| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Lollipop Network VirusWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.01.2014, 20:43
| #1 |
| |  Lollipop Network Virus Hallo zusammen, habe folgendes Problem. Ich habe entdeckt das ich den Lollipop Network Virus habe. Ich hab auch schon den Scan mit dem Farbar Recovery Scan gemacht und Folgendes ist dabei rausgekommen: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-01-2014 02 Ran by Gerhard (administrator) on GERHARD-PC on 13-01-2014 20:28:07 Running from C:\Users\Gerhard\Downloads Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe () C:\Program Files\Dokan\DokanLibrary\mounter.exe () C:\Program Files\ICQ6Toolbar\ICQ Service.exe (McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe (TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe () C:\Program Files\HomeTab\SystemSockets.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe () C:\Program Files\TOSHIBA\Utilities\KeNotify.exe (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe (TOSHIBA) C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (TOSHIBA) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe (TomTom) C:\Program Files\MyTomTom 3\MyTomTomSA.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (Windows Net) C:\Users\Gerhard\AppData\Roaming\Windows Net Data\net.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\System32\wuauclt.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\conime.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-18] (Microsoft Corporation) HKLM\...\Run: [KeNotify] - C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [34352 2006-11-06] () HKLM\...\Run: [SVPWUTIL] - C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [438272 2006-03-22] (TOSHIBA) HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4702208 2007-09-03] (Realtek Semiconductor) HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [411192 2007-03-29] (TOSHIBA Corporation) HKLM\...\Run: [HSON] - C:\Program Files\TOSHIBA\TBS\HSON.exe [55416 2006-12-07] (TOSHIBA Corporation) HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [509496 2007-04-03] (TOSHIBA Corporation) HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [538744 2007-05-22] (TOSHIBA Corporation) HKLM\...\Run: [NDSTray.exe] - NDSTray.exe HKLM\...\Run: [topi] - C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [581632 2007-07-10] (TOSHIBA) HKLM\...\Run: [SynTPStart] - C:\Program Files\Synaptics\SynTP\SynTPStart.exe [204800 2007-07-27] (Synaptics, Inc.) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1451304 2009-03-20] (Synaptics Incorporated) HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2009-04-21] (Advanced Micro Devices, Inc.) HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-20] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.) HKLM\...\Runonce: [SpUninstallCleanUp] - REG delete HKEY_LOCAL_MACHINE\Software\SearchProtect /f Winlogon\Notify\igfxcui: igfxdev.dll [X] HKCU\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [413696 2006-11-13] (TOSHIBA) HKCU\...\Run: [MyTomTomSA.exe] - C:\Program Files\MyTomTom 3\MyTomTomSA.exe [436728 2012-09-10] (TomTom) HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-18] (Microsoft Corporation) HKCU\...\Run: [NextLive] - C:\Users\Gerhard\AppData\Roaming\newnext.me\nengine.dll [1283584 2013-11-14] (NewNextDotMe) HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-18] (Microsoft Corporation) HKCU\...\Run: [lollipop_01030902] - lollipop_01030902 HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-10] (Microsoft Corporation) HKU\Default\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2006-11-13] (TOSHIBA) HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-10] (Microsoft Corporation) HKU\Default User\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2006-11-13] (TOSHIBA) HKU\Michael\...\Run: [TOSCDSPD] - TOSCDSPD.EXE HKU\Michael\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [ 2008-01-18] (Microsoft Corporation) HKU\Michael\...\Run: [ICQ] - "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4 Startup: C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk ShortcutTarget: net.lnk -> C:\Users\Gerhard\AppData\Roaming\Windows Net Data\net.exe (Windows Net) Startup: C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046} URLSearchHook: HKLM - ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) URLSearchHook: HKLM - DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.) URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) SearchScopes: HKLM - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&q={searchTerms} SearchScopes: HKLM - {5E4A064A-A8E2-45CF-9CA4-84F7C0BCEC3A} URL = hxxp://www.google.de/search?q={searchTerms}&rls=com.microsoft:*:IE-SearchBox&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7; SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&q={searchTerms} SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&q={searchTerms} SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPB2E3A2F6-4B67-429C-A9EE-B4370F23D26F&q={searchTerms}&SSPV= SearchScopes: HKCU - {0C7AB15B-BC4D-47B2-92BB-C161B049EE86} URL = hxxp://websearch.ask.com/custom/java/redirect?client=ie&tb=ORJ&o=100000026&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000 SearchScopes: HKCU - {40906B28-1544-4770-A95B-C3131405EBDF} URL = hxxp://de.search.yahoo.com/search?fr=mcafee&p={SearchTerms} SearchScopes: HKCU - {5E4A064A-A8E2-45CF-9CA4-84F7C0BCEC3A} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=4.9&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&q={searchTerms} SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&q={searchTerms} BHO: DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.) BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.) BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: HomeTab - {19a395c9-823b-4700-b817-396fc84ffb16} - C:\Users\Gerhard\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech LTD.) BHO: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.) BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) BHO: HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Program Files\HomeTab\IE\HomeTab.dll (Simply Tech LTD.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: ICQ Sparberater - {FE163F11-1919-4257-A280-FF5AF8DAEECB} - C:\Program Files\icq\Internet Explorer\icq.dll (solute gmbh) Toolbar: HKLM - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) Toolbar: HKLM - DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.) Toolbar: HKLM - HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Program Files\HomeTab\IE\HomeTab.dll (Simply Tech LTD.) Toolbar: HKLM - HomeTab - {19a395c9-823b-4700-b817-396fc84ffb16} - C:\Users\Gerhard\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech LTD.) Toolbar: HKLM - Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.) Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU - DVDVideoSoftTB DE Toolbar - {0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF} - C:\Program Files\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Winsock: Catalog9 37 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default FF NewTab: about:home FF DefaultSearchEngine: Web Search FF SearchEngineOrder.1: Web Search FF SelectedSearchEngine: Web Search FF Homepage: about:home FF Keyword.URL: hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= FF NetworkProxy: "type", 0 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - E:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @innoplus.de/ino3DViewer - C:\Program Files\innoplus\3D-Viewer-innoPlus\npIno3DViewer.dll (INNOVA-engineering GmbH Dresden) FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.) FF Plugin: @mcafee.com/SAFFPlugin - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\searchplugins\conduit-search.xml FF SearchPlugin: C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\searchplugins\dvdvideosofttb-de-customized-web-search.xml FF SearchPlugin: C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\searchplugins\Web Search.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml FF Extension: Widget context - C:\Users\Gerhard\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [2013-12-28] FF Extension: pricealarm - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\EFGLQA@78ETGYN-0W7FN789T87.COM [2013-07-17] FF Extension: Lavasoft Search Plugin - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\jid1-yZwVFzbsyfMrqQ@jetpack [2012-05-22] FF Extension: DVDVideoSoftTB DE - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff}(928) [2013-12-12] FF Extension: Microsoft .NET Framework Assistant - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-01-07] FF Extension: HomeTab - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{24532715-4abc-47ee-bd4f-a6774d0723d2} [2014-01-10] FF Extension: FoxyDeal - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D} [2013-07-17] FF Extension: No Name - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\backupfox_959a5970_ada3_11e0_9f1c_0800200c9a66@mozillafirefoxext ension.xpi [2011-09-10] FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi [2013-07-26] FF Extension: Greasemonkey - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2012-08-24] FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-11-16] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2012-07-30] FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ [] Chrome: ======= CHR DefaultSearchKeyword: conduit.search CHR DefaultSearchProvider: Conduit Search CHR DefaultSearchURL: hxxp://search.conduit.com/Results.aspx?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPB2E3A2F6-4B67-429C-A9EE-B4370F23D26F&q={searchTerms}&SSPV= CHR DefaultNewTabURL: CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\20.53263_0 [2014-01-03] CHR Extension: (FoxyDeal) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiennapmieppnpfhhogglccgepbdajan\6.2.0_0 [2013-07-17] CHR Extension: (YouTube) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2013-04-12] CHR Extension: (Google Search) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2013-04-02] CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb\1.0_0 [2012-07-13] CHR Extension: (HomeTab) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgibjgmnimooanbagcfpnkmngejcojaf\5.5_0 [2013-12-31] CHR Extension: (SiteAdvisor) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.6.4.1311_0 [2013-12-18] CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.1_0 [2013-01-05] CHR Extension: (Google Wallet) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2013-12-20] CHR Extension: (Widget context) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombmmloebnfnpehgjnmkcgoegfachobp\3.0_0 [2013-12-28] CHR Extension: (Gmail) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 [2012-11-08] CHR HKLM\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx [2013-07-26] CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx [2013-07-17] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2012-07-30] CHR HKLM\...