58CFDD1AF}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D18B3234-6867-4657-A534-DA022650DA44}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D1A2292D-36E3-4B90-86DC-90F44AF84338}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D268495E-E10F-452D-8A0B-AFEE4A748193}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D308B386-6D01-4265-868F-89ECA796B569}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D48482F3-3B71-47ED-8D97-A24DB3138F80}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D8A6F44F-A12F-4FFA-9A90-5EC2F5776070}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D8CBB32A-E200-4592-BF1F-4EA6D92969A2}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{D9388CB3-CD25-4014-9F80-073090A7F411}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{DA356433-C3A2-4585-A7D1-5BD4BD7F08B4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{DAED395F-E8C6-4F59-8A9A-4774D62E307F}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{DC737AA2-B3ED-4CC1-9086-CEBD83066C1D}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{DF71DDBC-9438-41BA-89BB-4F19EFDB3538}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E0E633DB-8AAB-4877-8DDE-F9EB8FFFA0D4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E0E9B1A8-CE5E-445B-93A2-6C67FC36C892}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E1C7EE3E-0027-4340-9C2B-7B961DAABE3C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E243D560-C46F-4AAC-B016-6C4F1DC9FD54}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E710128D-5A00-4EE2-921F-B41C2680A7B7}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E722AD38-6D1A-4EDC-844B-A85F1FF3DE24}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E77027B8-AF89-4E17-A2B9-C7F570A6631C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E8FAFCC9-02B6-4828-A4AF-713A64C4A5A8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E9068D11-B76D-4AB2-88B0-F9E4111574DD}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E9B653C3-95EA-4D08-9AB1-98D10A01262E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{E9F77482-EB44-4D21-85D5-89671EAEB5F0}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{EAB27D06-FE00-4E7C-A69B-7C5685E0935E}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{EB168F7D-AAE7-4EBB-AB1A-8B69C57887C8}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{EB2C1580-3B54-4B19-B90A-E54E3FE0CA68}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{ED85C435-2CE7-4AA2-A5A3-1E649FF65729}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F0E58ACF-7FFC-4D20-8873-6BE51F1448F4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F4772A4F-B88E-498A-B33B-AB2003E9C55C}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F66FFBBE-F243-40A6-B039-E92541519365}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F6B8FAFE-73ED-4441-8DEA-8A6DA85E4EFF}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F72CA953-E094-438E-8C68-4FF77AD450B4}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F7F28F3D-677B-4051-AD53-C4AD5C4F3BA3}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F7FFAB25-4C9F-4D06-8FF9-D9BE6DF97E89}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{F9013252-C876-48A9-A4E0-38EFF83D68F6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{FA1E2888-5D7D-443E-9602-331568FF94AC}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{FAD669BF-3558-4F0F-9B8C-31A546F7C3C6}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{FB870EEF-59DB-47A4-BE37-1C31E8E39A15}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{FCD2E0EC-B5BD-43D2-9882-E722A9CF6824}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{FD69B3BA-06CB-422A-9655-0531DAE51115}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{FE2A685D-B666-4A80-995C-C142831B8B61}
Successfully deleted: [Empty Folder] C:\Users\uwchif1\appdata\local\{FFB98F88-ACD7-48CA-A2A3-3A07A0D6800A}
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.09.2013 at 14:11:39.31
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter # AdwCleaner v3.002 - Bericht erstellt am 03/09/2013 um 12:50:46
# Updated 01/09/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : uwchif1 - DESKTOP-ULF
# Gestartet von : C:\Users\uwchif1\Downloads\adwcleaner.exe
# Option : Suchen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Datei Gefunden : C:\END
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\user.js
Datei Gefunden : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
Datei Gefunden : C:\Windows\System32\roboot64.exe
Ordner Gefunden : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Ordner Gefunden : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ommhmgednjnodcljhlljkaiidghdmikk
Ordner Gefunden C:\Program Files (x86)\AVG Secure Search
Ordner Gefunden C:\Program Files (x86)\Babylon
Ordner Gefunden C:\Program Files (x86)\Common Files\337
Ordner Gefunden C:\Program Files (x86)\Common Files\AVG Secure Search
Ordner Gefunden C:\Program Files (x86)\Conduit
Ordner Gefunden C:\ProgramData\AVG Secure Search
Ordner Gefunden C:\ProgramData\AVG Security Toolbar
Ordner Gefunden C:\ProgramData\Babylon
Ordner Gefunden C:\ProgramData\blekko toolbars
Ordner Gefunden C:\ProgramData\boost_interprocess
Ordner Gefunden C:\ProgramData\Browser Manager
Ordner Gefunden C:\ProgramData\eSafe
Ordner Gefunden C:\ProgramData\SpeedMaxPc
Ordner Gefunden C:\Users\uwchif1\AppData\Local\AVG Secure Search
Ordner Gefunden C:\Users\uwchif1\AppData\Local\Conduit
Ordner Gefunden C:\Users\uwchif1\AppData\Local\cre
Ordner Gefunden C:\Users\uwchif1\AppData\Local\iac
Ordner Gefunden C:\Users\uwchif1\AppData\Local\PackageAware
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\adawaretb
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\AVG Secure Search
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\AVG Security Toolbar
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\BabylonToolbar
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\Conduit
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\iac
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\mixidj
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\searchresultstb
Ordner Gefunden C:\Users\uwchif1\AppData\LocalLow\Softonic
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\DriverCure
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\DSite
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\SpeedMaxPc
Ordner Gefunden C:\Users\uwchif1\AppData\Roaming\Systweak
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden : HKCU\Software\58eda88b234ef40
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\AVG Security Toolbar
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gefunden : HKCU\Software\AVG Secure Search
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\Google\Chrome\Extensions\ommhmgednjnodcljhlljkaiidghdmikk
Schlüssel Gefunden : HKCU\Software\IM
Schlüssel Gefunden : HKCU\Software\ImInstaller
Schlüssel Gefunden : HKCU\Software\Microsoft\Babylon
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : HKCU\Software\systweak
Schlüssel Gefunden : HKCU\Software\YahooPartnerToolbar
Schlüssel Gefunden : [x64] HKCU\Software\AVG Secure Search
Schlüssel Gefunden : [x64] HKCU\Software\Conduit
Schlüssel Gefunden : [x64] HKCU\Software\IM
Schlüssel Gefunden : [x64] HKCU\Software\ImInstaller
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Babylon
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : [x64] HKCU\Software\Softonic
Schlüssel Gefunden : [x64] HKCU\Software\systweak
Schlüssel Gefunden : [x64] HKCU\Software\YahooPartnerToolbar
Schlüssel Gefunden : HKLM\Software\AVG Secure Search
Schlüssel Gefunden : HKLM\Software\AVG Security Toolbar
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\S
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\Software\DataMngr
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\ommhmgednjnodcljhlljkaiidghdmikk
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_audacity_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_nvu[1]_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Schlüssel Gefunden : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Schlüssel Gefunden : HKLM\Software\systweak
Schlüssel Gefunden : HKLM\Software\Web Assistant
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Tarma Installer
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Web Assistant
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Wert Gefunden : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Wert Gefunden : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]
Wert Gefunden : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Wert Gefunden : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Wert Gefunden : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{8E9E3331-D360-4f87-8803-52DE43566502}]
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16660
-\\ Google Chrome v29.0.1547.62
[ Datei : C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [13815 octets] - [03/09/2013 08:16:47]
AdwCleaner[R1].txt - [13876 octets] - [03/09/2013 08:38:38]
AdwCleaner[R2].txt - [13727 octets] - [03/09/2013 12:50:46]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [13788 octets] ##########
|
|
03.09.2013, 18:12
| #8 |
| /// the machine /// TB-Ausbilder | Hatte Qvo6 was nunESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.09.2013, 10:54
| #9 |
| | Hatte Qvo6 was nun Hallo Schrauber Eines muss mal gesagt werden. Ich traue eurer Arbeit hier mehr zu als allen Walware und Bereinigungsprogrammen zusammen. Besten Dank und Spende folgt. Hier die Logfilet: Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=6e572b7d6373ee4ca2ef736f0acc1a2a
# engine=15001
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-09-04 09:32:54
# local_time=2013-09-04 11:32:54 (+0100, Mitteleuropäische Sommerzeit)
# country="Switzerland"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1044 16777213 100 88 12945 65421158 0 0
# compatibility_mode=5893 16776574 100 82 0 129917024 0 0
# scanned=345571
# found=2
# cleaned=0
# scan_time=10451
sh=574B8C4DB4BCBB1A8653CFC1CE1783DC1E6F3F87 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\uwchif1\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\575e5e0d-596c0ec9"
sh=246026A44A615B4BB0145FF5FBE255DD1C3D91CC ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\uwchif1\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\71aae62a-20159bf0"
Code:
ATTFilter Results of screen317's Security Check version 0.99.72 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` AVG AntiVirus 2013 Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 JavaFX 2.1.1 Java 7 Update 21 Java version out of Date! Google Chrome 29.0.1547.57 Google Chrome 29.0.1547.62 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe AVG avgwdsvc.exe Malwarebytes' Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2013 03
Ran by uwchif1 (administrator) on DESKTOP-ULF on 04-09-2013 11:46:53
Running from C:\Users\uwchif1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T43V003C
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(CyberLink) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_11_8_800_94_ActiveX.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610360 2009-09-14] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-02-20] (Google Inc.)
HKCU\...\Run: [ConduitFloatingPlugin_hchjefioipobhcjbdaaigbpmjgccoeco] - C:\Program Files (x86)\Conduit\CT3282494\plugins\TBVerifier.dll [287008 1623-04-06] (Conduit Ltd.)
HKCU\...\Policies\system: [DisableLockWorkstation] 0
HKCU\...\Policies\system: [DisableChangePassword] 0
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2314416 2013-08-15] ()
HKLM-x32\...\Run: [Samsung PanelMgr] - C:\Windows\Samsung\PanelMgr\SSMMgr.exe [618496 2010-06-07] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440 2013-07-01] (AVG Technologies CZ, s.r.o.)
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
HKU\TEMP\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-29] (Hewlett-Packard)
Startup: C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Persbackup.lnk
ShortcutTarget: Persbackup.lnk -> C:\Program Files\Personal Backup 5\Persbackup.exe (Dr. J. Rathlev, D-24222 Schwentinental)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&CUI=UN35675051693059012&UM=2&ctid=CT3282494
URLSearchHook: (No Name) - {b106b661-3e1b-4015-af5c-195e909f35c6} - No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282494&CUI=UN35675051693059012&UM=2
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282494&CUI=UN35675051693059012&UM=2
BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll No File
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: No Name - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: NCH DE Toolbar - {b106b661-3e1b-4015-af5c-195e909f35c6} - C:\Program Files (x86)\NCH_DE\prxtbNCH_.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - NCH DE Toolbar - {b106b661-3e1b-4015-af5c-195e909f35c6} - C:\Program Files (x86)\NCH_DE\prxtbNCH_.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Toolbar: HKCU - No Name - {B106B661-3E1B-4015-AF5C-195E909F35C6} - No File
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\..\Interfaces\{A328258A-2FBA-4FFE-ABCD-2FDBB2A8A1DC}: [NameServer]192.168.1.1
Chrome:
=======
CHR HomePage: hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2"]},"sync_promo":{"startup_count":2},"variations_seed":"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","homepage":"hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2","homepage_is_newtabpage"
CHR Extension: (Google Docs) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Lightning Newtab) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\0.0.4.1_0
CHR Extension: () - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0
CHR Extension: () - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\15.3.0.11_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (NCH DE) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ommhmgednjnodcljhlljkaiidghdmikk\10.11.21.5_0
CHR Extension: (Gmail) - C:\Users\uwchif1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx
CHR HKLM-x32\...\Chrome\Extension: [hchjefioipobhcjbdaaigbpmjgccoeco] - C:\Users\uwchif1\AppData\Local\CRE\hchjefioipobhcjbdaaigbpmjgccoeco.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\15.3.0.11\avg.crx
CHR HKLM-x32\...\Chrome\Extension: [ommhmgednjnodcljhlljkaiidghdmikk] - C:\Users\uwchif1\AppData\Local\CRE\ommhmgednjnodcljhlljkaiidghdmikk.crx
==================== Services (Whitelisted) =================
S3 AVG Security Toolbar Service; C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [167264 2011-11-10] ()
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-03-25] (Nitro PDF Software)