\Chrome\Extension: [nmpllndkedbnmonoomepeeglghdelffo] - C:\Program Files\icq\Chrome\icq-1.2.662.crx [2011-08-24] CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-01-05] ========================== Services (Whitelisted) ================= R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-20] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-25] (Avira Operations GmbH & Co. KG) R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-20] (Avira Operations GmbH & Co. KG) S4 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [168400 2013-07-26] (APN LLC.) R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [22736 2013-06-27] () S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®) R2 ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [247872 2011-08-17] () R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [103112 2013-10-02] (McAfee, Inc.) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.) S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [297984 2014-01-12] () R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1699168 2012-09-19] (TuneUp Software) R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) ==================== Drivers (Whitelisted) ==================== S3 auusb; C:\Windows\System32\DRIVERS\auusb.sys [158640 2012-02-14] (Auerswald GmbH & Co.KG ) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-20] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-20] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-25] (Avira Operations GmbH & Co. KG) S4 CplIR; C:\Windows\system32\DRIVERS\CplIR.SYS [14848 2007-03-06] (COMPAL ELECTRONIC INC.) R2 Dokan; C:\Windows\system32\drivers\dokan.sys [96256 2013-06-20] (Windows (R) Win 7 DDK provider) R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [19456 2006-07-28] (COMPAL ELECTRONIC INC.) R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-05] (Avira GmbH) R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-09-19] (TuneUp Software) S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x] S3 igfx; system32\DRIVERS\igdkmd32.sys [x] S3 IpInIp; system32\DRIVERS\ipinip.sys [x] S3 Lavasoft Kernexplorer; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [x] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x] S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x] S3 Tosrfcom; No ImagePath S3 TpChoice; system32\DRIVERS\TpChoice.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-01-13 20:27 - 2014-01-13 20:27 - 01219584 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST.exe 2014-01-13 20:04 - 2014-01-13 20:04 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260763905_il3.exe 2014-01-13 20:04 - 2014-01-13 20:04 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260762123_il3.exe 2014-01-13 20:03 - 2014-01-13 20:03 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260757576_il3.exe 2014-01-13 20:03 - 2014-01-13 20:03 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260757001_il3.exe 2014-01-13 20:03 - 2014-01-13 20:03 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260756499_il3.exe 2014-01-12 11:35 - 2014-01-12 11:35 - 00336424 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i256134367_il3.exe 2014-01-11 11:35 - 2014-01-11 11:35 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i253377044_il3.exe 2014-01-04 18:50 - 2014-01-04 18:55 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Apple Computer 2014-01-04 18:50 - 2014-01-04 18:50 - 00001669 _____ C:\Users\Public\Desktop\iTunes.lnk 2014-01-04 18:50 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple Computer 2014-01-04 18:50 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys 2014-01-04 18:48 - 2014-01-04 18:50 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-01-04 18:48 - 2014-01-04 18:50 - 00000000 ____D C:\Program Files\iTunes 2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\Apple Computer 2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iPod 2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple 2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Program Files\Apple Software Update 2014-01-04 18:44 - 2014-01-04 18:44 - 00000000 ____D C:\Program Files\Bonjour 2014-01-04 18:43 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\Common Files\Apple 2014-01-04 18:43 - 2014-01-04 18:46 - 00000000 ____D C:\ProgramData\Apple 2014-01-04 18:39 - 2014-01-04 18:42 - 98633040 _____ (Apple Inc.) C:\Users\Gerhard\Downloads\iTunesSetup.exe 2014-01-04 11:14 - 2014-01-04 11:14 - 00000000 ____D C:\ProgramData\Oracle 2014-01-04 11:13 - 2014-01-04 11:12 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-01-04 11:13 - 2014-01-04 11:11 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-04 11:13 - 2014-01-04 11:11 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-04 11:13 - 2014-01-04 11:11 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-04 11:10 - 2014-01-04 11:10 - 00915368 _____ (Oracle Corporation) C:\Users\Gerhard\Downloads\chromeinstall-7u45.exe 2014-01-02 21:40 - 2014-01-02 21:40 - 00143200 _____ C:\Windows\Minidump\Mini010214-01.dmp 2014-01-02 11:17 - 2014-01-02 19:43 - 00000000 ____D C:\Users\Gerhard\Muzyka od Gerdzika 2013-12-25 18:03 - 2013-12-25 18:03 - 00336424 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\Kid Ink Show Me Official Lyric Video Ft Chris Brown.mp3__4150_il13940512.exe 2013-12-24 16:22 - 2013-12-24 16:22 - 00143200 _____ C:\Windows\Minidump\Mini122413-01.dmp 2013-12-24 16:21 - 2014-01-02 21:40 - 268173279 _____ C:\Windows\MEMORY.DMP 2013-12-22 17:30 - 2013-12-22 17:30 - 00051328 _____ C:\Windows\PFRO.log 2013-12-22 17:04 - 2013-12-22 17:04 - 00009797 _____ C:\Users\Gerhard\Downloads\xpcom.zip 2013-12-22 16:54 - 2013-12-22 16:54 - 00283096 _____ (Mozilla) C:\Users\Gerhard\Downloads\Firefox Setup Stub 26.0.exe 2013-12-22 16:53 - 2013-12-22 16:53 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (4).exe 2013-12-22 16:42 - 2013-12-22 16:42 - 03541544 _____ (Piriform Ltd) C:\Users\Gerhard\Downloads\ccsetup408_slim.exe 2013-12-22 16:24 - 2013-12-22 16:40 - 00000000 ____D C:\ProgramData\ParetoLogic 2013-12-22 16:24 - 2013-12-22 16:24 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\ParetoLogic 2013-12-22 16:24 - 2013-12-22 16:24 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\DriverCure 2013-12-22 16:23 - 2013-12-22 16:23 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Gerhard\Downloads\ParetoLogic PC Health Advisor_de.exe 2013-12-22 16:12 - 2013-12-22 16:13 - 01543245 _____ C:\Users\Gerhard\Downloads\mozjs.zip 2013-12-22 03:19 - 2013-12-22 03:19 - 00000000 ____D C:\Windows\CheckSur 2013-12-21 09:33 - 2013-12-21 09:35 - 04327136 _____ (Systweak Inc ) C:\Users\Gerhard\Downloads\sysrc_trial_9407_german01 (1).exe 2013-12-21 09:33 - 2013-12-21 09:34 - 04327136 _____ (Systweak Inc ) C:\Users\Gerhard\Downloads\sysrc_trial_9407_german01.exe 2013-12-20 22:58 - 2013-12-23 19:48 - 00000000 ____D C:\Program Files\MyPC Backup 2013-12-20 22:56 - 2014-01-13 20:24 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Mobogenie 2013-12-20 22:56 - 2014-01-13 19:58 - 00006956 _____ C:\Users\Gerhard\daemonprocess.txt 2013-12-20 22:56 - 2014-01-13 19:47 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\newnext.me 2013-12-20 22:56 - 2014-01-10 16:49 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Lollipop 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\Documents\Mobogenie 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\genienext 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\cache 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\.android 2013-12-20 22:53 - 2014-01-13 20:24 - 00000000 ____D C:\Program Files\Mobogenie 2013-12-20 22:50 - 2013-12-23 19:49 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Systweak 2013-12-20 22:50 - 2013-07-11 13:49 - 00018776 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot.exe 2013-12-20 22:48 - 2013-12-20 22:48 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (3).exe 2013-12-20 22:46 - 2013-12-20 22:46 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (2).exe 2013-12-20 22:39 - 2013-12-20 22:39 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (1).exe 2013-12-20 21:13 - 2013-12-20 21:13 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\dll-files.com 2013-12-20 21:13 - 2013-12-20 21:13 - 00000000 ____D C:\Program Files\Dll-Files.com Fixer 2013-12-20 21:02 - 2013-12-20 21:13 - 00028056 _____ C:\Users\Gerhard\Downloads\Addition.txt 2013-12-20 20:57 - 2014-01-13 20:28 - 00029808 _____ C:\Users\Gerhard\Downloads\FRST.txt 2013-12-20 20:57 - 2013-12-20 20:57 - 00000000 ____D C:\FRST 2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\TuneUp Software 2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Avira 2013-12-20 11:58 - 2013-12-22 17:06 - 00000000 ____D C:\Program Files\Mozilla Firefox(45) ==================== One Month Modified Files and Folders ======= 2014-01-13 20:28 - 2013-12-20 20:57 - 00029808 _____ C:\Users\Gerhard\Downloads\FRST.txt 2014-01-13 20:27 - 2014-01-13 20:27 - 01219584 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST.exe 2014-01-13 20:27 - 2006-11-02 13:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-01-13 20:27 - 2006-11-02 13:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-01-13 20:24 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Mobogenie 2014-01-13 20:24 - 2013-12-20 22:53 - 00000000 ____D C:\Program Files\Mobogenie 2014-01-13 20:06 - 2012-11-29 20:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-01-13 20:06 - 2012-05-29 17:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-01-13 20:06 - 2011-05-22 18:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-01-13 20:04 - 2014-01-13 20:04 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260763905_il3.exe 2014-01-13 20:04 - 2014-01-13 20:04 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260762123_il3.exe 2014-01-13 20:03 - 2014-01-13 20:03 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260757576_il3.exe 2014-01-13 20:03 - 2014-01-13 20:03 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260757001_il3.exe 2014-01-13 20:03 - 2014-01-13 20:03 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260756499_il3.exe 2014-01-13 19:58 - 2013-12-20 22:56 - 00006956 _____ C:\Users\Gerhard\daemonprocess.txt 2014-01-13 19:56 - 2011-06-17 10:23 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-01-13 19:47 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\newnext.me 2014-01-13 19:47 - 2011-06-17 10:23 