R2 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [1643184 2013-08-15] (AVG Secure Search)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [x]
S3 SXDS10; "C:\Program Files (x86)\Common Files\soft Xpansion\sxds10.exe" \Service [x]
==================== Drivers (Whitelisted) ====================
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-07-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-08-15] (AVG Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 OxPCIeMf; C:\Windows\System32\DRIVERS\OxPCIeMf.sys [62000 2009-09-24] (OEM)
R3 OxPCIeSer; C:\Windows\System32\DRIVERS\OxPCIeSer.sys [102960 2009-09-24] (OEM)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S2 SSPORT; C:\Windows\SysWow64\Drivers\SSPORT.sys [11576 2009-09-10] (Samsung Electronics)
S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [90960 2013-03-15] (Windows (R) 2000 DDK provider)
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633680 2013-03-15] (Paragon)
S1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390352 2013-03-15] (Paragon)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-09-17] (CyberLink Corp.)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-09-17] (CyberLink Corp.)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 lmimirr; system32\DRIVERS\lmimirr.sys [x]
S2 SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-04 11:43 - 2013-09-04 11:43 - 00000971 _____ C:\Users\uwchif1\Desktop\checkup.txt
2013-09-04 11:41 - 2013-09-04 11:41 - 00014636 _____ C:\Users\uwchif1\Desktop\SecurityCheck.exe - Verknüpfung.lnk
2013-09-04 11:40 - 2013-09-04 11:40 - 00891115 _____ C:\Users\uwchif1\Downloads\SecurityCheck.exe
2013-09-04 08:36 - 2013-09-04 08:34 - 02347384 _____ (ESET) C:\Users\uwchif1\Desktop\esetsmartinstaller_enu.exe
2013-09-04 08:34 - 2013-09-04 08:34 - 02347384 _____ (ESET) C:\Users\uwchif1\Downloads\esetsmartinstaller_enu.exe
2013-09-03 17:55 - 2013-09-03 17:55 - 00000000 ____D E:\Eigene Dokumente\StreamTransport
2013-09-03 17:39 - 2013-09-03 17:39 - 00000009 _____ C:\END
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\CRE
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Conduit
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\NCH_DE
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\Conduit
2013-09-03 16:57 - 2013-09-03 16:57 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{A5FEED24-12DF-4044-8386-71A938E25A60}
2013-09-03 14:14 - 2013-09-03 14:14 - 00045909 _____ C:\Users\uwchif1\Downloads\FRST.txt
2013-09-03 14:07 - 2013-09-03 14:07 - 00000000 ____D C:\Windows\ERUNT
2013-09-03 08:16 - 2013-09-03 14:06 - 00000000 ____D C:\AdwCleaner
2013-09-03 08:15 - 2013-09-03 08:15 - 01028757 _____ (Thisisu) C:\Users\uwchif1\Downloads\JRT.exe
2013-09-03 08:15 - 2013-09-03 08:15 - 00013309 _____ C:\Users\uwchif1\Desktop\JRT.exe - Verknüpfung.lnk
2013-09-03 08:14 - 2013-09-03 08:14 - 00013298 _____ C:\Users\uwchif1\Desktop\adwcleaner.exe - Verknüpfung.lnk
2013-09-03 08:13 - 2013-09-03 08:13 - 01037134 _____ C:\Users\uwchif1\Downloads\adwcleaner.exe
2013-09-02 18:34 - 2013-09-04 07:53 - 00001954 _____ C:\Windows\PFRO.log
2013-09-02 16:25 - 2013-01-31 10:52 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\TuneUp Software
2013-09-02 16:25 - 2011-12-15 21:32 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Macromedia
2013-09-02 14:52 - 2013-09-02 14:52 - 00000000 ____D C:\FRST
2013-09-02 14:25 - 2013-09-02 14:25 - 00000000 _____ C:\Users\uwchif1\defogger_reenable
2013-09-02 11:29 - 2013-09-02 11:29 - 00000000 ____D E:\Eigene Dokumente\Fax
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\LavasoftStatistics
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\ProgramData\Ad-Aware Antivirus
2013-08-31 21:23 - 2013-09-03 03:01 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2013-08-31 21:23 - 2013-09-03 03:01 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Lavasoft
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-08-31 21:22 - 2013-09-03 03:01 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-08-31 21:22 - 2013-09-01 08:05 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Ad-Aware Antivirus
2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 _____ C:\autoexec.bat
2013-08-31 19:13 - 2013-08-31 19:13 - 00000000 ___DC C:\Users\uwchif1\AppData\Local\MigWiz
2013-08-31 17:54 - 2013-08-31 18:36 - 00000000 ____D C:\Program Files (x86)\Amazon
2013-08-29 21:48 - 2013-08-29 21:48 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5
2013-08-29 21:37 - 2013-08-29 21:37 - 00000000 ____D E:\Eigene Dokumente\eRightSoft
2013-08-29 21:36 - 2013-08-29 21:37 - 00000000 ____D C:\Program Files (x86)\eRightSoft
2013-08-29 21:35 - 2013-08-29 21:35 - 00000000 ____D C:\ProgramData\Registry Helper
2013-08-29 21:24 - 2013-08-29 21:24 - 00000000 ____D C:\Users\uwchif1\AppData\Local\avgchrome
2013-08-29 21:19 - 2013-09-03 03:01 - 00000000 ____D C:\Program Files (x86)\VideoConverter
2013-08-29 20:26 - 2013-08-29 20:26 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4zEI
2013-08-29 20:02 - 2013-08-29 20:02 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\AVS4YOU
2013-08-29 20:01 - 2013-08-29 21:22 - 00000000 ____D C:\Program Files (x86)\AVS4YOU
2013-08-29 20:01 - 2013-08-29 20:02 - 00000000 ____D C:\ProgramData\AVS4YOU
2013-08-29 19:03 - 2013-09-03 03:01 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\FreeVideoConverter
2013-08-29 18:29 - 2013-08-29 18:30 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\MOVAVI
2013-08-25 09:54 - 2013-08-25 09:54 - 00001027 _____ C:\Users\uwchif1\Desktop\AusstellungStG - Verknüpfung.lnk
2013-08-22 15:06 - 2013-08-22 15:06 - 00001662 _____ C:\Users\uwchif1\Desktop\Ausstellung-Restauration - Verknüpfung.lnk
2013-08-14 17:34 - 2013-08-14 17:35 - 68454702 _____ C:\Users\uwchif1\Downloads\Werkzeuge Manching.zip
2013-08-14 13:46 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 13:46 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 13:46 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-14 13:46 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 13:46 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-14 13:46 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 13:46 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 13:46 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-14 13:46 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 13:46 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 13:46 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-14 13:46 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 13:46 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 13:46 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 13:45 - 2013-08-14 13:46 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 08:02 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 08:02 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 08:02 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 08:02 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 08:02 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 08:02 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 08:02 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 08:02 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 08:01 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 08:01 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 08:00 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 08:00 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 08:00 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 08:00 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 08:00 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 08:00 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 08:00 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 08:00 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 08:00 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 08:00 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 08:00 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 08:00 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 08:00 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 08:00 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 08:00 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 08:00 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-08-14 08:00 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-08-14 08:00 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-08-14 08:00 - 2012-11-30 07:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-08-14 08:00 - 2012-11-30 07:41 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-08-14 08:00 - 2012-11-30 06:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 05:23 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-08-14 08:00 - 2012-11-30 04:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 04:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 04:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-14 08:00 - 2012-11-30 04:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-08-14 07:59 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 07:59 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
==================== One Month Modified Files and Folders =======
2013-09-04 11:45 - 2013-09-04 11:45 - 01950416 _____ (Farbar) C:\Users\uwchif1\Downloads\FRST64.exe
2013-09-04 11:43 - 2013-09-04 11:43 - 00000971 _____ C:\Users\uwchif1\Desktop\checkup.txt
2013-09-04 11:41 - 2013-09-04 11:41 - 00014636 _____ C:\Users\uwchif1\Desktop\SecurityCheck.exe - Verknüpfung.lnk
2013-09-04 11:40 - 2013-09-04 11:40 - 00891115 _____ C:\Users\uwchif1\Downloads\SecurityCheck.exe
2013-09-04 11:14 - 2013-02-21 20:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-04 11:06 - 2012-07-25 16:33 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-04 09:24 - 2010-12-28 16:01 - 00000000 ____D C:\ProgramData\MFAData
2013-09-04 09:06 - 2012-07-25 16:33 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-04 08:35 - 2009-12-31 06:05 - 00647128 _____ C:\Windows\system32\perfh007.dat
2013-09-04 08:35 - 2009-12-31 06:05 - 00127206 _____ C:\Windows\system32\perfc007.dat
2013-09-04 08:35 - 2009-07-14 07:13 - 01480600 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-04 08:34 - 2013-09-04 08:36 - 02347384 _____ (ESET) C:\Users\uwchif1\Desktop\esetsmartinstaller_enu.exe
2013-09-04 08:34 - 2013-09-04 08:34 - 02347384 _____ (ESET) C:\Users\uwchif1\Downloads\esetsmartinstaller_enu.exe
2013-09-04 08:00 - 2009-07-14 06:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-04 08:00 - 2009-07-14 06:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-04 07:58 - 2010-04-07 08:30 - 01770341 _____ C:\Windows\WindowsUpdate.log
2013-09-04 07:55 - 2012-06-13 09:00 - 00000000 ____D C:\Users\uwchif1\AppData\Local\AVG Secure Search
2013-09-04 07:53 - 2013-09-02 18:34 - 00001954 _____ C:\Windows\PFRO.log
2013-09-04 07:53 - 2013-08-02 22:24 - 00003295 _____ C:\Windows\setupact.log
2013-09-04 07:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-03 18:08 - 2012-08-30 21:16 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2013-09-03 18:08 - 2012-08-30 21:15 - 00000000 ____D C:\Program Files (x86)\NCH Software
2013-09-03 18:08 - 2012-08-30 21:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\NCH Software
2013-09-03 17:55 - 2013-09-03 17:55 - 00000000 ____D E:\Eigene Dokumente\StreamTransport
2013-09-03 17:46 - 2012-08-30 21:16 - 00000000 ____D C:\ProgramData\NCH Software
2013-09-03 17:39 - 2013-09-03 17:39 - 00000009 _____ C:\END
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\CRE
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Conduit
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\NCH_DE
2013-09-03 17:39 - 2013-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\Conduit
2013-09-03 16:57 - 2013-09-03 16:57 - 00000000 ____D C:\Users\uwchif1\AppData\Local\{A5FEED24-12DF-4044-8386-71A938E25A60}
2013-09-03 16:57 - 2013-02-08 17:36 - 00000000 ____D C:\ProgramData\POIbase
2013-09-03 16:05 - 2010-07-17 10:52 - 00000000 ____D E:\Eigene Dokumente\Daten-Ulf
2013-09-03 14:14 - 2013-09-03 14:14 - 00045909 _____ C:\Users\uwchif1\Downloads\FRST.txt
2013-09-03 14:12 - 2012-06-16 21:12 - 01499556 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-03 14:07 - 2013-09-03 14:07 - 00000000 ____D C:\Windows\ERUNT
2013-09-03 14:06 - 2013-09-03 08:16 - 00000000 ____D C:\AdwCleaner
2013-09-03 08:52 - 2012-06-08 13:49 - 00000000 ____D C:\Program Files (x86)\ MALWAREBYTES ANTI-MALWARE
2013-09-03 08:49 - 2012-12-13 11:43 - 00000000 ____D E:\Eigene Dokumente\AusstellungStG
2013-09-03 08:15 - 2013-09-03 08:15 - 01028757 _____ (Thisisu) C:\Users\uwchif1\Downloads\JRT.exe
2013-09-03 08:15 - 2013-09-03 08:15 - 00013309 _____ C:\Users\uwchif1\Desktop\JRT.exe - Verknüpfung.lnk
2013-09-03 08:14 - 2013-09-03 08:14 - 00013298 _____ C:\Users\uwchif1\Desktop\adwcleaner.exe - Verknüpfung.lnk
2013-09-03 08:13 - 2013-09-03 08:13 - 01037134 _____ C:\Users\uwchif1\Downloads\adwcleaner.exe
2013-09-03 03:06 - 2013-08-04 09:45 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\PersBackup5
2013-09-03 03:06 - 2011-12-26 17:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Audacity
2013-09-03 03:06 - 2010-12-28 15:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Malwarebytes
2013-09-03 03:06 - 2010-07-03 11:47 - 00000000 ____D C:\Program Files (x86)\Google
2013-09-03 03:06 - 2010-07-03 11:30 - 00000000 ___RD E:\Eigene Dokumente\UlfAntik
2013-09-03 03:06 - 2010-07-01 12:17 - 00000000 ___RD C:\Users\uwchif1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-03 03:06 - 2010-07-01 12:09 - 00000000 ____D C:\Users\uwchif1
2013-09-03 03:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-03 03:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-09-03 03:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-09-03 03:05 - 2010-07-22 10:24 - 00000000 ____D C:\ProgramData\Google
2013-09-03 03:05 - 2010-07-03 11:47 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Google
2013-09-03 03:04 - 2010-07-03 14:07 - 00000000 ____D E:\Eigene Dokumente\Schloss-Bilder-1#1
2013-09-03 03:01 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Ad-Aware Browsing Protection
2013-09-03 03:01 - 2013-08-31 21:23 - 00000000 ____D C:\Program Files (x86)\Ad-Aware Antivirus
2013-09-03 03:01 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Toolbar Cleaner
2013-09-03 03:01 - 2013-08-29 21:19 - 00000000 ____D C:\Program Files (x86)\VideoConverter
2013-09-03 03:01 - 2013-08-29 19:03 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\FreeVideoConverter
2013-09-03 02:43 - 2013-05-30 17:38 - 00000000 ____D C:\Windows\Minidump
2013-09-02 17:19 - 2011-12-23 14:56 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-09-02 17:19 - 2010-07-02 16:01 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-09-02 17:18 - 2010-07-02 16:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\HpUpdate
2013-09-02 17:18 - 2010-07-02 16:00 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\HP Support Assistant
2013-09-02 15:07 - 2011-12-14 19:01 - 00000099 _____ C:\Users\Public\LMDebug.log
2013-09-02 14:52 - 2013-09-02 14:52 - 00000000 ____D C:\FRST
2013-09-02 14:25 - 2013-09-02 14:25 - 00000000 _____ C:\Users\uwchif1\defogger_reenable
2013-09-02 11:29 - 2013-09-02 11:29 - 00000000 ____D E:\Eigene Dokumente\Fax
2013-09-01 08:05 - 2013-08-31 21:22 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Ad-Aware Antivirus
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\LavasoftStatistics
2013-08-31 21:26 - 2013-08-31 21:26 - 00000000 ____D C:\ProgramData\Ad-Aware Antivirus
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Lavasoft
2013-08-31 21:23 - 2013-08-31 21:23 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-08-31 21:22 - 2013-08-31 21:22 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2013-08-31 20:59 - 2011-05-25 15:37 - 00000000 ____D E:\Eigene Dokumente\WOMO
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-08-31 20:46 - 2013-08-31 20:46 - 00000000 _____ C:\autoexec.bat
2013-08-31 19:13 - 2013-08-31 19:13 - 00000000 ___DC C:\Users\uwchif1\AppData\Local\MigWiz
2013-08-31 18:36 - 2013-08-31 17:54 - 00000000 ____D C:\Program Files (x86)\Amazon
2013-08-31 18:15 - 2009-12-31 06:00 - 00000000 ____D C:\Windows\Panther
2013-08-31 13:25 - 2010-11-15 22:50 - 00000000 ____D C:\Users\uwchif1\AppData\Local\Deployment
2013-08-30 09:51 - 2010-07-03 14:08 - 00000000 ____D E:\Eigene Dokumente\Archiv-Schloss
2013-08-30 08:05 - 2009-07-14 04:34 - 71565312 _____ C:\Windows\system32\config\software.bak
2013-08-30 08:05 - 2009-07-14 04:34 - 17039360 _____ C:\Windows\system32\config\system.bak
2013-08-30 08:05 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\security.bak
2013-08-29 22:14 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\sam.bak
2013-08-29 22:11 - 2012-08-02 21:40 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-08-29 21:48 - 2013-08-29 21:48 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5
2013-08-29 21:37 - 2013-08-29 21:37 - 00000000 ____D E:\Eigene Dokumente\eRightSoft
2013-08-29 21:37 - 2013-08-29 21:36 - 00000000 ____D C:\Program Files (x86)\eRightSoft
2013-08-29 21:35 - 2013-08-29 21:35 - 00000000 ____D C:\ProgramData\Registry Helper
2013-08-29 21:24 - 2013-08-29 21:24 - 00000000 ____D C:\Users\uwchif1\AppData\Local\avgchrome
2013-08-29 21:22 - 2013-08-29 20:01 - 00000000 ____D C:\Program Files (x86)\AVS4YOU
2013-08-29 20:26 - 2013-08-29 20:26 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4zEI
2013-08-29 20:02 - 2013-08-29 20:02 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\AVS4YOU
2013-08-29 20:02 - 2013-08-29 20:01 - 00000000 ____D C:\ProgramData\AVS4YOU
2013-08-29 18:30 - 2013-08-29 18:29 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\MOVAVI
2013-08-27 21:58 - 2013-08-04 09:45 - 00000000 ____D E:\Eigene Dokumente\PersBackup
2013-08-25 12:08 - 2012-11-27 10:32 - 00000000 ____D E:\Eigene Dokumente\Buch-Altes-Eisen
2013-08-25 09:54 - 2013-08-25 09:54 - 00001027 _____ C:\Users\uwchif1\Desktop\AusstellungStG - Verknüpfung.lnk
2013-08-25 09:13 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-22 20:23 - 2010-07-12 15:09 - 00000000 ____D E:\Eigene Dokumente\Buch-Schlösser
2013-08-22 15:06 - 2013-08-22 15:06 - 00001662 _____ C:\Users\uwchif1\Desktop\Ausstellung-Restauration - Verknüpfung.lnk
2013-08-21 20:09 - 2010-07-03 14:13 - 00000000 ____D E:\Eigene Dokumente\Kamera
2013-08-16 21:55 - 2010-09-13 18:12 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Skype
2013-08-15 07:42 - 2013-07-25 15:37 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search
2013-08-15 07:42 - 2012-11-08 17:09 - 00045856 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-08-14 17:35 - 2013-08-14 17:34 - 68454702 _____ C:\Users\uwchif1\Downloads\Werkzeuge Manching.zip
2013-08-14 14:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-14 13:46 - 2013-08-14 13:45 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 13:45 - 2010-07-04 08:42 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-14 13:44 - 2009-07-14 04:34 - 00000534 _____ C:\Windows\win.ini
2013-08-10 15:10 - 2013-01-31 14:37 - 00000000 ____D C:\Users\uwchif1\AppData\Roaming\Nitro PDF
2013-08-07 11:47 - 2010-07-03 20:21 - 00000000 ____D C:\Depot
Files to move or delete:
====================
C:\Users\uwchif1\AppData\Local\Temp\mp3el2.exe
C:\Users\uwchif1\AppData\Local\Temp\switchsetup.exe
C:\Users\uwchif1\AppData\Local\Temp\ToolbarHelper.exe
C:\Users\uwchif1\AppData\Local\Temp\x264enc2.exe
C:\Users\uwchif1\AppData\Local\Temp\Temp1_pb-setup-5.4.8.2.zip\pb-setup-x64-5.4.0802.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\TeamViewer_Desktop.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\TeamViewer_Resource_de.dll
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\TeamViewer_Service.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_w32.dll
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_w32.exe
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_x64.dll
C:\Users\uwchif1\AppData\Local\Temp\TeamViewer\Version6\tv_x64.exe
C:\Users\uwchif1\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
C:\Users\uwchif1\AppData\Local\Temp\HP Support Framework\HPSF_Config1.dll
C:\Users\uwchif1\AppData\Local\Temp\CT3282494\plugins\TBVerifier.dll
C:\Users\uwchif1\AppData\Local\Temp\ct2801937\chLogic.exe
C:\Users\uwchif1\AppData\Local\Temp\ct2801937\ieLogic.exe
C:\Users\uwchif1\AppData\Local\Temp\ct2801937\statisticsStub.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-01 00:10
==================== End Of Log ============================
|
|
04.09.2013, 13:42
| #10 |
| /// the machine /// TB-Ausbilder | Hatte Qvo6 was nun Java updaten. Downloade Dir bitte TFC ( von Oldtimer ) und speichere die Datei auf dem Desktop. Schließe nun alle offenen Programme und trenne Dich von dem Internet. Doppelklick auf die TFC.exe und drücke auf Start. Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen. Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&CUI=UN35675051693059012&UM=2&ctid=CT3282494
URLSearchHook: (No Name) - {b106b661-3e1b-4015-af5c-195e909f35c6} - No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282494&CUI=UN35675051693059012&UM=2
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282494&CUI=UN35675051693059012&UM=2
CHR HomePage: hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2"]},"sync_promo":{"startup_count":2},"variations_seed":"Cig3ZmU4ZWQ5YjE2MjA1N2U2ZjBmMTNjYjI2ZWEwYTg2ODViZDAxMjFiEpoBCghBc3luY0RucxjEhoqRBTgAQgpTeXN0ZW1EbnNBSg4KClN5c3RlbURuc0EQGUoOCgpTeXN0ZW1EbnNCEBlKGAoTQXN5bmNEbnNOb0ZhbGxiYWNrQRCQA0oYChNBc3luY0Ruc05vRmFsbGJhY2tCEJADSg0KCUFzeW5jRG5zQRBLSg0KCUFzeW5jRG5zQhBLUggSBDI2LiooAxJuCghBc3luY0RucxjEoKiSBTgAQgpTeXN0ZW1EbnNBSg4KClN5c3RlbURuc0EQGUoOCgpTeXN0ZW1EbnNCEBlKDQoJQXN5bmNEbnNBEBlKDQoJQXN5bmNEbnNCEBlSEBIEMjkuKiAAIAEoACgBKAISagoIQXN5bmNEbnMYxIzDjgU4AEIKU3lzdGVtRG5zQUoOCgpTeXN0ZW1EbnNBEDJKDgoKU3lzdGVtRG5zQhAySg0KCUFzeW5jRG5zQRAySg0KCUFzeW5jRG5zQhAyUgwSBDI4LiogAigBKAISbAoIQXN5bmNEbnMYxIaKkQU4AEIKU3lzdGVtRG5zQUoOCgpTeXN0ZW1EbnNBEBlKDgoKU3lzdGVtRG5zQhAZSg4KCUFzeW5jRG5zQRDbA0oOCglBc3luY0Ruc0IQ2wNSDBIEMjYuKiADKAEoAhKPAQoaQXV0b2NvbXBsZXRlRHluYW1pY1RyaWFsXzAYgMPQjAU4AUITTGl2ZVNwZWxsaW5nQ29udHJvbEogChZMaXZlU3BlbGxpbmdFeHBlcmltZW50ELYHGIaEygFKHAoTTGl2ZVNwZWxsaW5nQ29udHJvbBAyGIeEygFSFBIEMjYuKiAAIAEgAiADKAAoASgCEtIBChpBdXRvY29tcGxldGVEeW5hbWljVHJpYWxfMRiAhNyPBTgBQg5EZWZhdWx0Q29udHJvbEodChREaXNhYmxlZFByb3ZpZGVyc18xNhAKGJeEygFKGwoSTmF2U3VnZ2VzdERlbW90aW9uEAoYmYTKAUoiChlOYXZTdWdnZXN0RGVtb3Rpb25Db250cm9sEAoYmoTKAUoYCg5EZWZhdWx0Q29udHJvbBDiBxibhMoBUhwSDDI2LjAuMTQxMC4xORoEMjguKiADKAAoASgCWI3Qj48CEqQBChpBdXRvY29tcGxldGVEeW5hbWljVHJpYWxfMhiAtLCQBTgBQg5EZWZhdWx0Q29udHJvbEodChRFbmFibGVDdXJzb3JQb3NpdGlvbhAKGJWEygFKJAobRW5hYmxlQ3Vyc29yUG9zaXRpb25Db250cm9sEAoYloTKAUoTCg5EZWZhdWx0Q29udHJvbBDsB1IUEgQyOC4qGgQyOC4qIAMoACgBKAIS4QEKGkF1dG9jb21wbGV0ZUR5bmFtaWNUcmlhbF80GID+opIFOAFCGURlZmF1bHRDb250cm9sX05vbkRvZ2Zvb2RKMwoqRW5hYmxlWmVyb1N1Z2dlc3RRdWVyaWVzQW5kVXJsc19Ob25Eb2dmb29kEA0YnITKAUo6CjFFbmFibGVaZXJvU3VnZ2VzdFF1ZXJpZXNBbmRVcmxzQ29udHJvbF9Ob25Eb2dmb29kEA0YnYTKAUodChlEZWZhdWx0Q29udHJvbF9Ob25Eb2dmb29kECZSEBIEMjkuKiAAIAEgAigAKAISVAoKQ0xEMVZzQ0xEMhjE3oWUBTgBQgdEZWZhdWx0SggKBENMRDEQAUoICgRDTEQyEAFKCwoHRGVmYXVsdBBiUhQaBDMxLiogACABIAIoACgBKAMoAhKSAQoYQ2FjaGVTZW5zaXRpdml0eUFuYWx5c2lzGMT10o4FOABCAk5vSgwKCENvbnRyb2xBEAVKDAoIQ29udHJvbEIQBUoICgQxMDBBEAVKCAoEMTAwQhAFSggKBDIwMEEQBUoICgQyMDBCEAVKCAoENDAwQRAFSggKBDQwMEIQBUoGCgJObxA8UgoSBDI4LiogAigEEn8KGENhY2hlU2Vuc2l0aXZpdHlBbmFseXNpcxjEjrePBTgAQgJOb0oMCghDb250cm9sQRABSgwKCENvbnRyb2xCEAFKCAoEMTAwQRABSggKBDEwMEIQAUoICgQyMDBBEAFKCAoEMjAwQhABSgcKAk5vEOIHUgoSBDI4LiogAygEEpoBChhDYWNoZVNlbnNpdGl2aXR5QW5hbHlzaXMYxMr9igU4AEICTm9KBgoCTm8QJEoMCghDb250cm9sQRAISgwKCENvbnRyb2xCEAhKCAoEMTAwQRAISggKBDEwMEIQCEoICgQyMDBBEAhKCAoEMjAwQhAISggKBDQwMEEQCEoICgQ0MDBCEAhSEhIEMjUuKiAAIAEgAigAKAEoAhKdAQoYQ2FjaGVTZW5zaXRpdml0eUFuYWx5c2lzGMSy04oFOABCAk5vSgcKAk5vEOAHSgwKCENvbnRyb2xBEAFKDAoIQ29udHJvbEIQAUoICgQxMDBBEAFKCAoEMTAwQhABSggKBDIwMEEQAUoICgQyMDBCEAFKCAoENDAwQRABSggKBDQwMEIQAVIUCICnvooFEgQyNS4qIAMoACgBKAISSAoPRDNEMTFFeHBlcmltZW50GICSiJYFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEABKCwoHRW5hYmxlZBBkUggSBDI5LiooABJUChtEYXRhQ29tcHJlc3Npb25Qcm94eVJvbGxvdXQYxIKXtAU4AUIHRW5hYmxlZEoMCghEaXNhYmxlZBAASgwKB0VuYWJsZWQQ6AdSCCAAIAEgAigEElEKG0RhdGFDb21wcmVzc2lvblByb3h5Um9sbG91dBjEgpe0BTgBQghEaXNhYmxlZEoNCghEaXNhYmxlZBCEB0oLCgdFbmFibGVkEGRSBCADKAQSVwobRGF0YUNvbXByZXNzaW9uUHJveHlSb2xsb3V0GMSCl7QFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEABKDAoHRW5hYmxlZBDoB1IKEgQyOS4qIAMoBRJUChtEYXRhQ29tcHJlc3Npb25Qcm94eVJvbGxvdXQYxIKXtAU4AUIHRW5hYmxlZEoMCghEaXNhYmxlZBAASgwKB0VuYWJsZWQQ6AdSCCAAIAEgAigFElcKG0RhdGFDb21wcmVzc2lvblByb3h5Um9sbG91dBjEgpe0BTgBQghEaXNhYmxlZEoNCghEaXNhYmxlZBDeB0oLCgdFbmFibGVkEApSChoEMjguKiADKAUSRAoRRG5zUHJvYmUtQXR0ZW1wdHMYgLWNlgU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EFpKBQoBMRAKUgoSBDI1LiogACABEkcKD0Ruc1Byb2JlLUVuYWJsZRiAtY2WBTgBQgdkaXNhYmxlSgsKB2Rpc2FibGUQAEoKCgZlbmFibGUQZFIKEgQyNS4qIAAgARJjCiNVTUEtRHluYW1pYy1CaW5hcnktVW5pZm9ybWl0eS1UcmlhbBiAnJKlBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQARiptskBShEKCGdyb3VwXzAxEAEYqrbJAVIGIAAgASACEl8KI1VNQS1EeW5hbWljLUJpbmFyeS1Vbmlmb3JtaXR5LVRyaWFsGICckqUFOAFCB2RlZmF1bHRKEAoHZGVmYXVsdBBjGKm2yQFKEQoIZ3JvdXBfMDEQARiqtskBUgIgAxJXChRGb3JjZUNvbXBvc2l0aW5nTW9kZRiAkoiWBTgBQgdkaXNhYmxlSgsKB2Rpc2FibGUQZEoLCgdlbmFibGVkEABKCgoGdGhyZWFkEABSCBIEMjQuKigCElcKFEZvcmNlQ29tcG9zaXRpbmdNb2RlGICSiJYFOAFCB2Rpc2FibGVKCwoHZGlzYWJsZRAASgsKB2VuYWJsZWQQAEoKCgZ0aHJlYWQQZFIIEgQyOC4qKAESWQoURm9yY2VDb21wb3NpdGluZ01vZGUYgJKIlgU4AUIHZGlzYWJsZUoLCgdkaXNhYmxlEGRKCwoHZW5hYmxlZBAASgoKBnRocmVhZBAAUgoaBDI3LiogAygBElcKFEZvcmNlQ29tcG9zaXRpbmdNb2RlGICSiJYFOAFCB2Rpc2FibGVKCwoHZGlzYWJsZRAASgsKB2VuYWJsZWQQAEoKCgZ0aHJlYWQQZFIIEgQyNC4qKAASWQoURm9yY2VDb21wb3NpdGluZ01vZGUYgJKIlgU4AUIHZGlzYWJsZUoLCgdkaXNhYmxlEABKCwoHZW5hYmxlZBAySgoKBnRocmVhZBAyUgoSBDI0LiogAygAErcBCglHb29nbGVOb3c4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EGRKCgoGRW5hYmxlEABKCwoHQ29udHJvbBAASjMKD0Rpc2FibGVkVmlhRmxhZxAAKh5kaXNhYmxlLWdvb2dsZS1ub3ctaW50ZWdyYXRpb25KMQoORW5hYmxlZFZpYUZsYWcQACodZW5hYmxlLWdvb2dsZS1ub3ctaW50ZWdyYXRpb25SESAAIAEoACgBKAMyBWVuLVVTEosBCg1Ib3N0Q2FjaGVTaXplGMTNiIcFOABCB0RlZmF1bHRKCwoHRGVmYXVsdBAASggKBDEwMEEQCkoICgQxMDBCEApKCAoEMzAwQRAKSggKBDMwMEIQCkoJCgUxMDAwQRAKSgkKBTEwMDBCEApKCQoFMzAwMEEQCkoJCgUzMDAwQhAKUggSBDI1LiooAxKTAQoNSG9zdENhY2hlU2l6ZRjErPeHBTgAQgdEZWZhdWx0SgsKB0RlZmF1bHQQAEoICgQxMDBBEApKCAoEMTAwQhAKSggKBDMwMEEQCkoICgQzMDBCEApKCQoFMTAwMEEQCkoJCgUxMDAwQhAKSgkKBTMwMDBBEApKCQoFMzAwMEIQClIQEgQyNS4qIAAgASgAKAEoAhJECg1JbmZpbml0ZUNhY2hlGMS0jZYFOAFCAk5vSgcKAk5vENQHSgcKA1llcxAKSgsKB0NvbnRyb2wQClIIIAIoACgBKAISRgoNSW5maW5pdGVDYWNoZRjEtI2WBTgBQgJOb0oHCgJObxCEB0oHCgNZZXMQMkoLCgdDb250cm9sEDJSCiAAIAEoACgBKAISRAoNSW5maW5pdGVDYWNoZRjEtI2WBTgBQgJOb0oHCgJObxDmB0oHCgNZZXMQAUoLCgdDb250cm9sEAFSCCADKAAoASgCEt8ECgxJbnN0YW50RHVtbXkYgITcjwU4AUIMRGVmYXVsdEdyb3VwSi8KIUR1bW15R3JvdXAxIGNoYW5uZWw6c3RhYmxlIG1vZHM6MRABGMeFygEgx4XKAUovCiFEdW1teUdyb3VwMiBjaGFubmVsOnN0YWJsZSBtb2RzOjEQARjIhcoBIMiFygFKLwohRHVtbXlHcm91cDMgY2hhbm5lbDpzdGFibGUgbW9kczoxEAEYyYXKASDJhcoBSi8KIUR1bW15R3JvdXA0IGNoYW5uZWw6c3RhYmxlIG1vZHM6MRABGMqFygEgyoXKAUovCiFEdW1teUdyb3VwNSBjaGFubmVsOnN0YWJsZSBtb2RzOjkQCRjLhcoBIMuFygFKLwohRHVtbXlHcm91cDYgY2hhbm5lbDpzdGFibGUgbW9kczo5EAkYzIXKASDMhcoBSi8KIUR1bW15R3JvdXA3IGNoYW5uZWw6c3RhYmxlIG1vZHM6ORAJGM2FygEgzYXKAUovCiFEdW1teUdyb3VwOCBjaGFubmVsOnN0YWJsZSBtb2RzOjkQCRjOhcoBIM6FygFKMQojRHVtbXlHcm91cDkgY2hhbm5lbDpzdGFibGUgbW9kczoxMDAQZBjPhcoBIM+FygFKMgokRHVtbXlHcm91cDEwIGNoYW5uZWw6c3RhYmxlIG1vZHM6MTAwEGQY0IXKASDQhcoBSioKG0R1bW15UGFkZGluZyBjaGFubmVsOnN0YWJsZRD4BRjRhcoBINGFygFKEAoMRGVmYXVsdEdyb3VwEABSDBIEMjcuKiADKAAoARKqAgoPSW5zdGFudEV4dGVuZGVkGIDUh48FOAFCDERlZmF1bHRHcm91cEo+Ci9Hcm91cDEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGNoYW5uZWw6YmV0YRD6ARi9hcoBIL2FygFKRwo4R3JvdXAyIGVzcHY6MjA1IHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOmJldGEQ+gEYvoXKASC+hcoBSiQKFUNvbnRyb2wxIGNoYW5uZWw6YmV0YRD6ARi/hcoBIL+FygFKJAoVQ29udHJvbDIgY2hhbm5lbDpiZXRhEPoBGMCFygEgwIXKAUoQCgxEZWZhdWx0R3JvdXAQAFIUEgQyOC4qGgQyOC4qIAIoACgBKANY2o+ihwkSpgIKD0luc3RhbnRFeHRlbmRlZBiA6r2OBTgBQgxEZWZhdWx0R3JvdXBKQAoxR3JvdXAxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOmNhbmFyeRD6ARjng8oBIOeDygFKSQo6R3JvdXAyIGVzcHY6MjA1IHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOmNhbmFyeRD6ARiEhMoBIISEygFKJgoXQ29udHJvbDEgY2hhbm5lbDpjYW5hcnkQ+gEY6IPKASDog8oBSiYKF0NvbnRyb2wyIGNoYW5uZWw6Y2FuYXJ5EPoBGIKEygEggoTKAUoQCgxEZWZhdWx0R3JvdXAQAFIOEgQyOC4qIAAoACgBKAMSsQIKD0luc3RhbnRFeHRlbmRlZBiAhNyPBTgBQgxEZWZhdWx0R3JvdXBKJQoXQ29udHJvbDEgbTI5ZGV2MjpuYXRpdmUQARjWhcoBINaFygFKJQoXQ29udHJvbDIgbTI5ZGV2MjpuYXRpdmUQARjXhcoBINeFygFKPwoxR3JvdXAxIG0yOWRldjI6bmF0aXZlIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGNiFygEg2IXKAUpICjpHcm91cDIgbTI5ZGV2MjpuYXRpdmUgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA1EAEY2YXKASDZhcoBShAKDERlZmF1bHRHcm91cBAAUhcSCTI5LjAuMTUzNRoEMjkuKiABKAAoA1jpib/HChKQCQoPSW5zdGFudEV4dGVuZGVkGID+opIFOAFCDERlZmF1bHRHcm91cEolChdDb250cm9sMSB2OmEgbTI5YmV0YTpyMRABGI6GygEgjobKAUolChdDb250cm9sMSB2OmIgbTI5YmV0YTpyMRABGI+GygEgj4bKAUolChdDb250cm9sMSB2OmMgbTI5YmV0YTpyMRABGJCGygEgkIbKAUolChdDb250cm9sMSB2OmQgbTI5YmV0YTpyMRABGJGGygEgkYbKAUolChdDb250cm9sMSB2OmUgbTI5YmV0YTpyMRABGJKGygEgkobKAUolChdDb250cm9sMiB2OmEgbTI5YmV0YTpyMRABGJOGygEgk4bKAUolChdDb250cm9sMiB2OmIgbTI5YmV0YTpyMRABGJSGygEglIbKAUolChdDb250cm9sMiB2OmMgbTI5YmV0YTpyMRABGJWGygEglYbKAUolChdDb250cm9sMiB2OmQgbTI5YmV0YTpyMRABGJaGygEglobKAUolChdDb250cm9sMiB2OmUgbTI5YmV0YTpyMRABGJeGygEgl4bKAUo/CjFHcm91cDEgdjphIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYoobKASCihsoBSj8KMUdyb3VwMSB2OmIgbTI5YmV0YTpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARijhsoBIKOGygFKPwoxR3JvdXAxIHY6YyBtMjliZXRhOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGKSGygEgpIbKAUo/CjFHcm91cDEgdjpkIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYpYbKASClhsoBSj8KMUdyb3VwMSB2OmUgbTI5YmV0YTpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARimhsoBIKaGygFKSAo6R3JvdXAyIHY6YSBtMjliZXRhOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGKeGygEgp4bKAUpICjpHcm91cDIgdjpiIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA4EAEYqIbKASCohsoBSkgKOkdyb3VwMiB2OmMgbTI5YmV0YTpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARiphsoBIKmGygFKSAo6R3JvdXAyIHY6ZCBtMjliZXRhOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGKqGygEgqobKAUpICjpHcm91cDIgdjplIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA4EAEYq4bKASCrhsoBShAKDERlZmF1bHRHcm91cBAAUhISBDI5LioaBDI5LiogAigAKANY5K+4wAESygkKD0luc3RhbnRFeHRlbmRlZBiA/qKSBTgBQgxEZWZhdWx0R3JvdXBKKAoaQ29udHJvbDEgdjphIG0yOWJldGFtYWM6cjEQARishsoBIKyGygFKKAoaQ29udHJvbDEgdjpiIG0yOWJldGFtYWM6cjEQARithsoBIK2GygFKKAoaQ29udHJvbDEgdjpjIG0yOWJldGFtYWM6cjEQARiuhsoBIK6GygFKKAoaQ29udHJvbDEgdjpkIG0yOWJldGFtYWM6cjEQARivhsoBIK+GygFKKAoaQ29udHJvbDEgdjplIG0yOWJldGFtYWM6cjEQARiwhsoBILCGygFKKAoaQ29udHJvbDIgdjphIG0yOWJldGFtYWM6cjEQARixhsoBILGGygFKKAoaQ29udHJvbDIgdjpiIG0yOWJldGFtYWM6cjEQARiyhsoBILKGygFKKAoaQ29udHJvbDIgdjpjIG0yOWJldGFtYWM6cjEQARizhsoBILOGygFKKAoaQ29udHJvbDIgdjpkIG0yOWJldGFtYWM6cjEQARi0hsoBILSGygFKKAoaQ29udHJvbDIgdjplIG0yOWJldGFtYWM6cjEQARi1hsoBILWGygFKQgo0R3JvdXAxIHY6YSBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGLaGygEgtobKAUpCCjRHcm91cDEgdjpiIG0yOWJldGFtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYt4bKASC3hsoBSkIKNEdyb3VwMSB2OmMgbTI5YmV0YW1hYzpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARi4hsoBILiGygFKQgo0R3JvdXAxIHY6ZCBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGLmGygEguYbKAUpCCjRHcm91cDEgdjplIG0yOWJldGFtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYuobKASC6hsoBSksKPUdyb3VwMiB2OmEgbTI5YmV0YW1hYzpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARi7hsoBILuGygFKSwo9R3JvdXAyIHY6YiBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGLyGygEgvIbKAUpLCj1Hcm91cDIgdjpjIG0yOWJldGFtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA4EAEYvYbKASC9hsoBSksKPUdyb3VwMiB2OmQgbTI5YmV0YW1hYzpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARi+hsoBIL6GygFKSwo9R3JvdXAyIHY6ZSBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGL+GygEgv4bKAUoQCgxEZWZhdWx0R3JvdXAQAFIQEgQyOS4qGgQyOS4qIAIoAVjkr7jAARK5BgoPSW5zdGFudEV4dGVuZGVkGIDvgpYFOAFCDERlZmF1bHRHcm91cEorCh1Db250cm9sMCBwY3Q6NTBhIG0yOXN0YWJsZTpyMRAyGPGGygEg8YbKAUpNCj9Hcm91cDEgcGN0OjFhIG0yOXN0YWJsZTpyMiB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARiVh8oBIJWHygFKKwodQ29udHJvbDIgcGN0OjFiIG0yOXN0YWJsZTpwcDIQARjzhsoBIPOGygFKKwodQ29udHJvbDMgcGN0OjFjIG0yOXN0YWJsZTpwcDIQARj0hsoBIPSGygFKRAo2R3JvdXA0IHBjdDoxZCBtMjlzdGFibGU6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEY9YbKASD1hsoBSisKHUNvbnRyb2w1IHBjdDoxZSBtMjlzdGFibGU6cHAyEAEY9obKASD2hsoBSisKHUNvbnRyb2w2IHBjdDoxZiBtMjlzdGFibGU6cHAyEAEY94bKASD3hsoBSisKHUNvbnRyb2w3IHBjdDoxZyBtMjlzdGFibGU6cHAyEAEY+IbKASD4hsoBSisKHUNvbnRyb2w4IHBjdDoxaCBtMjlzdGFibGU6cHAyEAEY+YbKASD5hsoBSisKHUNvbnRyb2w5IHBjdDoxaSBtMjlzdGFibGU6cHAyEAEY+obKASD6hsoBSiwKHkNvbnRyb2wxMCBwY3Q6MWogbTI5c3RhYmxlOnBwMhABGPuGygEg+4bKAUosCh5Db250cm9sMTEgcGN0OjEwYSBtMjlzdGFibGU6cjIQChiUh8oBIJSHygFKLQofQ29udHJvbDEyIHBjdDoxMGIgbTI5c3RhYmxlOnBwMhAKGP2GygEg/YbKAUotCh9Db250cm9sMTMgcGN0OjEwYyBtMjlzdGFibGU6cHAyEAoY/obKASD+hsoBSi0KH0NvbnRyb2wxNCBwY3Q6MTBkIG0yOXN0YWJsZTpwcDIQChj/hsoBIP+GygFKEAoMRGVmYXVsdEdyb3VwEABSEhIEMjkuKhoEMjkuKiADKAAoA1i+3/esBRLkBgoPSW5zdGFudEV4dGVuZGVkGIDvgpYFOAFCDERlZmF1bHRHcm91cEouCiBDb250cm9sMCBwY3Q6NTBhIG0yOXN0YWJsZW1hYzpyMRAyGIWHygEghYfKAUpQCkJHcm91cDEgcGN0OjFhIG0yOXN0YWJsZW1hYzpyMiB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARiXh8oBIJeHygFKLgogQ29udHJvbDIgcGN0OjFiIG0yOXN0YWJsZW1hYzpwcDIQARiHh8oBIIeHygFKLgogQ29udHJvbDMgcGN0OjFjIG0yOXN0YWJsZW1hYzpwcDIQARiIh8oBIIiHygFKRwo5R3JvdXA0IHBjdDoxZCBtMjlzdGFibGVtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYiYfKASCJh8oBSi4KIENvbnRyb2w1IHBjdDoxZSBtMjlzdGFibGVtYWM6cHAyEAEYiofKASCKh8oBSi4KIENvbnRyb2w2IHBjdDoxZiBtMjlzdGFibGVtYWM6cHAyEAEYi4fKASCLh8oBSi4KIENvbnRyb2w3IHBjdDoxZyBtMjlzdGFibGVtYWM6cHAyEAEYjIfKASCMh8oBSi4KIENvbnRyb2w4IHBjdDoxaCBtMjlzdGFibGVtYWM6cHAyEAEYjYfKASCNh8oBSi4KIENvbnRyb2w5IHBjdDoxaSBtMjlzdGFibGVtYWM6cHAyEAEYjofKASCOh8oBSi8KIUNvbnRyb2wxMCBwY3Q6MWogbTI5c3RhYmxlbWFjOnBwMhABGI+HygEgj4fKAUovCiFDb250cm9sMTEgcGN0OjEwYSBtMjlzdGFibGVtYWM6cjIQChiWh8oBIJaHygFKMAoiQ29udHJvbDEyIHBjdDoxMGIgbTI5c3RhYmxlbWFjOnBwMhAKGJGHygEgkYfKAUowCiJDb250cm9sMTMgcGN0OjEwYyBtMjlzdGFibGVtYWM6cHAyEAoYkofKASCSh8oBSjAKIkNvbnRyb2wxNCBwY3Q6MTBkIG0yOXN0YWJsZW1hYzpwcDIQChiTh8oBIJOHygFKEAoMRGVmYXVsdEdyb3VwEABSEBIEMjkuKhoEMjkuKiADKAFYvt/3rAUSmAIKD0luc3RhbnRFeHRlbmRlZBiAi/KSBTgBQgxEZWZhdWx0R3JvdXBKIAoSQ29udHJvbDEgbTMwZGV2OnIxEAEYwIbKASDAhsoBSiAKEkNvbnRyb2wyIG0zMGRldjpyMRABGO2GygEg7YbKAUo6CixHcm91cDEgbTMwZGV2OnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGMKGygEgwobKAUpDCjVHcm91cDIgbTMwZGV2OnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGMOGygEgw4bKAUoQCgxEZWZhdWx0R3JvdXAQAFISEgQzMC4qGgQzMC4qIAEoACgDWLvLxbAOEpYCCg9JbnN0YW50RXh0ZW5kZWQYgIvykgU4AUIMRGVmYXVsdEdyb3VwSiAKEkNvbnRyb2wxIG0zMGRldjpyMRABGMSGygEgxIbKAUogChJDb250cm9sMiBtMzBkZXY6cjEQARjshsoBIOyGygFKOgosR3JvdXAxIG0zMGRldjpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARjGhsoBIMaGygFKQwo1R3JvdXAyIG0zMGRldjpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARjHhsoBIMeGygFKEAoMRGVmYXVsdEdyb3VwEABSEBIEMzAuKhoEMzAuKiABKAFYu8vFsA4SgwMKD0luc3RhbnRFeHRlbmRlZDgBQgxEZWZhdWx0R3JvdXBKJgoYQ29udHJvbEdyb3VwMSBtMzFkZXY6cHAxEAEYmIfKASCYh8oBSnQKZkdyb3VwMSBtMzFkZXY6cHAxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOSBoaWRlX3ZlcmJhdGltOjEgcHJlZmV0Y2hfcmVzdWx0c19zcnA6MSBESVNBQkxFRBABGJmHygEgmYfKAUpUCkZHcm91cDIgbTMxZGV2OnBwMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgaGlkZV92ZXJiYXRpbToxIERJU0FCTEVEEAEYmofKASCah8oBSkQKNkdyb3VwMyBtMzFkZXY6cHAxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBESVNBQkxFRBABGJuHygEgm4fKAUoQCgxEZWZhdWx0R3JvdXAQAFIUEgQzMS4qGgQzMS4qIAEoACgBKAMSkQMKD0luc3RhbnRFeHRlbmRlZBiAhNyPBTgBQgxEZWZhdWx0R3JvdXBKUQpDR3JvdXAxIGVzcHY6MjA1IHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOnN0YWJsZSBESVNBQkxFRBABGMGFygEgwYXKAUpRCkNHcm91cDIgZXNwdjoyMDUgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGNoYW5uZWw6c3RhYmxlIERJU0FCTEVEEAkYxYXKASDFhcoBSiYKF1BhZGRpbmcxIGNoYW5uZWw6c3RhYmxlEOoDGMKFygEgwoXKAUolChdDb250cm9sMSBjaGFubmVsOnN0YWJsZRABGMOFygEgw4XKAUolChdDb250cm9sMiBjaGFubmVsOnN0YWJsZRAJGMaFygEgxoXKAUomChdQYWRkaW5nMiBjaGFubmVsOnN0YWJsZRDqAxjEhcoBIMSFygFKEAoMRGVmYXVsdEdyb3VwEABSEhIEMjcuKhoEMjguKiADKAAoARKOAgoWSW50ZXJzdGl0aWFsTWFsd2FyZTMxMBjA6cOTBTgBQgdEZWZhdWx0ShcKE2NvbmQxTWFsd2FyZUNvbnRyb2wQA0oXChNjb25kMk1hbHdhcmVOb0JyYW5kEANKFwoTY29uZDVNYWx3YXJlT25lU3RlcBADShcKE2NvbmQ3TWFsd2FyZUZlYXJNc2cQA0oZChVjb25kOU1hbHdhcmVDb2xsYWJNc2cQA0oZChVjb25kMTFNYWx3YXJlUXVlc3Rpb24QA0oXChNjb25kMTNNYWx3YXJlR29CYWNrEANKDAoHRGVmYXVsdBCzAVIiCMDZo4wFEgQyOS4qKAAoASgCKAMyBWVuLVVTMgVlbi1HQhKXAgoXSW50ZXJzdGl0aWFsUGhpc2hpbmc1NjQYwOnDkwU4AUIHRGVmYXVsdEoYChRjb25kM1BoaXNoaW5nQ29udHJvbBADShgKFGNvbmQ0UGhpc2hpbmdOb0JyYW5kEANKGAoUY29uZDZQaGlzaGluZ09uZVN0ZXAQA0oYChRjb25kOFBoaXNoaW5nRmVhck1zZxADShsKF2NvbmQxMFBoaXNoaW5nQ29sbGFiTXNnEANKGgoWY29uZDEyUGhpc2hpbmdRdWVzdGlvbhADShgKFGNvbmQxNFBoaXNoaW5nR29CYWNrEANKDAoHRGVmYXVsdBCzAVIiCMDZo4wFEgQyOS4qKAAoASgCKAMyBWVuLVVTMgVlbi1HQhKkAgoSSW50ZXJzdGl0aWFsU1NMNTE3GMDpw5MFOAFCB0RlZmF1bHRKGQoVQ29uZGl0aW9uMTVTU0xDb250cm9sEANKGQoVQ29uZGl0aW9uMTZTU0xGaXJlZm94EANKHgoaQ29uZGl0aW9uMTdTU0xGYW5jeUZpcmVmb3gQA0oaChZDb25kaXRpb24xOFNTTE5vSW1hZ2VzEANKGwoXQ29uZGl0aW9uMTlTU0xQb2xpY2VtYW4QA0obChdDb25kaXRpb24yMFNTTFN0b3BsaWdodBADShgKFENvbmRpdGlvbjIxU1NMQmFkZ3V5EANKDAoHRGVmYXVsdBCzAVIpCMDZo4wFEgsyOS4wLjE1NDMuKigAKAEoAigDMgVlbi1VUzIFZW4tR0ISWQoZTGF1bmNoZXJVc2VXZWJzdG9yZVNlYXJjaBjEm5KlBTgBQgdEaXNhYmxlSgoKBkVuYWJsZRAKSgsKB0Rpc2FibGUQWlISEgwyOS4wLjE1NDcuMzIoACgDElEKEU1hbmFnZWRNb2RlTGF1bmNoGID46ZQFOAFCCEluYWN0aXZlSgoKBkFjdGl2ZRBkSgwKCEluYWN0aXZlEABSEBIEMzAuKiAAIAEoACgBKAISTQoRTWFuYWdlZE1vZGVMYXVuY2gYgPjplAU4AUIISW5hY3RpdmVKCgoGQWN0aXZlEGRKDAoISW5hY3RpdmUQAFIMEgQzMC4qIAAgASgDEpICChhNb3N0VmlzaXRlZFRpbGVQbGFjZW1lbnQYgP6ikgU4AUIHRGVmYXVsdEoWChJPbmVFaWdodF9BX0ZsaXBwZWQQA0oOCgpPbmVFaWdodF9CEANKFgoST25lRWlnaHRfQ19GbGlwcGVkEANKDgoKT25lRWlnaHRfRBADShUKEU9uZUZvdXJfQV9GbGlwcGVkEANKDQoJT25lRm91cl9CEANKFQoRT25lRm91cl9DX0ZsaXBwZWQQA0oNCglPbmVGb3VyX0QQA0oLCgdDb250cm9sEANKFAoQRG9udFNob3dPcGVuVGFicxADSgsKB0RlZmF1bHQQRlIZEgsyOC4wLjE0OTYuMCABIAAoACgBKAIoAxKSAQoUTW91c2VFdmVudFByZWNvbm5lY3QYxLSNlgU4AEIIRGlzYWJsZWRKDQoJTW91c2VEb3duEApKDQoJTW91c2VPdmVyEABKEgoOVGFwVW5jb25maXJtZWQQAEoLCgdUYXBEb3duEABKCwoHQ29udHJvbBAKSgwKCERpc2FibGVkEFBSDhIEMjkuKiACKAAoASgCEpgBChRNb3VzZUV2ZW50UHJlY29ubmVjdBjEtI2WBTgAQghEaXNhYmxlZEoNCglNb3VzZURvd24QCkoNCglNb3VzZU92ZXIQAEoSCg5UYXBVbmNvbmZpcm1lZBAASgsKB1RhcERvd24QAEoLCgdDb250cm9sEApKDAoIRGlzYWJsZWQQUFIUEgQyOS4qIAAgASgAKAEoAigDKAQSXQoMTmV3TWVudVN0eWxlGIDQn40FOAFCB0RlZmF1bHRKCwoHRGVmYXVsdBAASg0KCE5ld1N0eWxlEOYHSgwKCE9sZFN0eWxlEAJSEhIEMjYuKhoEMjcuKiADKAAoAxJ+CgxOZXdNZW51U3R5bGUYgP6ikgU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EABKDAoIQ29tcGFjdDEQAEoMCghDb21wYWN0MhBkShIKDkhpZ2hlckNvbnRyYXN0EABKEAoMQ29udHJvbEdyb3VwEABSDhIEMjguKiABIAAoACgDEn4KDE5ld01lbnVTdHlsZRiA/qKSBTgBQgdEZWZhdWx0SgsKB0RlZmF1bHQQAEoMCghDb21wYWN0MRAASgwKCENvbXBhY3QyEGRKEgoOSGlnaGVyQ29udHJhc3QQAEoQCgxDb250cm9sR3JvdXAQAFIOEgQyOC4qIAMgAigAKAMSVwoMTmV3VGFiQnV0dG9uGIC1jZYFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBBiSgsKB0NvbnRyb2wQAUoICgRQbHVzEAFSEhIMMjEuMC4xMTgwLjE1IAMoABLcAQoaT21uaWJveEJ1bmRsZWRFeHBlcmltZW50VjEYxM6rlwU4AUIIU3RhbmRhcmRKSwoHUmVvcmRlchAKMj4KH1Jlb3JkZXJGb3JMZWdhbERlZmF1bHRNYXRjaDoqOioSG1Jlb3JkZXJGb3JMZWdhbERlZmF1bHRNYXRjaEo2ChRTZWFyY2hIaXN0b3J5RGlzYWJsZRAAMhwKEVNlYXJjaEhpc3Rvcnk6KjoqEgdEaXNhYmxlSgwKCFN0YW5kYXJkEFpSGQjEgK6OBRILMzAuMC4xNTk5LjAgACABIAISzQEKHk9tbmlib3hSZXBsYWNlSFVQQW5kTmV3U2NvcmluZxjAhbOQBTgBQghTdGFuZGFyZEoMCghTdGFuZGFyZBA8Sg0KCVN0YW5kYXJkMhAKSh0KGUhRUC1wb3N0cGVyaW9kLVJlcGxhY2VIVVAQCkoOCgpOZXdTY29yaW5nEApKNAowSFFQLXBvc3RwZXJpb2QtUmVwbGFjZUhVUF9OZXctcG9zdHBlcmlvZC1TY29yaW5nEApSFwjAn4uHBRILMjguMC4xNDk5LiogASACEmQKFE9tbmlib3hTZWFyY2hIaXN0b3J5GMSQq5AFOAFCCFN0YW5kYXJkShMKD1ByZXZlbnRJbmxpbmluZxAKSgsKB0Rpc2FibGUQCkoMCghTdGFuZGFyZBBQUgoSBDMwLiogACABEm8KF09tbmlib3hTaG9ydGN1dHNTY29yaW5nGMTKiaAFOAFCCFN0YW5kYXJkSgwKCFN0YW5kYXJkEFpKFQoRTWF4UmVsZXZhbmNlXzEzOTkQClIdCMSAro4FEgsyOS4wLjE1NDcuMBoEMjkuKiABIAISZQoQT21uaWJveFN0b3BUaW1lchjA0ZmTBTgBQghTdGFuZGFyZEoSCghTdGFuZGFyZBD0Axi3hcoBShYKDFVzZVN0b3BUaW1lchD0Axi4hcoBUhMIwMzUiwUSCzI4LjAuMTQ4OC4wEmcKFE91dGRhdGVkSW5zdGFsbENoZWNrGMS0jZYFOAFCB0RlZmF1bHRKGgoWMTJXZWVrc091dGRhdGVkSW5zdGFsbBABSgsKB0RlZmF1bHQQAFIVEgsyNy4wLjE0NDcuMBoEMzAuKigAElYKF1ByZXJlbmRlckxvY2FsUHJlZGljdG9yGMS0jZYFOABCCERpc2FibGVkSgsKB0VuYWJsZWQQZEoMCghEaXNhYmxlZBAAUg4SBDI5LiogAigAKAEoAhJsChdQcmVyZW5kZXJMb2NhbFByZWRpY3RvchjEh6GMBTgAQghEaXNhYmxlZEoNCghEaXNhYmxlZBDUB0oLCgdFbmFibGVkEApKCwoHQ29udHJvbBAKUhYSBDI1LioaBDI4LiogAyACKAAoASgCEmYKF1ByZXJlbmRlckxvY2FsUHJlZGljdG9yGMS0jZYFOABCCERpc2FibGVkSgwKCERpc2FibGVkEGRKDAoHRW5hYmxlZBCgBkoLCgdDb250cm9sEGRSEBIEMjUuKiAAIAEoACgBKAISWQouUHJlcmVuZGVyTG9jYWxQcmVkaWN0b3JNYXhDb25jdXJyZW50UHJlcmVuZGVycxjEtI2WBTgAQgExSgUKATMQZEoFCgExEABSDhIEMjkuKiACKAAoASgCEnAKLlByZXJlbmRlckxvY2FsUHJlZGljdG9yTWF4Q29uY3VycmVudFByZXJlbmRlcnMYxLSNlgU4AUIBMUoFCgExEBRKBQoBMhAUSgUKATMQFEoFCgE0EBRKBQoBNRAUUhASBDI5LiogACABKAAoASgCEmMKJVByZXJlbmRlckxvY2FsUHJlZGljdG9yUHJlcmVuZGVyTGFuY2gYxLSNlgU4AEIHRW5hYmxlZEoMCghEaXNhYmxlZBAASgsKB0VuYWJsZWQQZFIOEgQyOS4qIAIoACgBKAISYwolUHJlcmVuZGVyTG9jYWxQcmVkaWN0b3JQcmVyZW5kZXJMYW5jaBjEtI2WBTgBQgdFbmFibGVkSgwKCERpc2FibGVkEGRKCwoHRW5hYmxlZBAAUg4SBDI5LiogAygAKAEoAhJnCjtQcmVyZW5kZXJMb2NhbFByZWRpY3RvclByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcxjEtI2WBTgAQgEwSgYKAjMwEGRKBQoBMBAAUg4SBDI5LiogAigAKAEoAhJxCjtQcmVyZW5kZXJMb2NhbFByZWRpY3RvclByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcxjEtI2WBTgBQgEwSgUKATAQMkoGCgIzMBAZSgYKAjYwEBlSEBIEMjkuKiAAIAEoACgBKAISbgoqUHJlcmVuZGVyTG9jYWxQcmVkaWN0b3JQcmVyZW5kZXJUVExTZWNvbmRzGMS0jZYFOAFCAzE4MEoHCgMxODAQNEoHCgMxMjAQEEoHCgMyNDAQEEoGCgI2MBAQUhASBDI5LiogACABKAAoASgCEtEKChtQcmVyZW5kZXJMb2NhbFByZWRpY3RvclNwZWMYxLSNlgU4AUIXTG9jYWxQcmVkaWN0b3I9RGlzYWJsZWRKggEKfWlkPTE6TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEMUCSoEBCn1pZD0yOkxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMBBLSnwKeExvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0yOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMBBLSnwKeExvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0xOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMBBLSnsKd0xvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0wEEtKfAp4TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTYwEEtKlgEKkQFMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzA6UHJlcmVuZGVyTGF1bmNoPURpc2FibGVkEEtKnAEKlwFMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzA6UHJlcmVuZGVyQWx3YXlzQ29udHJvbD1FbmFibGVkEEtKqwEKpgFMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzA6UHJlcmVuZGVyTGF1bmNoPURpc2FibGVkOlNraXBMb2dnZWRJbj1FbmFibGVkEEtKGwoXTG9jYWxQcmVkaWN0b3I9RGlzYWJsZWQQS1IOEgQzMC4qIAIoACgBKAIS0woKG1ByZXJlbmRlckxvY2FsUHJlZGljdG9yU3BlYxjEtI2WBTgBQhdMb2NhbFByZWRpY3Rvcj1EaXNhYmxlZEqCAQp9aWQ9MTpMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzAQxQJKgQEKfWlkPTI6TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEEtKfAp4TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTI6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEEtKfAp4TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTE6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEEtKewp3TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTAQS0p8CnhMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9NjAQS0qWAQqRAUxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMDpQcmVyZW5kZXJMYXVuY2g9RGlzYWJsZWQQS0qcAQqXAUxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMDpQcmVyZW5kZXJBbHdheXNDb250cm9sPUVuYWJsZWQQS0qrAQqmAUxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMDpQcmVyZW5kZXJMYXVuY2g9RGlzYWJsZWQ6U2tpcExvZ2dlZEluPUVuYWJsZWQQS0obChdMb2NhbFByZWRpY3Rvcj1EaXNhYmxlZBBLUhASBDMwLiogACABKAAoASgCElYKF1ByZXJlbmRlckxvY2FsUHJlZGljdG9yGMS0jZYFOAFCCERpc2FibGVkSgsKB0VuYWJsZWQQAUoMCghEaXNhYmxlZBBjUg4SBDI5LiogAygAKAEoAhJWChJNYW51YWxSZXNldFByb2ZpbGUYxLPTlQU4AUIHRGlzYWJsZUoKCgZFbmFibGUQZEoLCgdEaXNhYmxlEABSFhIEMjkuKiAAIAEgAiADKAAoASgDKAISqQEKD1Byb2dyZXNzaXZlU2NhbhjEtI2WBTgBQgdEZWZhdWx0ShUKETMzUGVyY2VudF80TWluTWF4EBFKFQoRNTBQZXJjZW50XzRNaW5NYXgQEUoVChE1MFBlcmNlbnRfOE1pbk1heBARShYKEjEwMFBlcmNlbnRfOE1pbk1heBARSgwKCEZ1bGxTY2FuEBFKDAoHRGVmYXVsdBCTB1IMEgQyOS4qIAAgASgDEpgCCgRRVUlDGMSRiJYFOABCCERpc2FibGVkShAKB0VuYWJsZWQQBRj/kcoBShUKDEh0dHBzRW5hYmxlZBAAGP+RygFKEAoHQ29udHJvbBAFGICSygFKEQoIRGlzYWJsZWQQWhiAksoBSiAKDkRpc2FibGVkQnlGbGFnEAAqDGRpc2FibGUtcXVpY0oqChNIdHRwc0VuYWJsZWRzQnlGbGFnEAAqEWVuYWJsZS1xdWljLWh0dHBzSisKE0h0dHBzRGlzYWJsZWRCeUZsYWcQACoSZGlzYWJsZS1xdWljLWh0dHBzSh4KDUVuYWJsZWRCeUZsYWcQACoLZW5hYmxlLXF1aWNSFRILMjkuMC4xNTQ2LjAgACgAKAEoAhI2Cg5TQkludGVyc3RpdGlhbBjA0o2JBTgBQgJWMUoGCgJWMRABSgYKAlYyEGNSCCgAKAEoAigDErABChhTZW5kRmVlZGJhY2tMaW5rTG9jYXRpb24YwJKCkQU4AUIHZGVmYXVsdEoQCgdkZWZhdWx0ECgYqYXKAUoQCgdjb250cm9sEA8Y+ITKAUoRCghhbHQtdGV4dBAPGPyEygFKFQoMYWx0LWxvY2F0aW9uEA8YgoXKAUoeChVhbHQtdGV4dC1hbmQtbG9jYXRpb24QDxiIhcoBUhUSCzI3LjAuMTQ1My4qIAIoACgCKAESrAEKGFNlbmRGZWVkYmFja0xpbmtMb2NhdGlvbhjAkoKRBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQKBiphcoBShAKB2NvbnRyb2wQDxj5hMoBShEKCGFsdC10ZXh0EA8Y/4TKAUoVCgxhbHQtbG9jYXRpb24QDxiFhcoBSh4KFWFsdC10ZXh0LWFuZC1sb2NhdGlvbhAPGIuFygFSERILMjcuMC4xNDUzLiogAigDErIBChhTZW5kRmVlZGJhY2tMaW5rTG9jYXRpb24YwJKCkQU4AUIHZGVmYXVsdEoQCgdkZWZhdWx0ECgYqYXKAUoQCgdjb250cm9sEA8Y+ITKAUoRCghhbHQtdGV4dBAPGPqEygFKFQoMYWx0LWxvY2F0aW9uEA8YgIXKAUoeChVhbHQtdGV4dC1hbmQtbG9jYXRpb24QDxiGhcoBUhcSCzI3LjAuMTQ1My4qIAEgACgAKAIoARKuAQoYU2VuZEZlZWRiYWNrTGlua0xvY2F0aW9uGMCSgpEFOAFCB2RlZmF1bHRKEAoHZGVmYXVsdBAoGKmFygFKEAoHY29udHJvbBAPGPmEygFKEQoIYWx0LXRleHQQDxj9hMoBShUKDGFsdC1sb2NhdGlvbhAPGIOFygFKHgoVYWx0LXRleHQtYW5kLWxvY2F0aW9uEA8YiYXKAVITEgsyNy4wLjE0NTMuKiABIAAoAxKwAQoYU2VuZEZlZWRiYWNrTGlua0xvY2F0aW9uGMCSgpEFOAFCB2RlZmF1bHRKEAoHZGVmYXVsdBA8GKmFygFKEAoHY29udHJvbBAKGPiEygFKEQoIYWx0LXRleHQQChj7hMoBShUKDGFsdC1sb2NhdGlvbhAKGIGFygFKHgoVYWx0LXRleHQtYW5kLWxvY2F0aW9uEAoYh4XKAVIVEgsyNy4wLjE0NTMuKiADKAAoAigBEqwBChhTZW5kRmVlZGJhY2tMaW5rTG9jYXRpb24YwJKCkQU4AUIHZGVmYXVsdEoQCgdkZWZhdWx0EDwYqYXKAUoQCgdjb250cm9sEAoY+YTKAUoRCghhbHQtdGV4dBAKGP6EygFKFQoMYWx0LWxvY2F0aW9uEAoYhIXKAUoeChVhbHQtdGV4dC1hbmQtbG9jYXRpb24QChiKhcoBUhESCzI3LjAuMTQ1My4qIAMoAxJ1ChRTaG93QXBwTGF1bmNoZXJQcm9tbzgBQgdEZWZhdWx0SiAKF1Nob3dQcm9tb1VudGlsRGlzbWlzc2VkEDIYnobKAUobChJSZXNldFNob3dQcm9tb1ByZWYQMhifhsoBSgsKB0RlZmF1bHQQAFIGIAAgASgAEmIKE1Nob3dQcm9maWxlU3dpdGNoZXIYwMrgigU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EFBKCwoHY29udHJvbBAKSg4KCkFsd2F5c1Nob3cQClIQEgQyNi4qIAAgASgAKAEoAhJXCg9TaWRlbG9hZFdpcGVvdXQYxJydiwU4AUIIRGlzYWJsZWRKDAoIRGlzYWJsZWQQAEoLCgdFbmFibGVkEGRSFxILMjUuMC4xMzYwLiogACABIAIgAygAEncKGlNpZ25JblRvQ2hyb21lQ29uZmlybWF0aW9uGMDK4IoFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBBQShQKEGNvbnRyb2xfRElTQUJMRUQQCkoTCg9CdWJibGVfRElTQUJMRUQQClIQEgQyNi4qIAAgASgAKAEoAhKEAQoQU2ltcGxlQ2FjaGVUcmlhbBjEtI2WBTgBQgxFeHBlcmltZW50Tm9KEQoNRXhwZXJpbWVudFllcxAtShIKDkV4cGVyaW1lbnRZZXMyEAVKFQoRRXhwZXJpbWVudENvbnRyb2wQLUoQCgxFeHBlcmltZW50Tm8QBVIKEgQyOS4qIAIoBBKGAQoQU2ltcGxlQ2FjaGVUcmlhbBjEtI2WBTgBQgxFeHBlcmltZW50Tm9KEAoMRXhwZXJpbWVudE5vEABKEQoNRXhwZXJpbWVudFllcxBQShIKDkV4cGVyaW1lbnRZZXMyEApKFQoRRXhwZXJpbWVudENvbnRyb2wQClIMEgQyOC4qIAAgASgEEosBCjBTaW1wbGVDYWNoZUluZGV4Rmx1c2hEZWxheV9Gb3JlZ3JvdW5kX0JhY2tncm91bmQYxLSNlgU4AUIJMjAwMDBfMTAwSgwKCDUwMDBfMTAwEBlKDAoIMTAwMF8xMDAQGUoLCgcxMDAwXzIwEBlKDQoJMjAwMDBfMTAwEBlSDBIEMjkuKiAAIAEoBBJhChVTaW1wbGVDYWNoZU1heFRocmVhZHMYxLSNlgU4AEICNTBKBQoBMRAKSgUKATUQEkoGCgIxMBASSgYKAjIwEBJKBgoCMzAQEkoGCgI1MBASUg4SBDI5LiogACABIAIoBBKVAwoeU3BlY3VsYXRpdmVSZXNvdXJjZVByZWZldGNoaW5nGICc44oFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEChKEAoMTGVhcm5pbmdIb3N0EApKDwoLTGVhcm5pbmdVUkwQCkoMCghMZWFybmluZxAKShMKD1ByZWZldGNoaW5nSG9zdBAKShIKDlByZWZldGNoaW5nVVJMEApKDwoLUHJlZmV0Y2hpbmcQCkocChhQcmVmZXRjaGluZ0xvd0NvbmZpZGVuY2UQAEodChlQcmVmZXRjaGluZ0hpZ2hDb25maWRlbmNlEABKHAoYUHJlZmV0Y2hpbmdNb3JlUmVzb3VyY2VzEABKEwoPTGVhcm5pbmdTbWFsbERCEABKFgoSUHJlZmV0Y2hpbmdTbWFsbERCEABKIwofUHJlZmV0Y2hpbmdTbWFsbERCTG93Q29uZmlkZW5jZRAASiQKIFByZWZldGNoaW5nU21hbGxEQkhpZ2hDb25maWRlbmNlEABSFRILMjUuMC4xMzY0LiogAigAKAEoAhKXAwoeU3BlY3VsYXRpdmVSZXNvdXJjZVByZWZldGNoaW5nGICc44oFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEChKEAoMTGVhcm5pbmdIb3N0EApKDwoLTGVhcm5pbmdVUkwQCkoMCghMZWFybmluZxAKShMKD1ByZWZldGNoaW5nSG9zdBAKShIKDlByZWZldGNoaW5nVVJMEApKDwoLUHJlZmV0Y2hpbmcQCkocChhQcmVmZXRjaGluZ0xvd0NvbmZpZGVuY2UQAEodChlQcmVmZXRjaGluZ0hpZ2hDb25maWRlbmNlEABKHAoYUHJlZmV0Y2hpbmdNb3JlUmVzb3VyY2VzEABKEwoPTGVhcm5pbmdTbWFsbERCEABKFgoSUHJlZmV0Y2hpbmdTbWFsbERCEABKIwofUHJlZmV0Y2hpbmdTbWFsbERCTG93Q29uZmlkZW5jZRAASiQKIFByZWZldGNoaW5nU21hbGxEQkhpZ2hDb25maWRlbmNlEABSFxILMjUuMC4xMzY0LiogACABKAAoASgCElIKClNwZWxsY2hlY2sYxNu0jQU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EGRKDwoLU3VnZ2VzdGlvbnMQAFIVEgsyNi4wLjE0MDMuMCACIAEgACgAElQKClNwZWxsY2hlY2sYxNu0jQU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EGRKDwoLU3VnZ2VzdGlvbnMQAFIXEgsyNi4wLjE0MDMuMCADIAIgASgCKAMSTgoKU3BlbGxjaGVjaxjE27SNBTgBQgdEZWZhdWx0SgsKB0RlZmF1bHQQZEoPCgtTdWdnZXN0aW9ucxAAUhESCzI2LjAuMTQwMy4wIAMoABJPCg1FbmFibGVTdGFnZTNEGICI/oYFOAFCB2VuYWJsZWRKDAoHZW5hYmxlZBC2B0oPCgtibGFja2xpc3RlZBAyUg4SBDIyLiogACABIAIoABJRCg1FbmFibGVTdGFnZTNEGICI/oYFOAFCB2VuYWJsZWRKDAoHZW5hYmxlZBDoB0oPCgtibGFja2xpc3RlZBAAUhASBDIyLioaBDIyLiogAygAEmgKDUVuYWJsZVN0YWdlM0QYgN+/iQU4AUIPZW5hYmxlZF9kZWZhdWx0ShMKD2VuYWJsZWRfZGVmYXVsdBAASgwKB2VuYWJsZWQQ6AdKDwoLYmxhY2tsaXN0ZWQQAFIKEgQyMy4qIAMoABKrAgoLVGFiRXZpY3Rpb24YgP6ikgU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EABKCwoHQ29udHJvbBAKShEKDU1lbW9yeUtlZXBBbGwQAUoTCg9NZW1vcnlFdmljdEhhbGYQCkoTCg9NZW1vcnlLZWVwVGhyZWUQCkoUChBNZW1vcnlFdmljdFRocmVlEApKGAoUQmFja2dyb3VuZGluZ0tlZXBBbGwQCkoaChZCYWNrZ3JvdW5kaW5nRXZpY3RIYWxmEApKGAoUQmFja2dyb3VuZGluZ0tlZXBPbmUQCkobChdCYWNrZ3JvdW5kaW5nRXZpY3RUaHJlZRAKShIKDk5vUHJlcmVuZGVyaW5nEApKDwoLTm9RdWlja2JhY2sQClIMEgQyOS4qIAAgAigFEqoCCgtUYWJFdmljdGlvbhiAjM+YBTgBQgdEZWZhdWx0SgwKB0RlZmF1bHQQ3gdKCwoHQ29udHJvbBABShEKDU1lbW9yeUtlZXBBbGwQAEoTCg9NZW1vcnlFdmljdEhhbGYQAUoTCg9NZW1vcnlLZWVwVGhyZWUQAUoUChBNZW1vcnlFdmljdFRocmVlEAFKGAoUQmFja2dyb3VuZGluZ0tlZXBBbGwQAUoaChZCYWNrZ3JvdW5kaW5nRXZpY3RIYWxmEAFKGAoUQmFja2dyb3VuZGluZ0tlZXBPbmUQAUobChdCYWNrZ3JvdW5kaW5nRXZpY3RUaHJlZRABShIKDk5vUHJlcmVuZGVyaW5nEAFKDwoLTm9RdWlja2JhY2sQAVIKEgQyOS4qIAMoBRJOChNUZXN0MFBlcmNlbnREZWZhdWx0GICckqUFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBAASgwKCGdyb3VwXzAxEGRKCwoHZG9nZm9vZBAAEtoBChxVTUEtRHluYW1pYy1Vbmlmb3JtaXR5LVRyaWFsGICckqUFOAFCB0RlZmF1bHRKFAoGR3JvdXAxEAEYv7bJASC/tskBShQKBkdyb3VwMhAJGMC2yQEgwLbJAUoVCgZHcm91cDMQ6gMYwbbJASDBtskBShQKBkdyb3VwNBABGMK2yQEgwrbJAUoUCgZHcm91cDUQCRjDtskBIMO2yQFKFQoGR3JvdXA2EOoDGMS2yQEgxLbJAUoVCgdEZWZhdWx0EAAYxbbJASDFtskBUgwSBDI3LiogAygAKAESvQEKH1VNQS1Vbmlmb3JtaXR5LVRyaWFsLTEwLVBlcmNlbnQYgJySpQU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EAFKDAoIZ3JvdXBfMDEQAUoMCghncm91cF8wMhABSgwKCGdyb3VwXzAzEAFKDAoIZ3JvdXBfMDQQAUoMCghncm91cF8wNRABSgwKCGdyb3VwXzA2EAFKDAoIZ3JvdXBfMDcQAUoMCghncm91cF8wOBABSgwKCGdyb3VwXzA5EAESpg8KHlVNQS1Vbmlmb3JtaXR5LVRyaWFsLTEtUGVyY2VudBiAnJKlBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQARigtckBShEKCGdyb3VwXzAxEAEYobXJAUoRCghncm91cF8wMhABGKK1yQFKEQoIZ3JvdXBfMDMQARijtckBShEKCGdyb3VwXzA0EAEYpLXJAUoRCghncm91cF8wNRABGKW1yQFKEQoIZ3JvdXBfMDYQARimtckBShEKCGdyb3VwXzA3EAEYp7XJAUoRCghncm91cF8wOBABGKi1yQFKEQoIZ3JvdXBfMDkQARiptckBShEKCGdyb3VwXzEwEAEYqrXJAUoRCghncm91cF8xMRABGKu1yQFKEQoIZ3JvdXBfMTIQARistckBShEKCGdyb3VwXzEzEAEYrbXJAUoRCghncm91cF8xNBABGK61yQFKEQoIZ3JvdXBfMTUQARivtckBShEKCGdyb3VwXzE2EAEYsLXJAUoRCghncm91cF8xNxABGLG1yQFKEQoIZ3JvdXBfMTgQARiytckBShEKCGdyb3VwXzE5EAEYs7XJAUoRCghncm91cF8yMBABGLS1yQFKEQoIZ3JvdXBfMjEQARi1tckBShEKCGdyb3VwXzIyEAEYtrXJAUoRCghncm91cF8yMxABGLe1yQFKEQoIZ3JvdXBfMjQQARi4tckBShEKCGdyb3VwXzI1EAEYubXJAUoRCghncm91cF8yNhABGLq1yQFKEQoIZ3JvdXBfMjcQARi7tckBShEKCGdyb3VwXzI4EAEYvLXJAUoRCghncm91cF8yORABGL21yQFKEQoIZ3JvdXBfMzAQARi+tckBShEKCGdyb3VwXzMxEAEYv7XJAUoRCghncm91cF8zMhABGMC1yQFKEQoIZ3JvdXBfMzMQARjBtckBShEKCGdyb3VwXzM0EAEYwrXJAUoRCghncm91cF8zNRABGMO1yQFKEQoIZ3JvdXBfMzYQARjEtckBShEKCGdyb3VwXzM3EAEYxbXJAUoRCghncm91cF8zOBABGMa1yQFKEQoIZ3JvdXBfMzkQARjHtckBShEKCGdyb3VwXzQwEAEYyLXJAUoRCghncm91cF80MRABGMm1yQFKEQoIZ3JvdXBfNDIQARjKtckBShEKCGdyb3VwXzQzEAEYy7XJAUoRCghncm91cF80NBABGMy1yQFKEQoIZ3JvdXBfNDUQARjNtckBShEKCGdyb3VwXzQ2EAEYzrXJAUoRCghncm91cF80NxABGM+1yQFKEQoIZ3JvdXBfNDgQARjQtckBShEKCGdyb3VwXzQ5EAEY0bXJAUoRCghncm91cF81MBABGNK1yQFKEQoIZ3JvdXBfNTEQARjTtckBShEKCGdyb3VwXzUyEAEY1LXJAUoRCghncm91cF81MxABGNW1yQFKEQoIZ3JvdXBfNTQQARjWtckBShEKCGdyb3VwXzU1EAEY17XJAUoRCghncm91cF81NhABGNi1yQFKEQoIZ3JvdXBfNTcQARjZtckBShEKCGdyb3VwXzU4EAEY2rXJAUoRCghncm91cF81ORABGNu1yQFKEQoIZ3JvdXBfNjAQARjctckBShEKCGdyb3VwXzYxEAEY3bXJAUoRCghncm91cF82MhABGN61yQFKEQoIZ3JvdXBfNjMQARjftckBShEKCGdyb3VwXzY0EAEY4LXJAUoRCghncm91cF82NRABGOG1yQFKEQoIZ3JvdXBfNjYQARjitckBShEKCGdyb3VwXzY3EAEY47XJAUoRCghncm91cF82OBABGOS1yQFKEQoIZ3JvdXBfNjkQARjltckBShEKCGdyb3VwXzcwEAEY5rXJAUoRCghncm91cF83MRABGOe1yQFKEQoIZ3JvdXBfNzIQARjotckBShEKCGdyb3VwXzczEAEY6bXJAUoRCghncm91cF83NBABGOq1yQFKEQoIZ3JvdXBfNzUQARjrtckBShEKCGdyb3VwXzc2EAEY7LXJAUoRCghncm91cF83NxABGO21yQFKEQoIZ3JvdXBfNzgQARjutckBShEKCGdyb3VwXzc5EAEY77XJAUoRCghncm91cF84MBABGPC1yQFKEQoIZ3JvdXBfODEQARjxtckBShEKCGdyb3VwXzgyEAEY8rXJAUoRCghncm91cF84MxABGPO1yQFKEQoIZ3JvdXBfODQQARj0tckBShEKCGdyb3VwXzg1EAEY9bXJAUoRCghncm91cF84NhABGPa1yQFKEQoIZ3JvdXBfODcQARj3tckBShEKCGdyb3VwXzg4EAEY+LXJAUoRCghncm91cF84ORABGPm1yQFKEQoIZ3JvdXBfOTAQARj6tckBShEKCGdyb3VwXzkxEAEY+7XJAUoRCghncm91cF85MhABGPy1yQFKEQoIZ3JvdXBfOTMQARj9tckBShEKCGdyb3VwXzk0EAEY/rXJAUoRCghncm91cF85NRABGP+1yQFKEQoIZ3JvdXBfOTYQARiAtskBShEKCGdyb3VwXzk3EAEYgbbJAUoRCghncm91cF85OBABGIK2yQFKEQoIZ3JvdXBfOTkQARiDtskBUggoACgBKAIoAxKuCwoeVU1BLVVuaWZvcm1pdHktVHJpYWwtMS1QZXJjZW50GICckqUFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBABSgwKCGdyb3VwXzAxEAFKDAoIZ3JvdXBfMDIQAUoMCghncm91cF8wMxABSgwKCGdyb3VwXzA0EAFKDAoIZ3JvdXBfMDUQAUoMCghncm91cF8wNhABSgwKCGdyb3VwXzA3EAFKDAoIZ3JvdXBfMDgQAUoMCghncm91cF8wORABSgwKCGdyb3VwXzEwEAFKDAoIZ3JvdXBfMTEQAUoMCghncm91cF8xMhABSgwKCGdyb3VwXzEzEAFKDAoIZ3JvdXBfMTQQAUoMCghncm91cF8xNRABSgwKCGdyb3VwXzE2EAFKDAoIZ3JvdXBfMTcQAUoMCghncm91cF8xOBABSgwKCGdyb3VwXzE5EAFKDAoIZ3JvdXBfMjAQAUoMCghncm91cF8yMRABSgwKCGdyb3VwXzIyEAFKDAoIZ3JvdXBfMjMQAUoMCghncm91cF8yNBABSgwKCGdyb3VwXzI1EAFKDAoIZ3JvdXBfMjYQAUoMCghncm91cF8yNxABSgwKCGdyb3VwXzI4EAFKDAoIZ3JvdXBfMjkQAUoMCghncm91cF8zMBABSgwKCGdyb3VwXzMxEAFKDAoIZ3JvdXBfMzIQAUoMCghncm91cF8zMxABSgwKCGdyb3VwXzM0EAFKDAoIZ3JvdXBfMzUQAUoMCghncm91cF8zNhABSgwKCGdyb3VwXzM3EAFKDAoIZ3JvdXBfMzgQAUoMCghncm91cF8zORABSgwKCGdyb3VwXzQwEAFKDAoIZ3JvdXBfNDEQAUoMCghncm91cF80MhABSgwKCGdyb3VwXzQzEAFKDAoIZ3JvdXBfNDQQAUoMCghncm91cF80NRABSgwKCGdyb3VwXzQ2EAFKDAoIZ3JvdXBfNDcQAUoMCghncm91cF80OBABSgwKCGdyb3VwXzQ5EAFKDAoIZ3JvdXBfNTAQAUoMCghncm91cF81MRABSgwKCGdyb3VwXzUyEAFKDAoIZ3JvdXBfNTMQAUoMCghncm91cF81NBABSgwKCGdyb3VwXzU1EAFKDAoIZ3JvdXBfNTYQAUoMCghncm91cF81NxABSgwKCGdyb3VwXzU4EAFKDAoIZ3JvdXBfNTkQAUoMCghncm91cF82MBABSgwKCGdyb3VwXzYxEAFKDAoIZ3JvdXBfNjIQAUoMCghncm91cF82MxABSgwKCGdyb3VwXzY0EAFKDAoIZ3JvdXBfNjUQAUoMCghncm91cF82NhABSgwKCGdyb3VwXzY3EAFKDAoIZ3JvdXBfNjgQAUoMCghncm91cF82ORABSgwKCGdyb3VwXzcwEAFKDAoIZ3JvdXBfNzEQAUoMCghncm91cF83MhABSgwKCGdyb3VwXzczEAFKDAoIZ3JvdXBfNzQQAUoMCghncm91cF83NRABSgwKCGdyb3VwXzc2EAFKDAoIZ3JvdXBfNzcQAUoMCghncm91cF83OBABSgwKCGdyb3VwXzc5EAFKDAoIZ3JvdXBfODAQAUoMCghncm91cF84MRABSgwKCGdyb3VwXzgyEAFKDAoIZ3JvdXBfODMQAUoMCghncm91cF84NBABSgwKCGdyb3VwXzg1EAFKDAoIZ3JvdXBfODYQAUoMCghncm91cF84NxABSgwKCGdyb3VwXzg4EAFKDAoIZ3JvdXBfODkQAUoMCghncm91cF85MBABSgwKCGdyb3VwXzkxEAFKDAoIZ3JvdXBfOTIQAUoMCghncm91cF85MxABSgwKCGdyb3VwXzk0EAFKDAoIZ3JvdXBfOTUQAUoMCghncm91cF85NhABSgwKCGdyb3VwXzk3EAFKDAoIZ3JvdXBfOTgQAUoMCghncm91cF85ORABUgQoBCgFEncKH1VNQS1Vbmlmb3JtaXR5LVRyaWFsLTIwLVBlcmNlbnQYgJySpQU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EAFKDAoIZ3JvdXBfMDEQAUoMCghncm91cF8wMhABSgwKCGdyb3VwXzAzEAFKDAoIZ3JvdXBfMDQQARJNCh9VTUEtVW5pZm9ybWl0eS1UcmlhbC01MC1QZXJjZW50GICckqUFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBABSgwKCGdyb3VwXzAxEAEStgMKHlVNQS1Vbmlmb3JtaXR5LVRyaWFsLTUtUGVyY2VudBiAnJKlBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQARiEtskBShEKCGdyb3VwXzAxEAEYhbbJAUoRCghncm91cF8wMhABGIa2yQFKEQoIZ3JvdXBfMDMQARiHtskBShEKCGdyb3VwXzA0EAEYiLbJAUoRCghncm91cF8wNRABGIm2yQFKEQoIZ3JvdXBfMDYQARiKtskBShEKCGdyb3VwXzA3EAEYi7bJAUoRCghncm91cF8wOBABGIy2yQFKEQoIZ3JvdXBfMDkQARiNtskBShEKCGdyb3VwXzEwEAEYjrbJAUoRCghncm91cF8xMRABGI+2yQFKEQoIZ3JvdXBfMTIQARiQtskBShEKCGdyb3VwXzEzEAEYkbbJAUoRCghncm91cF8xNBABGJK2yQFKEQoIZ3JvdXBfMTUQARiTtskBShEKCGdyb3VwXzE2EAEYlLbJAUoRCghncm91cF8xNxABGJW2yQFKEQoIZ3JvdXBfMTgQARiWtskBShEKCGdyb3VwXzE5EAEYl7bJAVIIKAAoASgCKAMSzgIKHlVNQS1Vbmlmb3JtaXR5LVRyaWFsLTUtUGVyY2VudBiAnJKlBTgBQgdkZWZhdWx0SgsKB2RlZmF1bHQQAUoMCghncm91cF8wMRABSgwKCGdyb3VwXzAyEAFKDAoIZ3JvdXBfMDMQAUoMCghncm91cF8wNBABSgwKCGdyb3VwXzA1EAFKDAoIZ3JvdXBfMDYQAUoMCghncm91cF8wNxABSgwKCGdyb3VwXzA4EAFKDAoIZ3JvdXBfMDkQAUoMCghncm91cF8xMBABSgwKCGdyb3VwXzExEAFKDAoIZ3JvdXBfMTIQAUoMCghncm91cF8xMxABSgwKCGdyb3VwXzE0EAFKDAoIZ3JvdXBfMTUQAUoMCghncm91cF8xNhABSgwKCGdyb3VwXzE3EAFKDAoIZ3JvdXBfMTgQAUoMCghncm91cF8xORABUgQoBCgF","homepage":"hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2","homepage_is_newtabpage"
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Fertig Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.09.2013, 19:52
| #11 |
| | Hatte Qvo6 was nun Hallo Die FRST Hallo Schrauber Sorry am Schluss muss wohl noch was schief gehen! Das FRST kann die fixlist.txt nicht finden. Hallo Also doch noch "war mein Fehler" Werde jetzt die restlichen Prozeduren noch durchführen. Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-09-2013 03
Ran by uwchif1 at 2013-09-04 19:20:45 Run:2
Running from C:\Users\uwchif1\Downloads
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&CUI=UN35675051693059012&UM=2&ctid=CT3282494
URLSearchHook: (No Name) - {b106b661-3e1b-4015-af5c-195e909f35c6} - No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282494&CUI=UN35675051693059012&UM=2
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {F65A2DDF-BBE2-4214-A067-2BC5615302EF} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282494&CUI=UN35675051693059012&UM=2
CHR HomePage: hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2"]},"sync_promo":{"startup_count":2},"variations_seed":"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","homepage":"hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2","homepage_is_newtabpage"
*****************
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\\{b106b661-3e1b-4015-af5c-195e909f35c6} => Value not found.
HKCR\CLSID\{b106b661-3e1b-4015-af5c-195e909f35c6} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F65A2DDF-BBE2-4214-A067-2BC5615302EF} => Key not found.
HKCR\CLSID\{F65A2DDF-BBE2-4214-A067-2BC5615302EF} => Key not found.
CHR HomePage: hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2 ==> The Chrome "Settings" can be used to fix the entry.