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-01-13 07:18 - 2010-11-11 19:45 - 01905046 _____ C:\Windows\WindowsUpdate.log 2014-01-13 03:52 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2014-01-13 03:50 - 2006-11-02 14:01 - 00032560 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-12 11:35 - 2014-01-12 11:35 - 00336424 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i256134367_il3.exe 2014-01-11 17:57 - 2010-11-19 16:48 - 00000478 ____H C:\Windows\Tasks\Norton Security Scan for Michael.job 2014-01-11 11:35 - 2014-01-11 11:35 - 00337448 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i253377044_il3.exe 2014-01-10 18:24 - 2013-07-17 11:22 - 00000000 ____D C:\Program Files\HomeTab 2014-01-10 16:49 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Lollipop 2014-01-09 06:14 - 2013-07-17 11:22 - 00033864 _____ C:\Windows\Launcher.exe 2014-01-09 03:00 - 2010-11-11 21:13 - 00007728 _____ C:\Users\Gerhard\AppData\Local\d3d9caps.dat 2014-01-04 18:55 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Apple Computer 2014-01-04 18:50 - 2014-01-04 18:50 - 00001669 _____ C:\Users\Public\Desktop\iTunes.lnk 2014-01-04 18:50 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple Computer 2014-01-04 18:50 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-01-04 18:50 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iTunes 2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\Apple Computer 2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iPod 2014-01-04 18:48 - 2014-01-04 18:43 - 00000000 ____D C:\Program Files\Common Files\Apple 2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple 2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Program Files\Apple Software Update 2014-01-04 18:46 - 2014-01-04 18:43 - 00000000 ____D C:\ProgramData\Apple 2014-01-04 18:46 - 2010-11-11 21:13 - 00000000 ____D C:\Users\Gerhard 2014-01-04 18:44 - 2014-01-04 18:44 - 00000000 ____D C:\Program Files\Bonjour 2014-01-04 18:42 - 2014-01-04 18:39 - 98633040 _____ (Apple Inc.) C:\Users\Gerhard\Downloads\iTunesSetup.exe 2014-01-04 11:14 - 2014-01-04 11:14 - 00000000 ____D C:\ProgramData\Oracle 2014-01-04 11:13 - 2007-04-16 06:04 - 00000000 ____D C:\Program Files\Common Files\Java 2014-01-04 11:12 - 2014-01-04 11:13 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-01-04 11:11 - 2014-01-04 11:13 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-04 11:11 - 2014-01-04 11:13 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-04 11:11 - 2014-01-04 11:13 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-04 11:11 - 2007-04-16 06:04 - 00000000 ____D C:\Program Files\Java 2014-01-04 11:10 - 2014-01-04 11:10 - 00915368 _____ (Oracle Corporation) C:\Users\Gerhard\Downloads\chromeinstall-7u45.exe 2014-01-02 21:40 - 2014-01-02 21:40 - 00143200 _____ C:\Windows\Minidump\Mini010214-01.dmp 2014-01-02 21:40 - 2013-12-24 16:21 - 268173279 _____ C:\Windows\MEMORY.DMP 2014-01-02 21:40 - 2010-12-12 19:45 - 00000000 ____D C:\Windows\Minidump 2014-01-02 19:43 - 2014-01-02 11:17 - 00000000 ____D C:\Users\Gerhard\Muzyka od Gerdzika 2014-01-02 11:21 - 2010-11-11 21:37 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Toshiba 2013-12-31 17:51 - 2012-07-13 15:37 - 00000000 ____D C:\Users\Gerhard\Documents\Dokumente 2013-12-28 17:28 - 2010-11-11 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Adobe 2013-12-28 16:07 - 2006-11-02 11:33 - 01567294 _____ C:\Windows\system32\PerfStringBackup.INI 2013-12-25 18:04 - 2013-11-16 18:13 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-12-25 18:03 - 2013-12-25 18:03 - 00336424 _____ (Amônétízé Ltd) C:\Users\Gerhard\Downloads\Kid Ink Show Me Official Lyric Video Ft Chris Brown.mp3__4150_il13940512.exe 2013-12-24 16:31 - 2011-01-10 18:46 - 00073728 _____ C:\Users\Gerhard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-12-24 16:22 - 2013-12-24 16:22 - 00143200 _____ C:\Windows\Minidump\Mini122413-01.dmp 2013-12-23 19:49 - 2013-12-20 22:50 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Systweak 2013-12-23 19:48 - 2013-12-20 22:58 - 00000000 ____D C:\Program Files\MyPC Backup 2013-12-22 18:05 - 2012-12-11 18:55 - 00000000 ____D C:\Users\Gerhard\Documents\Kontoauszug 2013-12-22 17:37 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET 2013-12-22 17:30 - 2013-12-22 17:30 - 00051328 _____ C:\Windows\PFRO.log 2013-12-22 17:12 - 2010-11-13 16:08 - 00000851 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-12-22 17:06 - 2013-12-20 11:58 - 00000000 ____D C:\Program Files\Mozilla Firefox(45) 2013-12-22 17:04 - 2013-12-22 17:04 - 00009797 _____ C:\Users\Gerhard\Downloads\xpcom.zip 2013-12-22 16:54 - 2013-12-22 16:54 - 00283096 _____ (Mozilla) C:\Users\Gerhard\Downloads\Firefox Setup Stub 26.0.exe 2013-12-22 16:53 - 2013-12-22 16:53 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (4).exe 2013-12-22 16:46 - 2007-04-13 11:12 - 00000000 ____D C:\Windows\Panther 2013-12-22 16:42 - 2013-12-22 16:42 - 03541544 _____ (Piriform Ltd) C:\Users\Gerhard\Downloads\ccsetup408_slim.exe 2013-12-22 16:40 - 2013-12-22 16:24 - 00000000 ____D C:\ProgramData\ParetoLogic 2013-12-22 16:24 - 2013-12-22 16:24 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\ParetoLogic 2013-12-22 16:24 - 2013-12-22 16:24 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\DriverCure 2013-12-22 16:23 - 2013-12-22 16:23 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Gerhard\Downloads\ParetoLogic PC Health Advisor_de.exe 2013-12-22 16:13 - 2013-12-22 16:12 - 01543245 _____ C:\Users\Gerhard\Downloads\mozjs.zip 2013-12-22 03:21 - 2010-11-14 13:11 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-12-22 03:19 - 2013-12-22 03:19 - 00000000 ____D C:\Windows\CheckSur 2013-12-22 03:15 - 2013-08-14 16:33 - 00000000 ____D C:\Windows\system32\MRT 2013-12-22 03:11 - 2006-11-02 11:24 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2013-12-21 12:27 - 2013-01-05 17:51 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\DVDVideoSoft 2013-12-21 09:35 - 2013-12-21 09:33 - 04327136 _____ (Systweak Inc ) C:\Users\Gerhard\Downloads\sysrc_trial_9407_german01 (1).exe 2013-12-21 09:34 - 2013-12-21 09:33 - 04327136 _____ (Systweak Inc ) C:\Users\Gerhard\Downloads\sysrc_trial_9407_german01.exe 2013-12-21 09:31 - 2011-06-17 10:23 - 00000000 ____D C:\Program Files\Google 2013-12-20 23:04 - 2013-08-05 21:02 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2013-12-20 23:04 - 2013-08-05 21:02 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\Documents\Mobogenie 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\genienext 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\cache 2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\.android 2013-12-20 22:48 - 2013-12-20 22:48 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (3).exe 2013-12-20 22:46 - 2013-12-20 22:46 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (2).exe 2013-12-20 22:39 - 2013-12-20 22:39 - 00109144 _____ () C:\Users\Gerhard\Downloads\Setup (1).exe 2013-12-20 22:33 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc 2013-12-20 22:32 - 2010-11-13 16:05 - 00000000 ____D C:\Users\Michael 2013-12-20 22:32 - 2006-11-02 11:22 - 49807360 _____ C:\Windows\system32\config\software_previous 2013-12-20 22:32 - 2006-11-02 11:22 - 42467328 _____ C:\Windows\system32\config\components_previous 2013-12-20 22:32 - 2006-11-02 11:22 - 23855104 _____ C:\Windows\system32\config\system_previous 2013-12-20 22:32 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\security_previous 2013-12-20 22:32 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\sam_previous 2013-12-20 22:32 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\default_previous 2013-12-20 22:31 - 2013-07-17 11:23 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Windows Net Data 2013-12-20 22:31 - 2013-07-17 11:22 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\HomeTab 2013-12-20 22:31 - 2013-07-17 11:20 - 00000000 ____D C:\Program Files\SoftwareUpdater 2013-12-20 22:31 - 2013-07-17 11:18 - 00000000 ____D C:\Users\Gerhard\AppData\Local\DownloadGuide 2013-12-20 22:31 - 2012-08-26 17:12 - 00000000 ____D C:\Users\Gerhard\Documents\102CANON 2013-12-20 22:31 - 2012-07-22 11:40 - 00000000 ____D C:\ProgramData\McAfee Security Scan 2013-12-20 22:31 - 2010-11-14 18:06 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\vlc 2013-12-20 22:31 - 2010-11-11 21:13 - 00000000 ___RD C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-12-20 22:31 - 2010-11-11 21:13 - 00000000 ___RD C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-12-20 22:31 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool 2013-12-20 22:30 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration 2013-12-20 21:13 - 2013-12-20 21:13 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\dll-files.com 2013-12-20 21:13 - 2013-12-20 21:13 - 00000000 ____D C:\Program Files\Dll-Files.com Fixer 2013-12-20 21:13 - 2013-12-20 21:02 - 00028056 _____ C:\Users\Gerhard\Downloads\Addition.txt 2013-12-20 20:57 - 2013-12-20 20:57 - 00000000 ____D C:\FRST 2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\TuneUp Software 2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Avira 2013-12-20 15:37 - 2010-11-13 16:05 - 00000000 ____D C:\Users\Michael\AppData\Local\VirtualStore 2013-12-18 03:31 - 2012-07-30 14:27 - 00000000 ____D C:\Program Files\McAfee Some content of TEMP: ==================== C:\Users\Gerhard\AppData\Local\Temp\avgnt.exe C:\Users\Gerhard\AppData\Local\Temp\DownloadManager.exe C:\Users\Gerhard\AppData\Local\Temp\nsc64.exe C:\Users\Gerhard\AppData\Local\Temp\tbu14B8.exe C:\Users\Gerhard\AppData\Local\Temp\tbuB0FA.exe C:\Users\Gerhard\AppData\Local\Temp\tbuC782.exe C:\Users\Gerhard\AppData\Local\Temp\tbuCE08.exe C:\Users\Michael\AppData\Local\Temp\2dcd1d63cb45e6613582211c3d5f4b23.exe C:\Users\Michael\AppData\Local\Temp\AskSLib.dll C:\Users\Michael\AppData\Local\Temp\avgnt.exe C:\Users\Michael\AppData\Local\Temp\setup.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-13 03:59 ==================== End Of Log ============================ Kann mir jemand helfen? Vielen Dank im Voraus, Michael |
|
13.01.2014, 22:07
| #2 | |
| /// the machine /// TB-Ausbilder    | Lollipop Network Virus hi,
__________________ So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ |
|
14.01.2014, 18:41
| #3 |
| | Lollipop Network Virus [CODE]ComboFix 14-01-14.02 - Gerhard 14.01.2014 18:28:06.1.2 - x86