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2"]},"sync_promo":{"startup_count":2},"variations_seed":"Cig3ZmU4ZWQ5YjE2MjA1N2U2ZjBmMTNjYjI2ZWEwYTg2ODViZDAxMjFiEpoBCghBc3luY0RucxjEhoqRBTgAQgpTeXN0ZW1EbnNBSg4KClN5c3RlbURuc0EQGUoOCgpTeXN0ZW1EbnNCEBlKGAoTQXN5bmNEbnNOb0ZhbGxiYWNrQRCQA0oYChNBc3luY0Ruc05vRmFsbGJhY2tCEJADSg0KCUFzeW5jRG5zQRBLSg0KCUFzeW5jRG5zQhBLUggSBDI2LiooAxJuCghBc3luY0RucxjEoKiSBTgAQgpTeXN0ZW1EbnNBSg4KClN5c3RlbURuc0EQGUoOCgpTeXN0ZW1EbnNCEBlKDQoJQXN5bmNEbnNBEBlKDQoJQXN5bmNEbnNCEBlSEBIEMjkuKiAAIAEoACgBKAISagoIQXN5bmNEbnMYxIzDjgU4AEIKU3lzdGVtRG5zQUoOCgpTeXN0ZW1EbnNBEDJKDgoKU3lzdGVtRG5zQhAySg0KCUFzeW5jRG5zQRAySg0KCUFzeW5jRG5zQhAyUgwSBDI4LiogAigBKAISbAoIQXN5bmNEbnMYxIaKkQU4AEIKU3lzdGVtRG5zQUoOCgpTeXN0ZW1EbnNBEBlKDgoKU3lzdGVtRG5zQhAZSg4KCUFzeW5jRG5zQRDbA0oOCglBc3luY0Ruc0IQ2wNSDBIEMjYuKiADKAEoAhKPAQoaQXV0b2NvbXBsZXRlRHluYW1pY1RyaWFsXzAYgMPQjAU4AUITTGl2ZVNwZWxsaW5nQ29udHJvbEogChZMaXZlU3BlbGxpbmdFeHBlcmltZW50ELYHGIaEygFKHAoTTGl2ZVNwZWxsaW5nQ29udHJvbBAyGIeEygFSFBIEMjYuKiAAIAEgAiADKAAoASgCEtIBChpBdXRvY29tcGxldGVEeW5hbWljVHJpYWxfMRiAhNyPBTgBQg5EZWZhdWx0Q29udHJvbEodChREaXNhYmxlZFByb3ZpZGVyc18xNhAKGJeEygFKGwoSTmF2U3VnZ2VzdERlbW90aW9uEAoYmYTKAUoiChlOYXZTdWdnZXN0RGVtb3Rpb25Db250cm9sEAoYmoTKAUoYCg5EZWZhdWx0Q29udHJvbBDiBxibhMoBUhwSDDI2LjAuMTQxMC4xORoEMjguKiADKAAoASgCWI3Qj48CEqQBChpBdXRvY29tcGxldGVEeW5hbWljVHJpYWxfMhiAtLCQBTgBQg5EZWZhdWx0Q29udHJvbEodChRFbmFibGVDdXJzb3JQb3NpdGlvbhAKGJWEygFKJAobRW5hYmxlQ3Vyc29yUG9zaXRpb25Db250cm9sEAoYloTKAUoTCg5EZWZhdWx0Q29udHJvbBDsB1IUEgQyOC4qGgQyOC4qIAMoACgBKAIS4QEKGkF1dG9jb21wbGV0ZUR5bmFtaWNUcmlhbF80GID+opIFOAFCGURlZmF1bHRDb250cm9sX05vbkRvZ2Zvb2RKMwoqRW5hYmxlWmVyb1N1Z2dlc3RRdWVyaWVzQW5kVXJsc19Ob25Eb2dmb29kEA0YnITKAUo6CjFFbmFibGVaZXJvU3VnZ2VzdFF1ZXJpZXNBbmRVcmxzQ29udHJvbF9Ob25Eb2dmb29kEA0YnYTKAUodChlEZWZhdWx0Q29udHJvbF9Ob25Eb2dmb29kECZSEBIEMjkuKiAAIAEgAigAKAISVAoKQ0xEMVZzQ0xEMhjE3oWUBTgBQgdEZWZhdWx0SggKBENMRDEQAUoICgRDTEQyEAFKCwoHRGVmYXVsdBBiUhQaBDMxLiogACABIAIoACgBKAMoAhKSAQoYQ2FjaGVTZW5zaXRpdml0eUFuYWx5c2lzGMT10o4FOABCAk5vSgwKCENvbnRyb2xBEAVKDAoIQ29udHJvbEIQBUoICgQxMDBBEAVKCAoEMTAwQhAFSggKBDIwMEEQBUoICgQyMDBCEAVKCAoENDAwQRAFSggKBDQwMEIQBUoGCgJObxA8UgoSBDI4LiogAigEEn8KGENhY2hlU2Vuc2l0aXZpdHlBbmFseXNpcxjEjrePBTgAQgJOb0oMCghDb250cm9sQRABSgwKCENvbnRyb2xCEAFKCAoEMTAwQRABSggKBDEwMEIQAUoICgQyMDBBEAFKCAoEMjAwQhABSgcKAk5vEOIHUgoSBDI4LiogAygEEpoBChhDYWNoZVNlbnNpdGl2aXR5QW5hbHlzaXMYxMr9igU4AEICTm9KBgoCTm8QJEoMCghDb250cm9sQRAISgwKCENvbnRyb2xCEAhKCAoEMTAwQRAISggKBDEwMEIQCEoICgQyMDBBEAhKCAoEMjAwQhAISggKBDQwMEEQCEoICgQ0MDBCEAhSEhIEMjUuKiAAIAEgAigAKAEoAhKdAQoYQ2FjaGVTZW5zaXRpdml0eUFuYWx5c2lzGMSy04oFOABCAk5vSgcKAk5vEOAHSgwKCENvbnRyb2xBEAFKDAoIQ29udHJvbEIQAUoICgQxMDBBEAFKCAoEMTAwQhABSggKBDIwMEEQAUoICgQyMDBCEAFKCAoENDAwQRABSggKBDQwMEIQAVIUCICnvooFEgQyNS4qIAMoACgBKAISSAoPRDNEMTFFeHBlcmltZW50GICSiJYFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEABKCwoHRW5hYmxlZBBkUggSBDI5LiooABJUChtEYXRhQ29tcHJlc3Npb25Qcm94eVJvbGxvdXQYxIKXtAU4AUIHRW5hYmxlZEoMCghEaXNhYmxlZBAASgwKB0VuYWJsZWQQ6AdSCCAAIAEgAigEElEKG0RhdGFDb21wcmVzc2lvblByb3h5Um9sbG91dBjEgpe0BTgBQghEaXNhYmxlZEoNCghEaXNhYmxlZBCEB0oLCgdFbmFibGVkEGRSBCADKAQSVwobRGF0YUNvbXByZXNzaW9uUHJveHlSb2xsb3V0GMSCl7QFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEABKDAoHRW5hYmxlZBDoB1IKEgQyOS4qIAMoBRJUChtEYXRhQ29tcHJlc3Npb25Qcm94eVJvbGxvdXQYxIKXtAU4AUIHRW5hYmxlZEoMCghEaXNhYmxlZBAASgwKB0VuYWJsZWQQ6AdSCCAAIAEgAigFElcKG0RhdGFDb21wcmVzc2lvblByb3h5Um9sbG91dBjEgpe0BTgBQghEaXNhYmxlZEoNCghEaXNhYmxlZBDeB0oLCgdFbmFibGVkEApSChoEMjguKiADKAUSRAoRRG5zUHJvYmUtQXR0ZW1wdHMYgLWNlgU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EFpKBQoBMRAKUgoSBDI1LiogACABEkcKD0Ruc1Byb2JlLUVuYWJsZRiAtY2WBTgBQgdkaXNhYmxlSgsKB2Rpc2FibGUQAEoKCgZlbmFibGUQZFIKEgQyNS4qIAAgARJjCiNVTUEtRHluYW1pYy1CaW5hcnktVW5pZm9ybWl0eS1UcmlhbBiAnJKlBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQARiptskBShEKCGdyb3VwXzAxEAEYqrbJAVIGIAAgASACEl8KI1VNQS1EeW5hbWljLUJpbmFyeS1Vbmlmb3JtaXR5LVRyaWFsGICckqUFOAFCB2RlZmF1bHRKEAoHZGVmYXVsdBBjGKm2yQFKEQoIZ3JvdXBfMDEQARiqtskBUgIgAxJXChRGb3JjZUNvbXBvc2l0aW5nTW9kZRiAkoiWBTgBQgdkaXNhYmxlSgsKB2Rpc2FibGUQZEoLCgdlbmFibGVkEABKCgoGdGhyZWFkEABSCBIEMjQuKigCElcKFEZvcmNlQ29tcG9zaXRpbmdNb2RlGICSiJYFOAFCB2Rpc2FibGVKCwoHZGlzYWJsZRAASgsKB2VuYWJsZWQQAEoKCgZ0aHJlYWQQZFIIEgQyOC4qKAESWQoURm9yY2VDb21wb3NpdGluZ01vZGUYgJKIlgU4AUIHZGlzYWJsZUoLCgdkaXNhYmxlEGRKCwoHZW5hYmxlZBAASgoKBnRocmVhZBAAUgoaBDI3LiogAygBElcKFEZvcmNlQ29tcG9zaXRpbmdNb2RlGICSiJYFOAFCB2Rpc2FibGVKCwoHZGlzYWJsZRAASgsKB2VuYWJsZWQQAEoKCgZ0aHJlYWQQZFIIEgQyNC4qKAASWQoURm9yY2VDb21wb3NpdGluZ01vZGUYgJKIlgU4AUIHZGlzYWJsZUoLCgdkaXNhYmxlEABKCwoHZW5hYmxlZBAySgoKBnRocmVhZBAyUgoSBDI0LiogAygAErcBCglHb29nbGVOb3c4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EGRKCgoGRW5hYmxlEABKCwoHQ29udHJvbBAASjMKD0Rpc2FibGVkVmlhRmxhZxAAKh5kaXNhYmxlLWdvb2dsZS1ub3ctaW50ZWdyYXRpb25KMQoORW5hYmxlZFZpYUZsYWcQACodZW5hYmxlLWdvb2dsZS1ub3ctaW50ZWdyYXRpb25SESAAIAEoACgBKAMyBWVuLVVTEosBCg1Ib3N0Q2FjaGVTaXplGMTNiIcFOABCB0RlZmF1bHRKCwoHRGVmYXVsdBAASggKBDEwMEEQCkoICgQxMDBCEApKCAoEMzAwQRAKSggKBDMwMEIQCkoJCgUxMDAwQRAKSgkKBTEwMDBCEApKCQoFMzAwMEEQCkoJCgUzMDAwQhAKUggSBDI1LiooAxKTAQoNSG9zdENhY2hlU2l6ZRjErPeHBTgAQgdEZWZhdWx0SgsKB0RlZmF1bHQQAEoICgQxMDBBEApKCAoEMTAwQhAKSggKBDMwMEEQCkoICgQzMDBCEApKCQoFMTAwMEEQCkoJCgUxMDAwQhAKSgkKBTMwMDBBEApKCQoFMzAwMEIQClIQEgQyNS4qIAAgASgAKAEoAhJECg1JbmZpbml0ZUNhY2hlGMS0jZYFOAFCAk5vSgcKAk5vENQHSgcKA1llcxAKSgsKB0NvbnRyb2wQClIIIAIoACgBKAISRgoNSW5maW5pdGVDYWNoZRjEtI2WBTgBQgJOb0oHCgJObxCEB0oHCgNZZXMQMkoLCgdDb250cm9sEDJSCiAAIAEoACgBKAISRAoNSW5maW5pdGVDYWNoZRjEtI2WBTgBQgJOb0oHCgJObxDmB0oHCgNZZXMQAUoLCgdDb250cm9sEAFSCCADKAAoASgCEt8ECgxJbnN0YW50RHVtbXkYgITcjwU4AUIMRGVmYXVsdEdyb3VwSi8KIUR1bW15R3JvdXAxIGNoYW5uZWw6c3RhYmxlIG1vZHM6MRABGMeFygEgx4XKAUovCiFEdW1teUdyb3VwMiBjaGFubmVsOnN0YWJsZSBtb2RzOjEQARjIhcoBIMiFygFKLwohRHVtbXlHcm91cDMgY2hhbm5lbDpzdGFibGUgbW9kczoxEAEYyYXKASDJhcoBSi8KIUR1bW15R3JvdXA0IGNoYW5uZWw6c3RhYmxlIG1vZHM6MRABGMqFygEgyoXKAUovCiFEdW1teUdyb3VwNSBjaGFubmVsOnN0YWJsZSBtb2RzOjkQCRjLhcoBIMuFygFKLwohRHVtbXlHcm91cDYgY2hhbm5lbDpzdGFibGUgbW9kczo5EAkYzIXKASDMhcoBSi8KIUR1bW15R3JvdXA3IGNoYW5uZWw6c3RhYmxlIG1vZHM6ORAJGM2FygEgzYXKAUovCiFEdW1teUdyb3VwOCBjaGFubmVsOnN0YWJsZSBtb2RzOjkQCRjOhcoBIM6FygFKMQojRHVtbXlHcm91cDkgY2hhbm5lbDpzdGFibGUgbW9kczoxMDAQZBjPhcoBIM+FygFKMgokRHVtbXlHcm91cDEwIGNoYW5uZWw6c3RhYmxlIG1vZHM6MTAwEGQY0IXKASDQhcoBSioKG0R1bW15UGFkZGluZyBjaGFubmVsOnN0YWJsZRD4BRjRhcoBINGFygFKEAoMRGVmYXVsdEdyb3VwEABSDBIEMjcuKiADKAAoARKqAgoPSW5zdGFudEV4dGVuZGVkGIDUh48FOAFCDERlZmF1bHRHcm91cEo+Ci9Hcm91cDEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGNoYW5uZWw6YmV0YRD6ARi9hcoBIL2FygFKRwo4R3JvdXAyIGVzcHY6MjA1IHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOmJldGEQ+gEYvoXKASC+hcoBSiQKFUNvbnRyb2wxIGNoYW5uZWw6YmV0YRD6ARi/hcoBIL+FygFKJAoVQ29udHJvbDIgY2hhbm5lbDpiZXRhEPoBGMCFygEgwIXKAUoQCgxEZWZhdWx0R3JvdXAQAFIUEgQyOC4qGgQyOC4qIAIoACgBKANY2o+ihwkSpgIKD0luc3RhbnRFeHRlbmRlZBiA6r2OBTgBQgxEZWZhdWx0R3JvdXBKQAoxR3JvdXAxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOmNhbmFyeRD6ARjng8oBIOeDygFKSQo6R3JvdXAyIGVzcHY6MjA1IHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOmNhbmFyeRD6ARiEhMoBIISEygFKJgoXQ29udHJvbDEgY2hhbm5lbDpjYW5hcnkQ+gEY6IPKASDog8oBSiYKF0NvbnRyb2wyIGNoYW5uZWw6Y2FuYXJ5EPoBGIKEygEggoTKAUoQCgxEZWZhdWx0R3JvdXAQAFIOEgQyOC4qIAAoACgBKAMSsQIKD0luc3RhbnRFeHRlbmRlZBiAhNyPBTgBQgxEZWZhdWx0R3JvdXBKJQoXQ29udHJvbDEgbTI5ZGV2MjpuYXRpdmUQARjWhcoBINaFygFKJQoXQ29udHJvbDIgbTI5ZGV2MjpuYXRpdmUQARjXhcoBINeFygFKPwoxR3JvdXAxIG0yOWRldjI6bmF0aXZlIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGNiFygEg2IXKAUpICjpHcm91cDIgbTI5ZGV2MjpuYXRpdmUgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA1EAEY2YXKASDZhcoBShAKDERlZmF1bHRHcm91cBAAUhcSCTI5LjAuMTUzNRoEMjkuKiABKAAoA1jpib/HChKQCQoPSW5zdGFudEV4dGVuZGVkGID+opIFOAFCDERlZmF1bHRHcm91cEolChdDb250cm9sMSB2OmEgbTI5YmV0YTpyMRABGI6GygEgjobKAUolChdDb250cm9sMSB2OmIgbTI5YmV0YTpyMRABGI+GygEgj4bKAUolChdDb250cm9sMSB2OmMgbTI5YmV0YTpyMRABGJCGygEgkIbKAUolChdDb250cm9sMSB2OmQgbTI5YmV0YTpyMRABGJGGygEgkYbKAUolChdDb250cm9sMSB2OmUgbTI5YmV0YTpyMRABGJKGygEgkobKAUolChdDb250cm9sMiB2OmEgbTI5YmV0YTpyMRABGJOGygEgk4bKAUolChdDb250cm9sMiB2OmIgbTI5YmV0YTpyMRABGJSGygEglIbKAUolChdDb250cm9sMiB2OmMgbTI5YmV0YTpyMRABGJWGygEglYbKAUolChdDb250cm9sMiB2OmQgbTI5YmV0YTpyMRABGJaGygEglobKAUolChdDb250cm9sMiB2OmUgbTI5YmV0YTpyMRABGJeGygEgl4bKAUo/CjFHcm91cDEgdjphIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYoobKASCihsoBSj8KMUdyb3VwMSB2OmIgbTI5YmV0YTpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARijhsoBIKOGygFKPwoxR3JvdXAxIHY6YyBtMjliZXRhOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGKSGygEgpIbKAUo/CjFHcm91cDEgdjpkIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYpYbKASClhsoBSj8KMUdyb3VwMSB2OmUgbTI5YmV0YTpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARimhsoBIKaGygFKSAo6R3JvdXAyIHY6YSBtMjliZXRhOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGKeGygEgp4bKAUpICjpHcm91cDIgdjpiIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA4EAEYqIbKASCohsoBSkgKOkdyb3VwMiB2OmMgbTI5YmV0YTpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARiphsoBIKmGygFKSAo6R3JvdXAyIHY6ZCBtMjliZXRhOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGKqGygEgqobKAUpICjpHcm91cDIgdjplIG0yOWJldGE6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA4EAEYq4bKASCrhsoBShAKDERlZmF1bHRHcm91cBAAUhISBDI5LioaBDI5LiogAigAKANY5K+4wAESygkKD0luc3RhbnRFeHRlbmRlZBiA/qKSBTgBQgxEZWZhdWx0R3JvdXBKKAoaQ29udHJvbDEgdjphIG0yOWJldGFtYWM6cjEQARishsoBIKyGygFKKAoaQ29udHJvbDEgdjpiIG0yOWJldGFtYWM6cjEQARithsoBIK2GygFKKAoaQ29udHJvbDEgdjpjIG0yOWJldGFtYWM6cjEQARiuhsoBIK6GygFKKAoaQ29udHJvbDEgdjpkIG0yOWJldGFtYWM6cjEQARivhsoBIK+GygFKKAoaQ29udHJvbDEgdjplIG0yOWJldGFtYWM6cjEQARiwhsoBILCGygFKKAoaQ29udHJvbDIgdjphIG0yOWJldGFtYWM6cjEQARixhsoBILGGygFKKAoaQ29udHJvbDIgdjpiIG0yOWJldGFtYWM6cjEQARiyhsoBILKGygFKKAoaQ29udHJvbDIgdjpjIG0yOWJldGFtYWM6cjEQARizhsoBILOGygFKKAoaQ29udHJvbDIgdjpkIG0yOWJldGFtYWM6cjEQARi0hsoBILSGygFKKAoaQ29udHJvbDIgdjplIG0yOWJldGFtYWM6cjEQARi1hsoBILWGygFKQgo0R3JvdXAxIHY6YSBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGLaGygEgtobKAUpCCjRHcm91cDEgdjpiIG0yOWJldGFtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYt4bKASC3hsoBSkIKNEdyb3VwMSB2OmMgbTI5YmV0YW1hYzpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARi4hsoBILiGygFKQgo0R3JvdXAxIHY6ZCBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGLmGygEguYbKAUpCCjRHcm91cDEgdjplIG0yOWJldGFtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYuobKASC6hsoBSksKPUdyb3VwMiB2OmEgbTI5YmV0YW1hYzpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARi7hsoBILuGygFKSwo9R3JvdXAyIHY6YiBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGLyGygEgvIbKAUpLCj1Hcm91cDIgdjpjIG0yOWJldGFtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGVzcHY6MjA4EAEYvYbKASC9hsoBSksKPUdyb3VwMiB2OmQgbTI5YmV0YW1hYzpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARi+hsoBIL6GygFKSwo9R3JvdXAyIHY6ZSBtMjliZXRhbWFjOnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGL+GygEgv4bKAUoQCgxEZWZhdWx0R3JvdXAQAFIQEgQyOS4qGgQyOS4qIAIoAVjkr7jAARK5BgoPSW5zdGFudEV4dGVuZGVkGIDvgpYFOAFCDERlZmF1bHRHcm91cEorCh1Db250cm9sMCBwY3Q6NTBhIG0yOXN0YWJsZTpyMRAyGPGGygEg8YbKAUpNCj9Hcm91cDEgcGN0OjFhIG0yOXN0YWJsZTpyMiB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARiVh8oBIJWHygFKKwodQ29udHJvbDIgcGN0OjFiIG0yOXN0YWJsZTpwcDIQARjzhsoBIPOGygFKKwodQ29udHJvbDMgcGN0OjFjIG0yOXN0YWJsZTpwcDIQARj0hsoBIPSGygFKRAo2R3JvdXA0IHBjdDoxZCBtMjlzdGFibGU6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEY9YbKASD1hsoBSisKHUNvbnRyb2w1IHBjdDoxZSBtMjlzdGFibGU6cHAyEAEY9obKASD2hsoBSisKHUNvbnRyb2w2IHBjdDoxZiBtMjlzdGFibGU6cHAyEAEY94bKASD3hsoBSisKHUNvbnRyb2w3IHBjdDoxZyBtMjlzdGFibGU6cHAyEAEY+IbKASD4hsoBSisKHUNvbnRyb2w4IHBjdDoxaCBtMjlzdGFibGU6cHAyEAEY+YbKASD5hsoBSisKHUNvbnRyb2w5IHBjdDoxaSBtMjlzdGFibGU6cHAyEAEY+obKASD6hsoBSiwKHkNvbnRyb2wxMCBwY3Q6MWogbTI5c3RhYmxlOnBwMhABGPuGygEg+4bKAUosCh5Db250cm9sMTEgcGN0OjEwYSBtMjlzdGFibGU6cjIQChiUh8oBIJSHygFKLQofQ29udHJvbDEyIHBjdDoxMGIgbTI5c3RhYmxlOnBwMhAKGP2GygEg/YbKAUotCh9Db250cm9sMTMgcGN0OjEwYyBtMjlzdGFibGU6cHAyEAoY/obKASD+hsoBSi0KH0NvbnRyb2wxNCBwY3Q6MTBkIG0yOXN0YWJsZTpwcDIQChj/hsoBIP+GygFKEAoMRGVmYXVsdEdyb3VwEABSEhIEMjkuKhoEMjkuKiADKAAoA1i+3/esBRLkBgoPSW5zdGFudEV4dGVuZGVkGIDvgpYFOAFCDERlZmF1bHRHcm91cEouCiBDb250cm9sMCBwY3Q6NTBhIG0yOXN0YWJsZW1hYzpyMRAyGIWHygEghYfKAUpQCkJHcm91cDEgcGN0OjFhIG0yOXN0YWJsZW1hYzpyMiB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARiXh8oBIJeHygFKLgogQ29udHJvbDIgcGN0OjFiIG0yOXN0YWJsZW1hYzpwcDIQARiHh8oBIIeHygFKLgogQ29udHJvbDMgcGN0OjFjIG0yOXN0YWJsZW1hYzpwcDIQARiIh8oBIIiHygFKRwo5R3JvdXA0IHBjdDoxZCBtMjlzdGFibGVtYWM6cjEgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxEAEYiYfKASCJh8oBSi4KIENvbnRyb2w1IHBjdDoxZSBtMjlzdGFibGVtYWM6cHAyEAEYiofKASCKh8oBSi4KIENvbnRyb2w2IHBjdDoxZiBtMjlzdGFibGVtYWM6cHAyEAEYi4fKASCLh8oBSi4KIENvbnRyb2w3IHBjdDoxZyBtMjlzdGFibGVtYWM6cHAyEAEYjIfKASCMh8oBSi4KIENvbnRyb2w4IHBjdDoxaCBtMjlzdGFibGVtYWM6cHAyEAEYjYfKASCNh8oBSi4KIENvbnRyb2w5IHBjdDoxaSBtMjlzdGFibGVtYWM6cHAyEAEYjofKASCOh8oBSi8KIUNvbnRyb2wxMCBwY3Q6MWogbTI5c3RhYmxlbWFjOnBwMhABGI+HygEgj4fKAUovCiFDb250cm9sMTEgcGN0OjEwYSBtMjlzdGFibGVtYWM6cjIQChiWh8oBIJaHygFKMAoiQ29udHJvbDEyIHBjdDoxMGIgbTI5c3RhYmxlbWFjOnBwMhAKGJGHygEgkYfKAUowCiJDb250cm9sMTMgcGN0OjEwYyBtMjlzdGFibGVtYWM6cHAyEAoYkofKASCSh8oBSjAKIkNvbnRyb2wxNCBwY3Q6MTBkIG0yOXN0YWJsZW1hYzpwcDIQChiTh8oBIJOHygFKEAoMRGVmYXVsdEdyb3VwEABSEBIEMjkuKhoEMjkuKiADKAFYvt/3rAUSmAIKD0luc3RhbnRFeHRlbmRlZBiAi/KSBTgBQgxEZWZhdWx0R3JvdXBKIAoSQ29udHJvbDEgbTMwZGV2OnIxEAEYwIbKASDAhsoBSiAKEkNvbnRyb2wyIG0zMGRldjpyMRABGO2GygEg7YbKAUo6CixHcm91cDEgbTMwZGV2OnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MRABGMKGygEgwobKAUpDCjVHcm91cDIgbTMwZGV2OnIxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOBABGMOGygEgw4bKAUoQCgxEZWZhdWx0R3JvdXAQAFISEgQzMC4qGgQzMC4qIAEoACgDWLvLxbAOEpYCCg9JbnN0YW50RXh0ZW5kZWQYgIvykgU4AUIMRGVmYXVsdEdyb3VwSiAKEkNvbnRyb2wxIG0zMGRldjpyMRABGMSGygEgxIbKAUogChJDb250cm9sMiBtMzBkZXY6cjEQARjshsoBIOyGygFKOgosR3JvdXAxIG0zMGRldjpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEQARjGhsoBIMaGygFKQwo1R3JvdXAyIG0zMGRldjpyMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgZXNwdjoyMDgQARjHhsoBIMeGygFKEAoMRGVmYXVsdEdyb3VwEABSEBIEMzAuKhoEMzAuKiABKAFYu8vFsA4SgwMKD0luc3RhbnRFeHRlbmRlZDgBQgxEZWZhdWx0R3JvdXBKJgoYQ29udHJvbEdyb3VwMSBtMzFkZXY6cHAxEAEYmIfKASCYh8oBSnQKZkdyb3VwMSBtMzFkZXY6cHAxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBlc3B2OjIwOSBoaWRlX3ZlcmJhdGltOjEgcHJlZmV0Y2hfcmVzdWx0c19zcnA6MSBESVNBQkxFRBABGJmHygEgmYfKAUpUCkZHcm91cDIgbTMxZGV2OnBwMSB1c2VfcmVtb3RlX250cF9vbl9zdGFydHVwOjEgaGlkZV92ZXJiYXRpbToxIERJU0FCTEVEEAEYmofKASCah8oBSkQKNkdyb3VwMyBtMzFkZXY6cHAxIHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBESVNBQkxFRBABGJuHygEgm4fKAUoQCgxEZWZhdWx0R3JvdXAQAFIUEgQzMS4qGgQzMS4qIAEoACgBKAMSkQMKD0luc3RhbnRFeHRlbmRlZBiAhNyPBTgBQgxEZWZhdWx0R3JvdXBKUQpDR3JvdXAxIGVzcHY6MjA1IHVzZV9yZW1vdGVfbnRwX29uX3N0YXJ0dXA6MSBjaGFubmVsOnN0YWJsZSBESVNBQkxFRBABGMGFygEgwYXKAUpRCkNHcm91cDIgZXNwdjoyMDUgdXNlX3JlbW90ZV9udHBfb25fc3RhcnR1cDoxIGNoYW5uZWw6c3RhYmxlIERJU0FCTEVEEAkYxYXKASDFhcoBSiYKF1BhZGRpbmcxIGNoYW5uZWw6c3RhYmxlEOoDGMKFygEgwoXKAUolChdDb250cm9sMSBjaGFubmVsOnN0YWJsZRABGMOFygEgw4XKAUolChdDb250cm9sMiBjaGFubmVsOnN0YWJsZRAJGMaFygEgxoXKAUomChdQYWRkaW5nMiBjaGFubmVsOnN0YWJsZRDqAxjEhcoBIMSFygFKEAoMRGVmYXVsdEdyb3VwEABSEhIEMjcuKhoEMjguKiADKAAoARKOAgoWSW50ZXJzdGl0aWFsTWFsd2FyZTMxMBjA6cOTBTgBQgdEZWZhdWx0ShcKE2NvbmQxTWFsd2FyZUNvbnRyb2wQA0oXChNjb25kMk1hbHdhcmVOb0JyYW5kEANKFwoTY29uZDVNYWx3YXJlT25lU3RlcBADShcKE2NvbmQ3TWFsd2FyZUZlYXJNc2cQA0oZChVjb25kOU1hbHdhcmVDb2xsYWJNc2cQA0oZChVjb25kMTFNYWx3YXJlUXVlc3Rpb24QA0oXChNjb25kMTNNYWx3YXJlR29CYWNrEANKDAoHRGVmYXVsdBCzAVIiCMDZo4wFEgQyOS4qKAAoASgCKAMyBWVuLVVTMgVlbi1HQhKXAgoXSW50ZXJzdGl0aWFsUGhpc2hpbmc1NjQYwOnDkwU4AUIHRGVmYXVsdEoYChRjb25kM1BoaXNoaW5nQ29udHJvbBADShgKFGNvbmQ0UGhpc2hpbmdOb0JyYW5kEANKGAoUY29uZDZQaGlzaGluZ09uZVN0ZXAQA0oYChRjb25kOFBoaXNoaW5nRmVhck1zZxADShsKF2NvbmQxMFBoaXNoaW5nQ29sbGFiTXNnEANKGgoWY29uZDEyUGhpc2hpbmdRdWVzdGlvbhADShgKFGNvbmQxNFBoaXNoaW5nR29CYWNrEANKDAoHRGVmYXVsdBCzAVIiCMDZo4wFEgQyOS4qKAAoASgCKAMyBWVuLVVTMgVlbi1HQhKkAgoSSW50ZXJzdGl0aWFsU1NMNTE3GMDpw5MFOAFCB0RlZmF1bHRKGQoVQ29uZGl0aW9uMTVTU0xDb250cm9sEANKGQoVQ29uZGl0aW9uMTZTU0xGaXJlZm94EANKHgoaQ29uZGl0aW9uMTdTU0xGYW5jeUZpcmVmb3gQA0oaChZDb25kaXRpb24xOFNTTE5vSW1hZ2VzEANKGwoXQ29uZGl0aW9uMTlTU0xQb2xpY2VtYW4QA0obChdDb25kaXRpb24yMFNTTFN0b3BsaWdodBADShgKFENvbmRpdGlvbjIxU1NMQmFkZ3V5EANKDAoHRGVmYXVsdBCzAVIpCMDZo4wFEgsyOS4wLjE1NDMuKigAKAEoAigDMgVlbi1VUzIFZW4tR0ISWQoZTGF1bmNoZXJVc2VXZWJzdG9yZVNlYXJjaBjEm5KlBTgBQgdEaXNhYmxlSgoKBkVuYWJsZRAKSgsKB0Rpc2FibGUQWlISEgwyOS4wLjE1NDcuMzIoACgDElEKEU1hbmFnZWRNb2RlTGF1bmNoGID46ZQFOAFCCEluYWN0aXZlSgoKBkFjdGl2ZRBkSgwKCEluYWN0aXZlEABSEBIEMzAuKiAAIAEoACgBKAISTQoRTWFuYWdlZE1vZGVMYXVuY2gYgPjplAU4AUIISW5hY3RpdmVKCgoGQWN0aXZlEGRKDAoISW5hY3RpdmUQAFIMEgQzMC4qIAAgASgDEpICChhNb3N0VmlzaXRlZFRpbGVQbGFjZW1lbnQYgP6ikgU4AUIHRGVmYXVsdEoWChJPbmVFaWdodF9BX0ZsaXBwZWQQA0oOCgpPbmVFaWdodF9CEANKFgoST25lRWlnaHRfQ19GbGlwcGVkEANKDgoKT25lRWlnaHRfRBADShUKEU9uZUZvdXJfQV9GbGlwcGVkEANKDQoJT25lRm91cl9CEANKFQoRT25lRm91cl9DX0ZsaXBwZWQQA0oNCglPbmVGb3VyX0QQA0oLCgdDb250cm9sEANKFAoQRG9udFNob3dPcGVuVGFicxADSgsKB0RlZmF1bHQQRlIZEgsyOC4wLjE0OTYuMCABIAAoACgBKAIoAxKSAQoUTW91c2VFdmVudFByZWNvbm5lY3QYxLSNlgU4AEIIRGlzYWJsZWRKDQoJTW91c2VEb3duEApKDQoJTW91c2VPdmVyEABKEgoOVGFwVW5jb25maXJtZWQQAEoLCgdUYXBEb3duEABKCwoHQ29udHJvbBAKSgwKCERpc2FibGVkEFBSDhIEMjkuKiACKAAoASgCEpgBChRNb3VzZUV2ZW50UHJlY29ubmVjdBjEtI2WBTgAQghEaXNhYmxlZEoNCglNb3VzZURvd24QCkoNCglNb3VzZU92ZXIQAEoSCg5UYXBVbmNvbmZpcm1lZBAASgsKB1RhcERvd24QAEoLCgdDb250cm9sEApKDAoIRGlzYWJsZWQQUFIUEgQyOS4qIAAgASgAKAEoAigDKAQSXQoMTmV3TWVudVN0eWxlGIDQn40FOAFCB0RlZmF1bHRKCwoHRGVmYXVsdBAASg0KCE5ld1N0eWxlEOYHSgwKCE9sZFN0eWxlEAJSEhIEMjYuKhoEMjcuKiADKAAoAxJ+CgxOZXdNZW51U3R5bGUYgP6ikgU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EABKDAoIQ29tcGFjdDEQAEoMCghDb21wYWN0MhBkShIKDkhpZ2hlckNvbnRyYXN0EABKEAoMQ29udHJvbEdyb3VwEABSDhIEMjguKiABIAAoACgDEn4KDE5ld01lbnVTdHlsZRiA/qKSBTgBQgdEZWZhdWx0SgsKB0RlZmF1bHQQAEoMCghDb21wYWN0MRAASgwKCENvbXBhY3QyEGRKEgoOSGlnaGVyQ29udHJhc3QQAEoQCgxDb250cm9sR3JvdXAQAFIOEgQyOC4qIAMgAigAKAMSVwoMTmV3VGFiQnV0dG9uGIC1jZYFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBBiSgsKB0NvbnRyb2wQAUoICgRQbHVzEAFSEhIMMjEuMC4xMTgwLjE1IAMoABLcAQoaT21uaWJveEJ1bmRsZWRFeHBlcmltZW50VjEYxM6rlwU4AUIIU3RhbmRhcmRKSwoHUmVvcmRlchAKMj4KH1Jlb3JkZXJGb3JMZWdhbERlZmF1bHRNYXRjaDoqOioSG1Jlb3JkZXJGb3JMZWdhbERlZmF1bHRNYXRjaEo2ChRTZWFyY2hIaXN0b3J5RGlzYWJsZRAAMhwKEVNlYXJjaEhpc3Rvcnk6KjoqEgdEaXNhYmxlSgwKCFN0YW5kYXJkEFpSGQjEgK6OBRILMzAuMC4xNTk5LjAgACABIAISzQEKHk9tbmlib3hSZXBsYWNlSFVQQW5kTmV3U2NvcmluZxjAhbOQBTgBQghTdGFuZGFyZEoMCghTdGFuZGFyZBA8Sg0KCVN0YW5kYXJkMhAKSh0KGUhRUC1wb3N0cGVyaW9kLVJlcGxhY2VIVVAQCkoOCgpOZXdTY29yaW5nEApKNAowSFFQLXBvc3RwZXJpb2QtUmVwbGFjZUhVUF9OZXctcG9zdHBlcmlvZC1TY29yaW5nEApSFwjAn4uHBRILMjguMC4xNDk5LiogASACEmQKFE9tbmlib3hTZWFyY2hIaXN0b3J5GMSQq5AFOAFCCFN0YW5kYXJkShMKD1ByZXZlbnRJbmxpbmluZxAKSgsKB0Rpc2FibGUQCkoMCghTdGFuZGFyZBBQUgoSBDMwLiogACABEm8KF09tbmlib3hTaG9ydGN1dHNTY29yaW5nGMTKiaAFOAFCCFN0YW5kYXJkSgwKCFN0YW5kYXJkEFpKFQoRTWF4UmVsZXZhbmNlXzEzOTkQClIdCMSAro4FEgsyOS4wLjE1NDcuMBoEMjkuKiABIAISZQoQT21uaWJveFN0b3BUaW1lchjA0ZmTBTgBQghTdGFuZGFyZEoSCghTdGFuZGFyZBD0Axi3hcoBShYKDFVzZVN0b3BUaW1lchD0Axi4hcoBUhMIwMzUiwUSCzI4LjAuMTQ4OC4wEmcKFE91dGRhdGVkSW5zdGFsbENoZWNrGMS0jZYFOAFCB0RlZmF1bHRKGgoWMTJXZWVrc091dGRhdGVkSW5zdGFsbBABSgsKB0RlZmF1bHQQAFIVEgsyNy4wLjE0NDcuMBoEMzAuKigAElYKF1ByZXJlbmRlckxvY2FsUHJlZGljdG9yGMS0jZYFOABCCERpc2FibGVkSgsKB0VuYWJsZWQQZEoMCghEaXNhYmxlZBAAUg4SBDI5LiogAigAKAEoAhJsChdQcmVyZW5kZXJMb2NhbFByZWRpY3RvchjEh6GMBTgAQghEaXNhYmxlZEoNCghEaXNhYmxlZBDUB0oLCgdFbmFibGVkEApKCwoHQ29udHJvbBAKUhYSBDI1LioaBDI4LiogAyACKAAoASgCEmYKF1ByZXJlbmRlckxvY2FsUHJlZGljdG9yGMS0jZYFOABCCERpc2FibGVkSgwKCERpc2FibGVkEGRKDAoHRW5hYmxlZBCgBkoLCgdDb250cm9sEGRSEBIEMjUuKiAAIAEoACgBKAISWQouUHJlcmVuZGVyTG9jYWxQcmVkaWN0b3JNYXhDb25jdXJyZW50UHJlcmVuZGVycxjEtI2WBTgAQgExSgUKATMQZEoFCgExEABSDhIEMjkuKiACKAAoASgCEnAKLlByZXJlbmRlckxvY2FsUHJlZGljdG9yTWF4Q29uY3VycmVudFByZXJlbmRlcnMYxLSNlgU4AUIBMUoFCgExEBRKBQoBMhAUSgUKATMQFEoFCgE0EBRKBQoBNRAUUhASBDI5LiogACABKAAoASgCEmMKJVByZXJlbmRlckxvY2FsUHJlZGljdG9yUHJlcmVuZGVyTGFuY2gYxLSNlgU4AEIHRW5hYmxlZEoMCghEaXNhYmxlZBAASgsKB0VuYWJsZWQQZFIOEgQyOS4qIAIoACgBKAISYwolUHJlcmVuZGVyTG9jYWxQcmVkaWN0b3JQcmVyZW5kZXJMYW5jaBjEtI2WBTgBQgdFbmFibGVkSgwKCERpc2FibGVkEGRKCwoHRW5hYmxlZBAAUg4SBDI5LiogAygAKAEoAhJnCjtQcmVyZW5kZXJMb2NhbFByZWRpY3RvclByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcxjEtI2WBTgAQgEwSgYKAjMwEGRKBQoBMBAAUg4SBDI5LiogAigAKAEoAhJxCjtQcmVyZW5kZXJMb2NhbFByZWRpY3RvclByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcxjEtI2WBTgBQgEwSgUKATAQMkoGCgIzMBAZSgYKAjYwEBlSEBIEMjkuKiAAIAEoACgBKAISbgoqUHJlcmVuZGVyTG9jYWxQcmVkaWN0b3JQcmVyZW5kZXJUVExTZWNvbmRzGMS0jZYFOAFCAzE4MEoHCgMxODAQNEoHCgMxMjAQEEoHCgMyNDAQEEoGCgI2MBAQUhASBDI5LiogACABKAAoASgCEtEKChtQcmVyZW5kZXJMb2NhbFByZWRpY3RvclNwZWMYxLSNlgU4AUIXTG9jYWxQcmVkaWN0b3I9RGlzYWJsZWRKggEKfWlkPTE6TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEMUCSoEBCn1pZD0yOkxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMBBLSnwKeExvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0yOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMBBLSnwKeExvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0xOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMBBLSnsKd0xvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0wEEtKfAp4TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTYwEEtKlgEKkQFMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzA6UHJlcmVuZGVyTGF1bmNoPURpc2FibGVkEEtKnAEKlwFMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzA6UHJlcmVuZGVyQWx3YXlzQ29udHJvbD1FbmFibGVkEEtKqwEKpgFMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzA6UHJlcmVuZGVyTGF1bmNoPURpc2FibGVkOlNraXBMb2dnZWRJbj1FbmFibGVkEEtKGwoXTG9jYWxQcmVkaWN0b3I9RGlzYWJsZWQQS1IOEgQzMC4qIAIoACgBKAIS0woKG1ByZXJlbmRlckxvY2FsUHJlZGljdG9yU3BlYxjEtI2WBTgBQhdMb2NhbFByZWRpY3Rvcj1EaXNhYmxlZEqCAQp9aWQ9MTpMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9MzAQxQJKgQEKfWlkPTI6TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEEtKfAp4TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTI6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEEtKfAp4TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTE6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTMwEEtKewp3TG9jYWxQcmVkaWN0b3I9RW5hYmxlZDpTaWRlRWZmZWN0RnJlZVdoaXRlbGlzdD1FbmFibGVkOk1heENvbmN1cnJlbnRQcmVyZW5kZXJzPTM6UHJlcmVuZGVyUHJpb3JpdHlIYWxmTGlmZVRpbWVTZWNvbmRzPTAQS0p8CnhMb2NhbFByZWRpY3Rvcj1FbmFibGVkOlNpZGVFZmZlY3RGcmVlV2hpdGVsaXN0PUVuYWJsZWQ6TWF4Q29uY3VycmVudFByZXJlbmRlcnM9MzpQcmVyZW5kZXJQcmlvcml0eUhhbGZMaWZlVGltZVNlY29uZHM9NjAQS0qWAQqRAUxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMDpQcmVyZW5kZXJMYXVuY2g9RGlzYWJsZWQQS0qcAQqXAUxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMDpQcmVyZW5kZXJBbHdheXNDb250cm9sPUVuYWJsZWQQS0qrAQqmAUxvY2FsUHJlZGljdG9yPUVuYWJsZWQ6U2lkZUVmZmVjdEZyZWVXaGl0ZWxpc3Q9RW5hYmxlZDpNYXhDb25jdXJyZW50UHJlcmVuZGVycz0zOlByZXJlbmRlclByaW9yaXR5SGFsZkxpZmVUaW1lU2Vjb25kcz0zMDpQcmVyZW5kZXJMYXVuY2g9RGlzYWJsZWQ6U2tpcExvZ2dlZEluPUVuYWJsZWQQS0obChdMb2NhbFByZWRpY3Rvcj1EaXNhYmxlZBBLUhASBDMwLiogACABKAAoASgCElYKF1ByZXJlbmRlckxvY2FsUHJlZGljdG9yGMS0jZYFOAFCCERpc2FibGVkSgsKB0VuYWJsZWQQAUoMCghEaXNhYmxlZBBjUg4SBDI5LiogAygAKAEoAhJWChJNYW51YWxSZXNldFByb2ZpbGUYxLPTlQU4AUIHRGlzYWJsZUoKCgZFbmFibGUQZEoLCgdEaXNhYmxlEABSFhIEMjkuKiAAIAEgAiADKAAoASgDKAISqQEKD1Byb2dyZXNzaXZlU2NhbhjEtI2WBTgBQgdEZWZhdWx0ShUKETMzUGVyY2VudF80TWluTWF4EBFKFQoRNTBQZXJjZW50XzRNaW5NYXgQEUoVChE1MFBlcmNlbnRfOE1pbk1heBARShYKEjEwMFBlcmNlbnRfOE1pbk1heBARSgwKCEZ1bGxTY2FuEBFKDAoHRGVmYXVsdBCTB1IMEgQyOS4qIAAgASgDEpgCCgRRVUlDGMSRiJYFOABCCERpc2FibGVkShAKB0VuYWJsZWQQBRj/kcoBShUKDEh0dHBzRW5hYmxlZBAAGP+RygFKEAoHQ29udHJvbBAFGICSygFKEQoIRGlzYWJsZWQQWhiAksoBSiAKDkRpc2FibGVkQnlGbGFnEAAqDGRpc2FibGUtcXVpY0oqChNIdHRwc0VuYWJsZWRzQnlGbGFnEAAqEWVuYWJsZS1xdWljLWh0dHBzSisKE0h0dHBzRGlzYWJsZWRCeUZsYWcQACoSZGlzYWJsZS1xdWljLWh0dHBzSh4KDUVuYWJsZWRCeUZsYWcQACoLZW5hYmxlLXF1aWNSFRILMjkuMC4xNTQ2LjAgACgAKAEoAhI2Cg5TQkludGVyc3RpdGlhbBjA0o2JBTgBQgJWMUoGCgJWMRABSgYKAlYyEGNSCCgAKAEoAigDErABChhTZW5kRmVlZGJhY2tMaW5rTG9jYXRpb24YwJKCkQU4AUIHZGVmYXVsdEoQCgdkZWZhdWx0ECgYqYXKAUoQCgdjb250cm9sEA8Y+ITKAUoRCghhbHQtdGV4dBAPGPyEygFKFQoMYWx0LWxvY2F0aW9uEA8YgoXKAUoeChVhbHQtdGV4dC1hbmQtbG9jYXRpb24QDxiIhcoBUhUSCzI3LjAuMTQ1My4qIAIoACgCKAESrAEKGFNlbmRGZWVkYmFja0xpbmtMb2NhdGlvbhjAkoKRBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQKBiphcoBShAKB2NvbnRyb2wQDxj5hMoBShEKCGFsdC10ZXh0EA8Y/4TKAUoVCgxhbHQtbG9jYXRpb24QDxiFhcoBSh4