__________________Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3036.1219 [GMT 1:00] ausgeführt von:: c:\users\Gerhard\Downloads\ComboFix.exe AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Gerhard\AppData\Local\lollipop c:\users\Gerhard\AppData\Local\lollipop\logo.ico c:\users\Gerhard\AppData\Local\lollipop\lollipop_01021000.dat c:\users\Gerhard\AppData\Local\lollipop\lollipop_01030902.bat c:\users\Gerhard\AppData\Local\lollipop\lollipop_01030902.dat c:\users\Gerhard\AppData\Local\lollipop\lollipop_01030902.lpd c:\users\Gerhard\AppData\Local\lollipop\lollipop_01030902_cfg.lpd c:\users\Gerhard\AppData\Local\lollipop\lollipop_01030902_ps.lpd c:\users\Gerhard\AppData\Local\lollipop\lollipop_12211333.dat c:\users\Gerhard\AppData\Roaming\Microsoft\Windows\Recent\mxfilerelatedcache.mxc2 c:\users\Gerhard\Favorites\mxfilerelatedcache.mxc2 c:\users\Michael\Favorites\mxfilerelatedcache.mxc2 . . ((((((((((((((((((((((( Dateien erstellt von 2013-12-14 bis 2014-01-14 )))))))))))))))))))))))))))))) . . 2014-01-14 17:35 . 2014-01-14 17:35 -------- d-----w- c:\users\Michael\AppData\Local\temp 2014-01-14 17:35 . 2014-01-14 17:35 -------- d-----w- c:\users\Default\AppData\Local\temp 2014-01-10 15:41 . 2013-12-04 02:57 7760024 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A26F7C62-0AE4-4836-A302-1CEB07DAA1C6}\mpengine.dll 2014-01-04 17:50 . 2014-01-04 17:55 -------- d-----w- c:\users\Gerhard\AppData\Roaming\Apple Computer 2014-01-04 17:50 . 2014-01-04 17:50 -------- d-----w- c:\users\Gerhard\AppData\Local\Apple Computer 2014-01-04 17:50 . 2012-08-21 12:01 26840 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys 2014-01-04 17:48 . 2014-01-04 17:48 -------- d-----w- c:\program files\iPod 2014-01-04 17:48 . 2014-01-04 17:50 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-01-04 17:48 . 2014-01-04 17:48 -------- d-----w- c:\programdata\Apple Computer 2014-01-04 17:48 . 2014-01-04 17:50 -------- d-----w- c:\program files\iTunes 2014-01-04 17:47 . 2014-01-04 17:47 -------- d-----w- c:\users\Gerhard\AppData\Local\Apple 2014-01-04 17:47 . 2014-01-04 17:47 -------- d-----w- c:\program files\Apple Software Update 2014-01-04 17:44 . 2014-01-04 17:44 -------- d-----w- c:\program files\Bonjour 2014-01-04 17:43 . 2014-01-04 17:48 -------- d-----w- c:\program files\Common Files\Apple 2014-01-04 17:43 . 2014-01-04 17:46 -------- d-----w- c:\programdata\Apple 2014-01-04 10:14 . 2014-01-04 10:14 -------- d-----w- c:\programdata\Oracle 2014-01-04 10:13 . 2014-01-04 10:12 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2014-01-02 10:17 . 2014-01-02 18:43 -------- d-----w- c:\users\Gerhard\Muzyka od Gerdzika 2013-12-22 16:12 . 2011-12-21 07:42 121816 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll 2013-12-22 16:09 . 2013-12-22 16:09 -------- d-----w- c:\windows\Migration 2013-12-22 15:24 . 2013-12-22 15:24 -------- d-----w- c:\users\Gerhard\AppData\Roaming\ParetoLogic 2013-12-22 15:24 . 2013-12-22 15:24 -------- d-----w- c:\users\Gerhard\AppData\Roaming\DriverCure 2013-12-22 15:24 . 2013-12-22 15:40 -------- d-----w- c:\programdata\ParetoLogic 2013-12-22 02:19 . 2013-12-22 02:19 -------- d-----w- c:\windows\CheckSur 2013-12-20 21:58 . 2013-12-23 18:48 -------- d-----w- c:\program files\MyPC Backup 2013-12-20 21:56 . 2013-12-20 21:56 -------- d-----w- c:\users\Gerhard\.android 2013-12-20 21:56 . 2013-12-20 21:56 -------- d-----w- c:\users\Gerhard\AppData\Local\cache 2013-12-20 21:56 . 2014-01-14 17:21 -------- d-----w- c:\users\Gerhard\AppData\Roaming\newnext.me 2013-12-20 21:56 . 2013-12-20 21:56 -------- d-----w- c:\users\Gerhard\AppData\Local\genienext 2013-12-20 21:56 . 2014-01-13 19:24 -------- d-----w- c:\users\Gerhard\AppData\Local\Mobogenie 2013-12-20 21:53 . 2014-01-13 19:24 -------- d-----w- c:\program files\Mobogenie 2013-12-20 21:50 . 2013-12-23 18:49 -------- d-----w- c:\users\Gerhard\AppData\Roaming\Systweak 2013-12-20 21:50 . 2013-07-11 12:49 18776 ----a-w- c:\windows\system32\roboot.exe 2013-12-20 20:13 . 2013-12-20 20:13 -------- d-----w- c:\users\Gerhard\AppData\Roaming\dll-files.com 2013-12-20 20:13 . 2013-12-20 20:13 -------- d-----w- c:\programdata\Logs 2013-12-20 20:13 . 2013-12-20 20:13 -------- d-----w- c:\program files\Dll-Files.com Fixer 2013-12-20 19:57 . 2013-12-20 19:57 -------- d-----w- C:\FRST 2013-12-20 14:37 . 2013-12-20 14:37 -------- d-----w- c:\users\Michael\AppData\Roaming\TuneUp Software 2013-12-20 14:37 . 2013-12-20 14:37 -------- d-----w- c:\users\Michael\AppData\Roaming\Avira 2013-12-20 10:58 . 2013-12-22 16:06 -------- d-----w- c:\program files\Mozilla Firefox(45) . . . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2014-01-13 19:06 . 2012-05-29 16:00 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2014-01-13 19:06 . 2011-05-22 17:50 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2014-01-09 05:14 . 2013-07-17 10:22 33864 ----a-w- c:\windows\Launcher.exe 2013-12-20 22:04 . 2013-08-05 20:02 90400 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2013-12-20 22:04 . 2013-08-05 20:02 135648 ----a-w- c:\windows\system32\drivers\avipbb.sys 2013-11-26 11:25 . 2010-11-11 22:36 230048 ------w- c:\windows\system32\MpSigStub.exe 2013-11-25 17:50 . 2013-08-05 20:02 37352 ----a-w- c:\windows\system32\drivers\avkmgr.sys 2011-12-21 07:42 . 2013-12-22 16:12 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff}] 2011-05-09 08:49 176936 ----a-w- c:\program files\DVDVideoSoftTB_DE\prxtbDVDV.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}] 2013-07-26 20:30 12240 ----a-w- c:\program files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{FE163F11-1919-4257-A280-FF5AF8DAEECB}] 2011-08-25 06:15 50240 ----a-w- c:\program files\icq\Internet Explorer\icq.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff}"= "c:\program files\DVDVideoSoftTB_DE\prxtbDVDV.dll" [2011-05-09 176936] "{41564952-412D-5637-00A7-7A786E7484D7}"= "c:\program files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" [2013-07-26 12240] . [HKEY_CLASSES_ROOT\clsid\{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff}] . [HKEY_CLASSES_ROOT\clsid\{41564952-412d-5637-00a7-7a786e7484d7}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}"= "c:\program files\DVDVideoSoftTB_DE\prxtbDVDV.dll" [2011-05-09 176936] . [HKEY_CLASSES_ROOT\clsid\{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "lollipop_01030902"="lollipop_01030902" [X] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-10 1233920] "TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2006-11-13 413696] "MyTomTomSA.exe"="c:\program files\MyTomTom 3\MyTomTomSA.exe" [2012-09-10 436728] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-18 125952] "NextLive"="c:\users\Gerhard\AppData\Roaming\newnext.me\nengine.dll" [2013-11-14 1283584] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-18 202240] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "KeNotify"="c:\program files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 34352] "SVPWUTIL"="c:\program files\TOSHIBA\Utilities\SVPWUTIL.exe" [2006-03-22 438272] "RtHDVCpl"="RtHDVCpl.exe" [2007-09-03 4702208] "TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2007-03-29 411192] "HSON"="c:\program files\TOSHIBA\TBS\HSON.exe" [2006-12-07 55416] "SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2007-04-03 509496] "00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2007-05-22 538744] "NDSTray.exe"="NDSTray.exe" [BU] "topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 581632] "SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-07-27 204800] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-03-20 1451304] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-04-21 61440] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-12-20 684600] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-11-01 152392] . c:\users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ net.lnk - c:\users\Gerhard\AppData\Roaming\Windows Net Data\net.exe [2013-7-17 709120] OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.8.130\SSScheduler.exe [2013-9-6 273296] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Toshiba Registration"=c:\program files\Toshiba\Registration\ToshibaRegistration.exe "TkBellExe"="c:\program files\Real\RealPlayer\Update\realsched.exe" -osboot "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-12-06 14:33 1210320 ----a-w- c:\program files\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe . Inhalt des "geplante Tasks" Ordners . 2014-01-14 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-29 19:06] . 2014-01-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-06-17 09:23] . 2014-01-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-06-17 09:23] . 2014-01-14 c:\windows\Tasks\Norton Security Scan for Michael.job - c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-11-19 08:48] . . ------- Zusätzlicher Suchlauf ------- . uStart Page = about:newtab uDefault_Search_URL = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= mStart Page = about:newtab mSearch Bar = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= uInternet Settings,ProxyOverride = *.local IE: Free YouTube to MP3 Converter - c:\users\Gerhard\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files\ICQ7.6\ICQ.exe IE: {{92808042-fb78-4fa0-bb4f-c9a95e0e9c10} - {ba696155-d96e-4281-b467-0367a0456474} - LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\ FF - prefs.js: browser.search.selectedEngine - Web Search FF - prefs.js: browser.startup.homepage - about:home FF - prefs.js: keyword.URL - hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q= FF - prefs.js: network.proxy.type - 0 FF - ExtSQL: 2013-12-28 13:09; {140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}; c:\users\Gerhard\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi FF - ExtSQL: 2014-01-10 19:24; {24532715-4abc-47ee-bd4f-a6774d0723d2}; c:\users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\extensions\{24532715-4abc-47ee-bd4f-a6774d0723d2} FF - ExtSQL: !HIDDEN! 2010-11-12 08:30; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension . - - - - Entfernte verwaiste Registrierungseinträge - - - - . HKLM-Run-mobilegeni daemon - c:\program files\Mobogenie\DaemonProcess.exe SafeBoot-WudfPf SafeBoot-WudfRd AddRemove-lollipop_01030902 - c:\users\gerhard\appdata\local\lollipop\lollipop_01030902.bat . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net Rootkit scan 2014-01-14 18:36 Windows 6.0.6002 Service Pack 2 NTFS . Scanne versteckte Prozesse... . Scanne versteckte Autostarteinträge... . HKLM\Software\Microsoft\Windows\CurrentVersion\Run mobilegeni daemon = c:\program files\Mobogenie\DaemonProcess.exe????????????????????????????????????????????????????????????????????????????????????? HKCU\Software\Microsoft\Windows\CurrentVersion\Run TOSCDSPD = c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe?/i????????F????8???`???????????? . Scanne versteckte Dateien... . Scan erfolgreich abgeschlossen versteckte Dateien: 0 . ************************************************************************** . --------------------- Gesperrte Registrierungsschluessel --------------------- . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ba696155-d96e-4281-b467-0367a0456474}] @Denied: (A 2) (Administrators) @Denied: (A 2) (S-1-5-21-3336194816-1628088612-1396274896-1000) @Allowed: (Read) (RestrictedCode) "Flags"=dword:00000400 . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_44" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_44" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_44" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_45" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_45" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_45" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_46" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_46" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_46" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_47" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_47" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_47" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_48" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_48" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_48" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_49" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_49" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_49" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_50" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_50" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_50" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_51" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_51" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_51" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_52" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_52" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_52" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_53" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_53" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_53" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_54" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_54" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_54" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_55" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_55" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_55" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_36" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_37" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_38" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_39" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_40" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_41" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_42" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_43" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_44" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_44" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_44" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_45" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_45" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_45" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_46" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_46" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_46" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_47" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_47" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_47" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_48" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_48" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_48" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_49" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_49" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_49" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_50" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_50" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_50" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_51" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_51" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_51" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_52" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_52" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_52" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_53" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_53" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_53" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_54" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_54" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_54" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_55" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_55" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_55" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_56" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_56" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_56" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_57" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_57" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_57" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_58" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_58" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_58" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_59" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_59" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_59" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_60" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_60" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_60" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_61" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_61" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_61" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_62" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_62" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_62" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_63" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_63" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_63" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_64" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_64" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_64" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_65" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_65" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_65" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_01" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_02" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_03" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_04" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_05" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_06" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_07" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_08" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_09" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_10" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_11" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_12" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_13" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_14" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_15" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_16" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_17" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_18" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_19" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_20" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_21" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_22" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_23" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_24" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_25" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_26" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_27" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_28" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_29" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_30" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_31" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_32" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_33" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_34" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_35" . [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_35" .[CODE] |
|
14.01.2014, 18:43
| #4 |
| | Lollipop Network VirusCode:
ATTFilter [HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_35"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_36"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_36"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_36"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_37"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_37"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_37"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_38"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_38"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_38"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_39"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_39"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_39"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_40"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_40"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_40"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_41"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_41"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_41"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_42"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_42"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_42"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_43"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_43"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_43"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_44"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_44"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_44"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_45"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBB}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_45"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBC}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0_45"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}]
@DACL=(02 0000)
@="Java Plug-in 1.7.0"
.
[HKEY_USERS\S-1-5-21-3336194816-1628088612-1396274896-1000_Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}]
@DACL=(02 0000)
@="Java Plug-in 1.3.0_02"
.
Zeit der Fertigstellung: 2014-01-14 18:38:30
ComboFix-quarantined-files.txt 2014-01-14 17:38
.
Vor Suchlauf: 11 Verzeichnis(se), 71.738.724.352 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 72.543.703.040 Bytes frei
.
- - End Of File - - 10A33BB3BC2C091B2CA95EAFDCED6AB5
5C616939100B85E558DA92B899A0FC36
|
|
15.01.2014, 10:16
| #5 |
| /// the machine /// TB-Ausbilder | Lollipop Network Virus Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.01.2014, 21:27
| #6 |
| | Lollipop Network VirusCode:
ATTFilter Malwarebytes Anti-Malware (Test) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.01.16.05 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 8.0.6001.19443 Gerhard :: GERHARD-PC [Administrator] Schutz: Aktiviert 16.01.2014 20:24:37 mbam-log-2014-01-16 (20-24-37).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 236234 Laufzeit: 13 Minute(n), 50 Sekunde(n) Infizierte Speicherprozesse: 1 C:\Program Files\HomeTab\SystemSockets.exe (PUP.Optional.HomeTab.A) -> 3152 -> Löschen bei Neustart. Infizierte Speichermodule: 1 C:\Users\Gerhard\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Löschen bei Neustart. Infizierte Registrierungsschlüssel: 12 HKCR\Typelib\{DCABB943-792E-44C4-9029-ECBEE6265AF9} (PUP.Optional.OutBrowse) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534} (PUP.Optional.OutBrowse) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3a4935b3-b7a0-4065-8ccc-0030471b33f1}_is1 (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\CLSID\{25e93bf1-df51-467b-b51d-fd4bd3ddb4f9} (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\wtb.SourceSinkImpl.1 (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\wtb.SourceSinkImpl (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\CLSID\{142f44cd-9124-4346-8c6d-eeead21dbad0} (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\wtb.NotificationSource.1 (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\wtb.NotificationSource (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\Conduit\FF (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\SEARCHPROTECTINT (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\Software\Iminent (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 2 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Daten: C:\Windows\system32\rundll32.exe "C:\Users\Gerhard\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\SearchProtectINT|Install (PUP.Optional.SearchProtect.A) -> Daten: 1 -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 4 HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Default_Search_URL (Hijack.SearchPage) -> Bösartig: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q=) Gut: (hxxp://www.google.com) -> Erfolgreich ersetzt und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Internet Explorer\Search|Default_Search_URL (Hijack.SearchPage) -> Bösartig: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q=) Gut: (hxxp://www.google.com/) -> Erfolgreich ersetzt und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Search Bar (Hijack.SearchPage) -> Bösartig: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q=) Gut: (hxxp://www.google.com) -> Erfolgreich ersetzt und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\Search|Default_Search_URL (Hijack.SearchPage) -> Bösartig: (hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q=) Gut: (hxxp://www.google.com/) -> Erfolgreich ersetzt und in Quarantäne gestellt. Infizierte Verzeichnisse: 15 C:\Users\Gerhard\AppData\Roaming\SimplyTech\home (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab (PUP.Optional.HomeTab.A) -> Löschen bei Neustart. C:\Program Files\HomeTab\chrome (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\IE (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\chrome (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\components (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\plugins (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeTab (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide (PUP.Optional.DownloadGuide.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\Offers (PUP.Optional.DownloadGuide.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\OpenCandy\82B82B0A60BA405599C84C00ABB36E99 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 64 C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i253377044_il3.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i256134367_il3.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260756499_il3.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260757001_il3.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260757576_il3.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260762123_il3.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\FlashPlayersetup__3873_i260763905_il3.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\iLividSetupV1.exe (PUP.Optional.Bandoo) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\Setup (1).exe (PUP.Optional.Outbrowse) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\Setup (2).exe (PUP.Optional.Outbrowse) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\Setup (3).exe (PUP.Optional.Outbrowse) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\Setup (4).exe (PUP.Optional.Outbrowse) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\setup (5).exe (PUP.Optional.Ibryte) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\Kid Ink Show Me Official Lyric Video Ft Chris Brown.mp3__4150_il13940512.exe (PUP.Optional.InstallMonetizer) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\sysrc_trial_9407_german01 (1).exe (PUP.Optional.RegCleanerPro) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\Downloads\sysrc_trial_9407_german01.exe (PUP.Optional.RegCleanerPro) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Michael\Downloads\SoftonicDownloader_fuer_photoscape.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\Conduit\CT2625848\DVDVideoSoftTB_DEAutoUpdateHelper.exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\Offers\hometab.exe (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\Offers\iminent.exe (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\roboot.exe (PUP.Optional.PCPerformer.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\SimplyTech\home\home.htm (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\SimplyTech\home\jquery-ui-1.10.1.custom.min.js (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\SimplyTech\home\jquiso.js (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\SimplyTech\home\socket.io.js (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\SimplyTech\home\style.css (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\SimplyTech\home\vars.js (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\Microsoft.Win32.TaskScheduler.xml (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\cinshlpr.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\hometab_icon.ico (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\InstallHelper.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\Interop.IWshRuntimeLibrary.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\Microsoft.Win32.TaskScheduler.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\ProtectedSearch.exe (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\ProtectedSearch.ico (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\STInst32.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\STInst32.exe (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\System.Data.SQLite.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\SystemSockets.exe (PUP.Optional.HomeTab.A) -> Löschen bei Neustart. C:\Program Files\HomeTab\TaskSchedulerCreator.exe (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\TBUpdater.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\ToolbarUninstall.exe (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\unins000.dat (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\unins000.exe (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\chrome\HomeTab.crx (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\IE\HomeTab.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\chrome.manifest (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\install.js (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\install.rdf (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\pop.htm (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\chrome\HomeTab_3869.jar (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\components\wtb_complete.js (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\HomeTab\support@HomeTab.com\plugins\npwiddit.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeTab\Protected Search Settings.lnk (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\HomeTab\HomeTab.dll (PUP.Optional.HomeTab.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\amazon.ico (PUP.Optional.DownloadGuide.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\FreeSystemUtilities.exe (PUP.Optional.DownloadGuide.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\mxfilerelatedcache.mxc2 (PUP.Optional.DownloadGuide.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\Offers\foxydeal.exe (PUP.Optional.DownloadGuide.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Local\DownloadGuide\Offers\pricealarm.exe (PUP.Optional.DownloadGuide.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Löschen bei Neustart. C:\Users\Gerhard\AppData\Roaming\OpenCandy\82B82B0A60BA405599C84C00ABB36E99\TuneUpUtilities2013_2200218_de-DE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Gerhard\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Code:
ATTFilter # AdwCleaner v3.017 - Bericht erstellt am 16/01/2014 um 20:59:35
# Aktualisiert 12/01/2014 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzername : Gerhard - GERHARD-PC
# Gestartet von : C:\Users\Gerhard\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
Dienst Gelöscht : ICQ Service
[#] Dienst Gelöscht : SystemStoreService
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Ask
Ordner Gelöscht : C:\ProgramData\ICQ\ICQToolbar
Ordner Gelöscht : C:\ProgramData\ParetoLogic
Ordner Gelöscht : C:\Program Files\Conduit
Ordner Gelöscht : C:\Program Files\ICQ6Toolbar
Ordner Gelöscht : C:\Program Files\Mobogenie
Ordner Gelöscht : C:\Program Files\MyPC Backup
Ordner Gelöscht : C:\Program Files\SoftwareUpdater
Ordner Gelöscht : C:\Program Files\DVDVideoSoftTB_DE
Ordner Gelöscht : C:\Program Files\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\Gerhard\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\Gerhard\AppData\Local\genienext
Ordner Gelöscht : C:\Users\Gerhard\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Gerhard\AppData\Local\Software_Updater
Ordner Gelöscht : C:\Users\Gerhard\AppData\Local\SoftwareUpdater
Ordner Gelöscht : C:\Users\Gerhard\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\Gerhard\AppData\LocalLow\HomeTab
Ordner Gelöscht : C:\Users\Gerhard\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\Gerhard\AppData\LocalLow\SimplyTech
Ordner Gelöscht : C:\Users\Gerhard\AppData\LocalLow\DVDVideoSoftTB_DE
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\DriverCure
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\HomeTab
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\ParetoLogic
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\SimplyTech
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\Windows Net Data
Ordner Gelöscht : C:\Users\Gerhard\Documents\Mobogenie
Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Smartbar
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\CT2625848
Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\Conduit
Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\ConduitCommon
Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\ICQToolbarData
Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\CT2269050
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{24532715-4abc-47ee-bd4f-a6774d0723d2}
Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\Extensions\{24532715-4abc-47ee-bd4f-a6774d0723d2}
Ordner Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\EFGLQA@78ETGYN-0W7FN789T87.COM
Ordner Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff}(928)
Ordner Gelöscht : C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiennapmieppnpfhhogglccgepbdajan
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
Datei Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\searchplugins\conduit-search.xml
Datei Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\searchplugins\dvdvideosofttb-de-customized-web-search.xml
Datei Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\searchplugins\icqplugin.xml
Datei Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\searchplugins\icqplugin-1.xml
Datei Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\searchplugins\icqplugin-2.xml
Datei Gelöscht : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\searchplugins\Web Search.xml
Datei Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\searchplugins\Web Search.xml
Datei Gelöscht : C:\Program Files\Mozilla Firefox\searchplugins\Web Search.xml
Datei Gelöscht : C:\Windows\System32\Tasks\Browser Updater
Datei Gelöscht : C:\Windows\System32\Tasks\ProtectedSearch
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater Ui
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\fgibjgmnimooanbagcfpnkmngejcojaf
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66D6E2A0-2EBE-46CA-B267-BA404D45FBF2}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{464691BB-F32E-4943-A46C-F2AC2C9DDB23}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BAFC79CB-0BCA-4E3C-911F-9502680912B5}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BAFC79CB-0BCA-4E3C-911F-9502680912B5}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E52CF93E-E59A-4E66-9930-556785E6501F}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E52CF93E-E59A-4E66-9930-556785E6501F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\HomeTab.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2625848
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [lollipop_01030902]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{3FC27B34-0C19-49DA-875E-1875DDD4A6B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{457EF9F0-0A7C-4302-B47B-C207A8DE8598}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A928E66C-F501-4E66-9953-855C712F93B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{457EF9F0-0A7C-4302-B47B-C207A8DE8598}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
[#] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA696155-D96E-4281-B467-0367A0456474}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{457EF9F0-0A7C-4302-B47B-C207A8DE8598}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{457EF9F0-0A7C-4302-B47B-C207A8DE8598}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{47DE7A9F-0892-463D-A434-3C2B03D9F4B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1DE41E2-F5D9-4A64-803C-FB53249B45AA}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF}]
Schlüssel Gelöscht : HKCU\Software\Ciuvo
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\HomeTab
Schlüssel Gelöscht : HKCU\Software\ICQ\ICQToolbar
Schlüssel Gelöscht : HKCU\Software\lollipop
Schlüssel Gelöscht : HKCU\Software\ParetoLogic
Schlüssel Gelöscht : HKCU\Software\simplytech
Schlüssel Gelöscht : HKCU\Software\DVDVideoSoftTB_DE
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\simplytech
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\DVDVideoSoftTB_DE
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\ICQ\ICQToolbar
Schlüssel Gelöscht : HKLM\Software\ParetoLogic
Schlüssel Gelöscht : HKLM\Software\systweak
Schlüssel Gelöscht : HKLM\Software\DVDVideoSoftTB_DE
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15B291FD-AA72-4D0B-BD6E-604F24C5D14C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{421d35e3-d4bd-47a6-b6aa-d21ade07cf32}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB_DE Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{421d35e3-d4bd-47a6-b6aa-d21ade07cf32}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DVDVideoSoftTB_DE Toolbar
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
***** [ Browser ] *****
-\\ Internet Explorer v8.0.6001.19443
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
-\\ Mozilla Firefox v9.0.1 (de)
[ Datei : C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\prefs.js ]
Zeile gelöscht : user_pref("CT2625848.1000082.isDisplayHidden", "true");
Zeile gelöscht : user_pref("CT2625848.1000082.isPlayDisplay", "true");
Zeile gelöscht : user_pref("CT2625848.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description\":\"California Rock\",\"url\":\"hxxp://feedlive.net/california.asx\"}");
Zeile gelöscht : user_pref("CT2625848.2625848a129894023611240511000000paramsGK1.enc", "eyJ1cGRhdGVSZXFUaW1lIjoxMzU5NDExMDY2MTM5LCJ1cGRhdGVSZXNwVGltZSI6MTM1OTQxMTA3ODIxMiwiZGF0YSI6eyJzZXR0aW5ncyI6eyJpY29uIjoiaHR0cDovL3[...]
Zeile gelöscht : user_pref("CT2625848.CBOpenMAMSettings.enc", "MA==");
Zeile gelöscht : user_pref("CT2625848.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2625848.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2625848.FacebookTemplate_2625848a129894023611240511000000_lang.enc", "REU=");
Zeile gelöscht : user_pref("CT2625848.Facebook_Template_CacheTime_2625848a129894023611240511000000.enc", "MTM1NzU1MzEyNDk1Mg==");
Zeile gelöscht : user_pref("CT2625848.Facebook_Template_Events_2625848a129894023611240511000000.enc", "JTdCJTIyZXJyb3IlMjIlM0ElN0IlMjJtZXNzYWdlJTIyJTNBJTIyQW4lMjBhY2Nlc3MlMjB0b2tlbiUyMGlzJTIwcmVxdWlyZWQlMjB0byUyMHJlcX[...]
Zeile gelöscht : user_pref("CT2625848.Facebook_Template_Info_2625848a129894023611240511000000.enc", "JTdCJTIyYWJvdXQlMjIlM0ElMjJodHRwJTNBJTJGJTJGd3d3LmR2ZHZpZGVvc29mdC5jb20lMkZkZSUyMEVyZmFocmVuJTIwU2llJTIwJUMzJUJDYmVy[...]
Zeile gelöscht : user_pref("CT2625848.Facebook_Template_Likes_2625848a129894023611240511000000.enc", "bnVsbA==");
Zeile gelöscht : user_pref("CT2625848.Facebook_Template_Photos_2625848a129894023611240511000000.enc", "JTVCJTVE");
Zeile gelöscht : user_pref("CT2625848.Facebook_Template_Video_2625848a129894023611240511000000.enc", "bnVsbA==");
Zeile gelöscht : user_pref("CT2625848.Facebook_Template_Wall_2625848a129894023611240511000000.enc", "JTdCJTIyZXJyb3IlMjIlM0ElN0IlMjJtZXNzYWdlJTIyJTNBJTIyQW4lMjBhY2Nlc3MlMjB0b2tlbiUyMGlzJTIwcmVxdWlyZWQlMjB0byUyMHJlcXVl[...]