KFWFsdC10ZXh0LWFuZC1sb2NhdGlvbhAPGIuFygFSERILMjcuMC4xNDUzLiogAigDErIBChhTZW5kRmVlZGJhY2tMaW5rTG9jYXRpb24YwJKCkQU4AUIHZGVmYXVsdEoQCgdkZWZhdWx0ECgYqYXKAUoQCgdjb250cm9sEA8Y+ITKAUoRCghhbHQtdGV4dBAPGPqEygFKFQoMYWx0LWxvY2F0aW9uEA8YgIXKAUoeChVhbHQtdGV4dC1hbmQtbG9jYXRpb24QDxiGhcoBUhcSCzI3LjAuMTQ1My4qIAEgACgAKAIoARKuAQoYU2VuZEZlZWRiYWNrTGlua0xvY2F0aW9uGMCSgpEFOAFCB2RlZmF1bHRKEAoHZGVmYXVsdBAoGKmFygFKEAoHY29udHJvbBAPGPmEygFKEQoIYWx0LXRleHQQDxj9hMoBShUKDGFsdC1sb2NhdGlvbhAPGIOFygFKHgoVYWx0LXRleHQtYW5kLWxvY2F0aW9uEA8YiYXKAVITEgsyNy4wLjE0NTMuKiABIAAoAxKwAQoYU2VuZEZlZWRiYWNrTGlua0xvY2F0aW9uGMCSgpEFOAFCB2RlZmF1bHRKEAoHZGVmYXVsdBA8GKmFygFKEAoHY29udHJvbBAKGPiEygFKEQoIYWx0LXRleHQQChj7hMoBShUKDGFsdC1sb2NhdGlvbhAKGIGFygFKHgoVYWx0LXRleHQtYW5kLWxvY2F0aW9uEAoYh4XKAVIVEgsyNy4wLjE0NTMuKiADKAAoAigBEqwBChhTZW5kRmVlZGJhY2tMaW5rTG9jYXRpb24YwJKCkQU4AUIHZGVmYXVsdEoQCgdkZWZhdWx0EDwYqYXKAUoQCgdjb250cm9sEAoY+YTKAUoRCghhbHQtdGV4dBAKGP6EygFKFQoMYWx0LWxvY2F0aW9uEAoYhIXKAUoeChVhbHQtdGV4dC1hbmQtbG9jYXRpb24QChiKhcoBUhESCzI3LjAuMTQ1My4qIAMoAxJ1ChRTaG93QXBwTGF1bmNoZXJQcm9tbzgBQgdEZWZhdWx0SiAKF1Nob3dQcm9tb1VudGlsRGlzbWlzc2VkEDIYnobKAUobChJSZXNldFNob3dQcm9tb1ByZWYQMhifhsoBSgsKB0RlZmF1bHQQAFIGIAAgASgAEmIKE1Nob3dQcm9maWxlU3dpdGNoZXIYwMrgigU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EFBKCwoHY29udHJvbBAKSg4KCkFsd2F5c1Nob3cQClIQEgQyNi4qIAAgASgAKAEoAhJXCg9TaWRlbG9hZFdpcGVvdXQYxJydiwU4AUIIRGlzYWJsZWRKDAoIRGlzYWJsZWQQAEoLCgdFbmFibGVkEGRSFxILMjUuMC4xMzYwLiogACABIAIgAygAEncKGlNpZ25JblRvQ2hyb21lQ29uZmlybWF0aW9uGMDK4IoFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBBQShQKEGNvbnRyb2xfRElTQUJMRUQQCkoTCg9CdWJibGVfRElTQUJMRUQQClIQEgQyNi4qIAAgASgAKAEoAhKEAQoQU2ltcGxlQ2FjaGVUcmlhbBjEtI2WBTgBQgxFeHBlcmltZW50Tm9KEQoNRXhwZXJpbWVudFllcxAtShIKDkV4cGVyaW1lbnRZZXMyEAVKFQoRRXhwZXJpbWVudENvbnRyb2wQLUoQCgxFeHBlcmltZW50Tm8QBVIKEgQyOS4qIAIoBBKGAQoQU2ltcGxlQ2FjaGVUcmlhbBjEtI2WBTgBQgxFeHBlcmltZW50Tm9KEAoMRXhwZXJpbWVudE5vEABKEQoNRXhwZXJpbWVudFllcxBQShIKDkV4cGVyaW1lbnRZZXMyEApKFQoRRXhwZXJpbWVudENvbnRyb2wQClIMEgQyOC4qIAAgASgEEosBCjBTaW1wbGVDYWNoZUluZGV4Rmx1c2hEZWxheV9Gb3JlZ3JvdW5kX0JhY2tncm91bmQYxLSNlgU4AUIJMjAwMDBfMTAwSgwKCDUwMDBfMTAwEBlKDAoIMTAwMF8xMDAQGUoLCgcxMDAwXzIwEBlKDQoJMjAwMDBfMTAwEBlSDBIEMjkuKiAAIAEoBBJhChVTaW1wbGVDYWNoZU1heFRocmVhZHMYxLSNlgU4AEICNTBKBQoBMRAKSgUKATUQEkoGCgIxMBASSgYKAjIwEBJKBgoCMzAQEkoGCgI1MBASUg4SBDI5LiogACABIAIoBBKVAwoeU3BlY3VsYXRpdmVSZXNvdXJjZVByZWZldGNoaW5nGICc44oFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEChKEAoMTGVhcm5pbmdIb3N0EApKDwoLTGVhcm5pbmdVUkwQCkoMCghMZWFybmluZxAKShMKD1ByZWZldGNoaW5nSG9zdBAKShIKDlByZWZldGNoaW5nVVJMEApKDwoLUHJlZmV0Y2hpbmcQCkocChhQcmVmZXRjaGluZ0xvd0NvbmZpZGVuY2UQAEodChlQcmVmZXRjaGluZ0hpZ2hDb25maWRlbmNlEABKHAoYUHJlZmV0Y2hpbmdNb3JlUmVzb3VyY2VzEABKEwoPTGVhcm5pbmdTbWFsbERCEABKFgoSUHJlZmV0Y2hpbmdTbWFsbERCEABKIwofUHJlZmV0Y2hpbmdTbWFsbERCTG93Q29uZmlkZW5jZRAASiQKIFByZWZldGNoaW5nU21hbGxEQkhpZ2hDb25maWRlbmNlEABSFRILMjUuMC4xMzY0LiogAigAKAEoAhKXAwoeU3BlY3VsYXRpdmVSZXNvdXJjZVByZWZldGNoaW5nGICc44oFOAFCCERpc2FibGVkSgwKCERpc2FibGVkEChKEAoMTGVhcm5pbmdIb3N0EApKDwoLTGVhcm5pbmdVUkwQCkoMCghMZWFybmluZxAKShMKD1ByZWZldGNoaW5nSG9zdBAKShIKDlByZWZldGNoaW5nVVJMEApKDwoLUHJlZmV0Y2hpbmcQCkocChhQcmVmZXRjaGluZ0xvd0NvbmZpZGVuY2UQAEodChlQcmVmZXRjaGluZ0hpZ2hDb25maWRlbmNlEABKHAoYUHJlZmV0Y2hpbmdNb3JlUmVzb3VyY2VzEABKEwoPTGVhcm5pbmdTbWFsbERCEABKFgoSUHJlZmV0Y2hpbmdTbWFsbERCEABKIwofUHJlZmV0Y2hpbmdTbWFsbERCTG93Q29uZmlkZW5jZRAASiQKIFByZWZldGNoaW5nU21hbGxEQkhpZ2hDb25maWRlbmNlEABSFxILMjUuMC4xMzY0LiogACABKAAoASgCElIKClNwZWxsY2hlY2sYxNu0jQU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EGRKDwoLU3VnZ2VzdGlvbnMQAFIVEgsyNi4wLjE0MDMuMCACIAEgACgAElQKClNwZWxsY2hlY2sYxNu0jQU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EGRKDwoLU3VnZ2VzdGlvbnMQAFIXEgsyNi4wLjE0MDMuMCADIAIgASgCKAMSTgoKU3BlbGxjaGVjaxjE27SNBTgBQgdEZWZhdWx0SgsKB0RlZmF1bHQQZEoPCgtTdWdnZXN0aW9ucxAAUhESCzI2LjAuMTQwMy4wIAMoABJPCg1FbmFibGVTdGFnZTNEGICI/oYFOAFCB2VuYWJsZWRKDAoHZW5hYmxlZBC2B0oPCgtibGFja2xpc3RlZBAyUg4SBDIyLiogACABIAIoABJRCg1FbmFibGVTdGFnZTNEGICI/oYFOAFCB2VuYWJsZWRKDAoHZW5hYmxlZBDoB0oPCgtibGFja2xpc3RlZBAAUhASBDIyLioaBDIyLiogAygAEmgKDUVuYWJsZVN0YWdlM0QYgN+/iQU4AUIPZW5hYmxlZF9kZWZhdWx0ShMKD2VuYWJsZWRfZGVmYXVsdBAASgwKB2VuYWJsZWQQ6AdKDwoLYmxhY2tsaXN0ZWQQAFIKEgQyMy4qIAMoABKrAgoLVGFiRXZpY3Rpb24YgP6ikgU4AUIHRGVmYXVsdEoLCgdEZWZhdWx0EABKCwoHQ29udHJvbBAKShEKDU1lbW9yeUtlZXBBbGwQAUoTCg9NZW1vcnlFdmljdEhhbGYQCkoTCg9NZW1vcnlLZWVwVGhyZWUQCkoUChBNZW1vcnlFdmljdFRocmVlEApKGAoUQmFja2dyb3VuZGluZ0tlZXBBbGwQCkoaChZCYWNrZ3JvdW5kaW5nRXZpY3RIYWxmEApKGAoUQmFja2dyb3VuZGluZ0tlZXBPbmUQCkobChdCYWNrZ3JvdW5kaW5nRXZpY3RUaHJlZRAKShIKDk5vUHJlcmVuZGVyaW5nEApKDwoLTm9RdWlja2JhY2sQClIMEgQyOS4qIAAgAigFEqoCCgtUYWJFdmljdGlvbhiAjM+YBTgBQgdEZWZhdWx0SgwKB0RlZmF1bHQQ3gdKCwoHQ29udHJvbBABShEKDU1lbW9yeUtlZXBBbGwQAEoTCg9NZW1vcnlFdmljdEhhbGYQAUoTCg9NZW1vcnlLZWVwVGhyZWUQAUoUChBNZW1vcnlFdmljdFRocmVlEAFKGAoUQmFja2dyb3VuZGluZ0tlZXBBbGwQAUoaChZCYWNrZ3JvdW5kaW5nRXZpY3RIYWxmEAFKGAoUQmFja2dyb3VuZGluZ0tlZXBPbmUQAUobChdCYWNrZ3JvdW5kaW5nRXZpY3RUaHJlZRABShIKDk5vUHJlcmVuZGVyaW5nEAFKDwoLTm9RdWlja2JhY2sQAVIKEgQyOS4qIAMoBRJOChNUZXN0MFBlcmNlbnREZWZhdWx0GICckqUFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBAASgwKCGdyb3VwXzAxEGRKCwoHZG9nZm9vZBAAEtoBChxVTUEtRHluYW1pYy1Vbmlmb3JtaXR5LVRyaWFsGICckqUFOAFCB0RlZmF1bHRKFAoGR3JvdXAxEAEYv7bJASC/tskBShQKBkdyb3VwMhAJGMC2yQEgwLbJAUoVCgZHcm91cDMQ6gMYwbbJASDBtskBShQKBkdyb3VwNBABGMK2yQEgwrbJAUoUCgZHcm91cDUQCRjDtskBIMO2yQFKFQoGR3JvdXA2EOoDGMS2yQEgxLbJAUoVCgdEZWZhdWx0EAAYxbbJASDFtskBUgwSBDI3LiogAygAKAESvQEKH1VNQS1Vbmlmb3JtaXR5LVRyaWFsLTEwLVBlcmNlbnQYgJySpQU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EAFKDAoIZ3JvdXBfMDEQAUoMCghncm91cF8wMhABSgwKCGdyb3VwXzAzEAFKDAoIZ3JvdXBfMDQQAUoMCghncm91cF8wNRABSgwKCGdyb3VwXzA2EAFKDAoIZ3JvdXBfMDcQAUoMCghncm91cF8wOBABSgwKCGdyb3VwXzA5EAESpg8KHlVNQS1Vbmlmb3JtaXR5LVRyaWFsLTEtUGVyY2VudBiAnJKlBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQARigtckBShEKCGdyb3VwXzAxEAEYobXJAUoRCghncm91cF8wMhABGKK1yQFKEQoIZ3JvdXBfMDMQARijtckBShEKCGdyb3VwXzA0EAEYpLXJAUoRCghncm91cF8wNRABGKW1yQFKEQoIZ3JvdXBfMDYQARimtckBShEKCGdyb3VwXzA3EAEYp7XJAUoRCghncm91cF8wOBABGKi1yQFKEQoIZ3JvdXBfMDkQARiptckBShEKCGdyb3VwXzEwEAEYqrXJAUoRCghncm91cF8xMRABGKu1yQFKEQoIZ3JvdXBfMTIQARistckBShEKCGdyb3VwXzEzEAEYrbXJAUoRCghncm91cF8xNBABGK61yQFKEQoIZ3JvdXBfMTUQARivtckBShEKCGdyb3VwXzE2EAEYsLXJAUoRCghncm91cF8xNxABGLG1yQFKEQoIZ3JvdXBfMTgQARiytckBShEKCGdyb3VwXzE5EAEYs7XJAUoRCghncm91cF8yMBABGLS1yQFKEQoIZ3JvdXBfMjEQARi1tckBShEKCGdyb3VwXzIyEAEYtrXJAUoRCghncm91cF8yMxABGLe1yQFKEQoIZ3JvdXBfMjQQARi4tckBShEKCGdyb3VwXzI1EAEYubXJAUoRCghncm91cF8yNhABGLq1yQFKEQoIZ3JvdXBfMjcQARi7tckBShEKCGdyb3VwXzI4EAEYvLXJAUoRCghncm91cF8yORABGL21yQFKEQoIZ3JvdXBfMzAQARi+tckBShEKCGdyb3VwXzMxEAEYv7XJAUoRCghncm91cF8zMhABGMC1yQFKEQoIZ3JvdXBfMzMQARjBtckBShEKCGdyb3VwXzM0EAEYwrXJAUoRCghncm91cF8zNRABGMO1yQFKEQoIZ3JvdXBfMzYQARjEtckBShEKCGdyb3VwXzM3EAEYxbXJAUoRCghncm91cF8zOBABGMa1yQFKEQoIZ3JvdXBfMzkQARjHtckBShEKCGdyb3VwXzQwEAEYyLXJAUoRCghncm91cF80MRABGMm1yQFKEQoIZ3JvdXBfNDIQARjKtckBShEKCGdyb3VwXzQzEAEYy7XJAUoRCghncm91cF80NBABGMy1yQFKEQoIZ3JvdXBfNDUQARjNtckBShEKCGdyb3VwXzQ2EAEYzrXJAUoRCghncm91cF80NxABGM+1yQFKEQoIZ3JvdXBfNDgQARjQtckBShEKCGdyb3VwXzQ5EAEY0bXJAUoRCghncm91cF81MBABGNK1yQFKEQoIZ3JvdXBfNTEQARjTtckBShEKCGdyb3VwXzUyEAEY1LXJAUoRCghncm91cF81MxABGNW1yQFKEQoIZ3JvdXBfNTQQARjWtckBShEKCGdyb3VwXzU1EAEY17XJAUoRCghncm91cF81NhABGNi1yQFKEQoIZ3JvdXBfNTcQARjZtckBShEKCGdyb3VwXzU4EAEY2rXJAUoRCghncm91cF81ORABGNu1yQFKEQoIZ3JvdXBfNjAQARjctckBShEKCGdyb3VwXzYxEAEY3bXJAUoRCghncm91cF82MhABGN61yQFKEQoIZ3JvdXBfNjMQARjftckBShEKCGdyb3VwXzY0EAEY4LXJAUoRCghncm91cF82NRABGOG1yQFKEQoIZ3JvdXBfNjYQARjitckBShEKCGdyb3VwXzY3EAEY47XJAUoRCghncm91cF82OBABGOS1yQFKEQoIZ3JvdXBfNjkQARjltckBShEKCGdyb3VwXzcwEAEY5rXJAUoRCghncm91cF83MRABGOe1yQFKEQoIZ3JvdXBfNzIQARjotckBShEKCGdyb3VwXzczEAEY6bXJAUoRCghncm91cF83NBABGOq1yQFKEQoIZ3JvdXBfNzUQARjrtckBShEKCGdyb3VwXzc2EAEY7LXJAUoRCghncm91cF83NxABGO21yQFKEQoIZ3JvdXBfNzgQARjutckBShEKCGdyb3VwXzc5EAEY77XJAUoRCghncm91cF84MBABGPC1yQFKEQoIZ3JvdXBfODEQARjxtckBShEKCGdyb3VwXzgyEAEY8rXJAUoRCghncm91cF84MxABGPO1yQFKEQoIZ3JvdXBfODQQARj0tckBShEKCGdyb3VwXzg1EAEY9bXJAUoRCghncm91cF84NhABGPa1yQFKEQoIZ3JvdXBfODcQARj3tckBShEKCGdyb3VwXzg4EAEY+LXJAUoRCghncm91cF84ORABGPm1yQFKEQoIZ3JvdXBfOTAQARj6tckBShEKCGdyb3VwXzkxEAEY+7XJAUoRCghncm91cF85MhABGPy1yQFKEQoIZ3JvdXBfOTMQARj9tckBShEKCGdyb3VwXzk0EAEY/rXJAUoRCghncm91cF85NRABGP+1yQFKEQoIZ3JvdXBfOTYQARiAtskBShEKCGdyb3VwXzk3EAEYgbbJAUoRCghncm91cF85OBABGIK2yQFKEQoIZ3JvdXBfOTkQARiDtskBUggoACgBKAIoAxKuCwoeVU1BLVVuaWZvcm1pdHktVHJpYWwtMS1QZXJjZW50GICckqUFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBABSgwKCGdyb3VwXzAxEAFKDAoIZ3JvdXBfMDIQAUoMCghncm91cF8wMxABSgwKCGdyb3VwXzA0EAFKDAoIZ3JvdXBfMDUQAUoMCghncm91cF8wNhABSgwKCGdyb3VwXzA3EAFKDAoIZ3JvdXBfMDgQAUoMCghncm91cF8wORABSgwKCGdyb3VwXzEwEAFKDAoIZ3JvdXBfMTEQAUoMCghncm91cF8xMhABSgwKCGdyb3VwXzEzEAFKDAoIZ3JvdXBfMTQQAUoMCghncm91cF8xNRABSgwKCGdyb3VwXzE2EAFKDAoIZ3JvdXBfMTcQAUoMCghncm91cF8xOBABSgwKCGdyb3VwXzE5EAFKDAoIZ3JvdXBfMjAQAUoMCghncm91cF8yMRABSgwKCGdyb3VwXzIyEAFKDAoIZ3JvdXBfMjMQAUoMCghncm91cF8yNBABSgwKCGdyb3VwXzI1EAFKDAoIZ3JvdXBfMjYQAUoMCghncm91cF8yNxABSgwKCGdyb3VwXzI4EAFKDAoIZ3JvdXBfMjkQAUoMCghncm91cF8zMBABSgwKCGdyb3VwXzMxEAFKDAoIZ3JvdXBfMzIQAUoMCghncm91cF8zMxABSgwKCGdyb3VwXzM0EAFKDAoIZ3JvdXBfMzUQAUoMCghncm91cF8zNhABSgwKCGdyb3VwXzM3EAFKDAoIZ3JvdXBfMzgQAUoMCghncm91cF8zORABSgwKCGdyb3VwXzQwEAFKDAoIZ3JvdXBfNDEQAUoMCghncm91cF80MhABSgwKCGdyb3VwXzQzEAFKDAoIZ3JvdXBfNDQQAUoMCghncm91cF80NRABSgwKCGdyb3VwXzQ2EAFKDAoIZ3JvdXBfNDcQAUoMCghncm91cF80OBABSgwKCGdyb3VwXzQ5EAFKDAoIZ3JvdXBfNTAQAUoMCghncm91cF81MRABSgwKCGdyb3VwXzUyEAFKDAoIZ3JvdXBfNTMQAUoMCghncm91cF81NBABSgwKCGdyb3VwXzU1EAFKDAoIZ3JvdXBfNTYQAUoMCghncm91cF81NxABSgwKCGdyb3VwXzU4EAFKDAoIZ3JvdXBfNTkQAUoMCghncm91cF82MBABSgwKCGdyb3VwXzYxEAFKDAoIZ3JvdXBfNjIQAUoMCghncm91cF82MxABSgwKCGdyb3VwXzY0EAFKDAoIZ3JvdXBfNjUQAUoMCghncm91cF82NhABSgwKCGdyb3VwXzY3EAFKDAoIZ3JvdXBfNjgQAUoMCghncm91cF82ORABSgwKCGdyb3VwXzcwEAFKDAoIZ3JvdXBfNzEQAUoMCghncm91cF83MhABSgwKCGdyb3VwXzczEAFKDAoIZ3JvdXBfNzQQAUoMCghncm91cF83NRABSgwKCGdyb3VwXzc2EAFKDAoIZ3JvdXBfNzcQAUoMCghncm91cF83OBABSgwKCGdyb3VwXzc5EAFKDAoIZ3JvdXBfODAQAUoMCghncm91cF84MRABSgwKCGdyb3VwXzgyEAFKDAoIZ3JvdXBfODMQAUoMCghncm91cF84NBABSgwKCGdyb3VwXzg1EAFKDAoIZ3JvdXBfODYQAUoMCghncm91cF84NxABSgwKCGdyb3VwXzg4EAFKDAoIZ3JvdXBfODkQAUoMCghncm91cF85MBABSgwKCGdyb3VwXzkxEAFKDAoIZ3JvdXBfOTIQAUoMCghncm91cF85MxABSgwKCGdyb3VwXzk0EAFKDAoIZ3JvdXBfOTUQAUoMCghncm91cF85NhABSgwKCGdyb3VwXzk3EAFKDAoIZ3JvdXBfOTgQAUoMCghncm91cF85ORABUgQoBCgFEncKH1VNQS1Vbmlmb3JtaXR5LVRyaWFsLTIwLVBlcmNlbnQYgJySpQU4AUIHZGVmYXVsdEoLCgdkZWZhdWx0EAFKDAoIZ3JvdXBfMDEQAUoMCghncm91cF8wMhABSgwKCGdyb3VwXzAzEAFKDAoIZ3JvdXBfMDQQARJNCh9VTUEtVW5pZm9ybWl0eS1UcmlhbC01MC1QZXJjZW50GICckqUFOAFCB2RlZmF1bHRKCwoHZGVmYXVsdBABSgwKCGdyb3VwXzAxEAEStgMKHlVNQS1Vbmlmb3JtaXR5LVRyaWFsLTUtUGVyY2VudBiAnJKlBTgBQgdkZWZhdWx0ShAKB2RlZmF1bHQQARiEtskBShEKCGdyb3VwXzAxEAEYhbbJAUoRCghncm91cF8wMhABGIa2yQFKEQoIZ3JvdXBfMDMQARiHtskBShEKCGdyb3VwXzA0EAEYiLbJAUoRCghncm91cF8wNRABGIm2yQFKEQoIZ3JvdXBfMDYQARiKtskBShEKCGdyb3VwXzA3EAEYi7bJAUoRCghncm91cF8wOBABGIy2yQFKEQoIZ3JvdXBfMDkQARiNtskBShEKCGdyb3VwXzEwEAEYjrbJAUoRCghncm91cF8xMRABGI+2yQFKEQoIZ3JvdXBfMTIQARiQtskBShEKCGdyb3VwXzEzEAEYkbbJAUoRCghncm91cF8xNBABGJK2yQFKEQoIZ3JvdXBfMTUQARiTtskBShEKCGdyb3VwXzE2EAEYlLbJAUoRCghncm91cF8xNxABGJW2yQFKEQoIZ3JvdXBfMTgQARiWtskBShEKCGdyb3VwXzE5EAEYl7bJAVIIKAAoASgCKAMSzgIKHlVNQS1Vbmlmb3JtaXR5LVRyaWFsLTUtUGVyY2VudBiAnJKlBTgBQgdkZWZhdWx0SgsKB2RlZmF1bHQQAUoMCghncm91cF8wMRABSgwKCGdyb3VwXzAyEAFKDAoIZ3JvdXBfMDMQAUoMCghncm91cF8wNBABSgwKCGdyb3VwXzA1EAFKDAoIZ3JvdXBfMDYQAUoMCghncm91cF8wNxABSgwKCGdyb3VwXzA4EAFKDAoIZ3JvdXBfMDkQAUoMCghncm91cF8xMBABSgwKCGdyb3VwXzExEAFKDAoIZ3JvdXBfMTIQAUoMCghncm91cF8xMxABSgwKCGdyb3VwXzE0EAFKDAoIZ3JvdXBfMTUQAUoMCghncm91cF8xNhABSgwKCGdyb3VwXzE3EAFKDAoIZ3JvdXBfMTgQAUoMCghncm91cF8xORABUgQoBCgF","homepage":"hxxp://search.conduit.com/?ctid=CT3282494&SearchSource=48&CUI=UN19632157591102681&UM=2","homepage_is_newtabpage" ==> The Chrome "Settings" can be used to fix the entry.
==== End of Fixlog ====
Scheint alles gelaufen zu sein, nochmals besten Dank. Spende ist raus. Gruss Ulf |
|
05.09.2013, 08:28
| #12 |
| /// the machine /// TB-Ausbilder | Hatte Qvo6 was nun Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
Hybrid-Darstellung