Zeile gelöscht : user_pref("CT2625848.FirstTime", "true");
Zeile gelöscht : user_pref("CT2625848.FirstTimeFF3", "true");
Zeile gelöscht : user_pref("CT2625848.LoginRevertSettingsEnabled", true);
Zeile gelöscht : user_pref("CT2625848.PG_ENABLE", "dHJ1ZQ==");
Zeile gelöscht : user_pref("CT2625848.RevertSettingsEnabled", true);
Zeile gelöscht : user_pref("CT2625848.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2625848&SearchSource=2&q=");
Zeile gelöscht : user_pref("CT2625848.UserID", "UN59232029364762488");
Zeile gelöscht : user_pref("CT2625848.addressBarTakeOverEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT2625848.autoDisableScopes", -1);
Zeile gelöscht : user_pref("CT2625848.browser.search.defaultthis.engineName", true);
Zeile gelöscht : user_pref("CT2625848.cachedprofile2625848a129894023611240511000000.enc", "RFZEVmlkZW9Tb2Z0LmRl");
Zeile gelöscht : user_pref("CT2625848.cb_experience_000.enc", "MTE=");
Zeile gelöscht : user_pref("CT2625848.cb_firstuse0100.enc", "MQ==");
Zeile gelöscht : user_pref("CT2625848.cb_user_id_000.enc", "Q0I0OTg4Mjk5NzYwNjJfMTM1Nzk5ODkwODMyNF9GaXJlZm94");
Zeile gelöscht : user_pref("CT2625848.cbcountry_001.enc", "REU=");
Zeile gelöscht : user_pref("CT2625848.cbfirsttime.enc", "U2F0IEphbiAwNSAyMDEzIDE3OjU1OjQwIEdNVCswMTAw");
Zeile gelöscht : user_pref("CT2625848.countryCode", "DE");
Zeile gelöscht : user_pref("CT2625848.defaultSearch", "true");
Zeile gelöscht : user_pref("CT2625848.enableAlerts", "false");
Zeile gelöscht : user_pref("CT2625848.enableFix404ByUser", "TRUE");
Zeile gelöscht : user_pref("CT2625848.enableSearchFromAddressBar", "true");
Zeile gelöscht : user_pref("CT2625848.firstTimeDialogOpened", "true");
Zeile gelöscht : user_pref("CT2625848.fixPageNotFoundError", "true");
Zeile gelöscht : user_pref("CT2625848.fixPageNotFoundErrorByUser", "true");
Zeile gelöscht : user_pref("CT2625848.fixPageNotFoundErrorInHidden", "true");
Zeile gelöscht : user_pref("CT2625848.fixUrls", true);
Zeile gelöscht : user_pref("CT2625848.fullUserID", "UN59232029364762488.UP.20130627201925");
Zeile gelöscht : user_pref("CT2625848.homepageuserchanged", true);
Zeile gelöscht : user_pref("CT2625848.hxxp___fbtemplate_conduitapps_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPTAsaHNjcm9sbD0wLHZzY3JvbGw9MCx0aXRsZWJhcj0xLGNsb3NlYnV0dG9uPTEsc2F2ZXJlc2l6ZWRzaXplPTAsb3BlbnBvc2l0aW9uPWFsa[...]
Zeile gelöscht : user_pref("CT2625848.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc", "b3BlbnBvc2l0aW9uPW9mZnNldDo1MDs1MCxzYXZlbG9jYXRpb249MCxyZXNpemFibGU9bm8sc2Nyb2xsYmFycz1ubyx0aXRsZW[...]
Zeile gelöscht : user_pref("CT2625848.installId", "conduitnsisintegration");
Zeile gelöscht : user_pref("CT2625848.installType", "conduitnsisintegration");
Zeile gelöscht : user_pref("CT2625848.isCheckedStartAsHidden", true);
Zeile gelöscht : user_pref("CT2625848.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2625848.isFirstTimeToolbarLoading", "false");
Zeile gelöscht : user_pref("CT2625848.isNewTabEnabled", true);
Zeile gelöscht : user_pref("CT2625848.isPerformedSmartBarTransition", "true");
Zeile gelöscht : user_pref("CT2625848.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Zeile gelöscht : user_pref("CT2625848.keyword", true);
Zeile gelöscht : user_pref("CT2625848.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2625848&octid=CT2625848&SearchSource=15&CUI=UN59232029364762488&SSPV=&Lay=1&UM=false\"}[...]
Zeile gelöscht : user_pref("CT2625848.lastVersion", "10.16.4.519");
Zeile gelöscht : user_pref("CT2625848.migrateAppsAndComponents", true);
Zeile gelöscht : user_pref("CT2625848.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.chip.de%2F\",\"EB_MAIN_FRAME_TITLE\":\"CHIP%20Online%20-%20Deutschlands%20Webseite%20Nr.[...]
Zeile gelöscht : user_pref("CT2625848.notFirstTime.enc", "dHJ1ZQ==");
Zeile gelöscht : user_pref("CT2625848.openThankYouPage", "false");
Zeile gelöscht : user_pref("CT2625848.openUninstallPage", "true");
Zeile gelöscht : user_pref("CT2625848.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2625848&SearchSource=2&CUI=UN59232029364762488&UM=&q=");
Zeile gelöscht : user_pref("CT2625848.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\\"01\\\\/05\\\\/2013 19\\\"}\"}");
Zeile gelöscht : user_pref("CT2625848.price-gong.isManagedApp", "true");
Zeile gelöscht : user_pref("CT2625848.revertSettingsEnabled", "false");
Zeile gelöscht : user_pref("CT2625848.search.searchAppId", "129181467799155027");
Zeile gelöscht : user_pref("CT2625848.search.searchCount", "0");
Zeile gelöscht : user_pref("CT2625848.searchInNewTabEnabledByUser", "true");
Zeile gelöscht : user_pref("CT2625848.searchInNewTabEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT2625848.searchSuggestEnabledByUser", "true");
Zeile gelöscht : user_pref("CT2625848.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2625848\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://DVDVideoSoftTBDE.OurToolbar.com//xpi\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"DVDVideoSoftTB DE\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_Configuration_lastUpdate", "1373992389417");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1359213966039");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_appsMetadata_lastUpdate", "1359411061283");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1358621499500");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_location_lastUpdate", "1372317039236");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.13.40.15_lastUpdate", "1358489866215");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.14.40.128_lastUpdate", "1359391535265");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.14.42.7_lastUpdate", "1360938032691");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.14.65.43_lastUpdate", "1364809992179");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.15.0.562_lastUpdate", "1366696424035");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.15.2.523_lastUpdate", "1368826356224");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.16.2.509_lastUpdate", "1372317039352");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_login_10.16.4.519_lastUpdate", "1373992389579");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1358621499564");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_searchAPI_lastUpdate", "1373992389397");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_serviceMap_lastUpdate", "1373992389274");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_toolbarContextMenu_lastUpdate", "1358621499442");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_toolbarSettings_lastUpdate", "1373992389485");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_translation_lastUpdate", "1373992389561");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_userApps1ec55dac-8dca-406b-9697-5d68893c1c0c_lastUpdate", "1359040058486");
Zeile gelöscht : user_pref("CT2625848.serviceLayer_services_userApps_lastUpdate", "1359040058496");
Zeile gelöscht : user_pref("CT2625848.settingsINI", true);
Zeile gelöscht : user_pref("CT2625848.shouldFirstTimeDialog", "false");
Zeile gelöscht : user_pref("CT2625848.showToolbarPermission", "false");
Zeile gelöscht : user_pref("CT2625848.smartbar.CTID", "CT2625848");
Zeile gelöscht : user_pref("CT2625848.smartbar.Uninstall", "0");
Zeile gelöscht : user_pref("CT2625848.smartbar.homepage", true);
Zeile gelöscht : user_pref("CT2625848.smartbar.isHidden", true);
Zeile gelöscht : user_pref("CT2625848.smartbar.toolbarName", "DVDVideoSoftTB DE ");
Zeile gelöscht : user_pref("CT2625848.toolbarBornServerTime", "5-1-2013");
Zeile gelöscht : user_pref("CT2625848.toolbarCurrentServerTime", "16-7-2013");
Zeile gelöscht : user_pref("CT2625848.toolbarLoginClientTime", "Wed Apr 03 2013 10:16:42 GMT+0200");
Zeile gelöscht : user_pref("CT2625848.url_history0001.enc", "aHR0cDovL3d3dy5nb29nbGUuZGUvdXJsP3NhPXQmcmN0PWomcT1jYXJpc21hJTIwcG9sc2thJnNvdXJjZT13ZWImY2Q9MSZ2ZWQ9MENEQVFGakFBJnVybD1odHRwJTNBJTJGJTJGd3d3Lm1hcmluZXRyYWZm[...]
Zeile gelöscht : user_pref("CT2625848_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1374056238014,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Zeile gelöscht : user_pref("Smartbar.ConduitHomepagesList", "");
Zeile gelöscht : user_pref("Smartbar.ConduitSearchEngineList", "");
Zeile gelöscht : user_pref("Smartbar.ConduitSearchUrlList", "");
Zeile gelöscht : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://de.search.yahoo.com/search?fr=mcafee&p=");
Zeile gelöscht : user_pref("Smartbar.keywordURLSelectedCTID", "CT2625848");
Zeile gelöscht : user_pref("browser.search.defaultengine", "Web Search");
Zeile gelöscht : user_pref("browser.search.defaultenginename", "Web Search");
Zeile gelöscht : user_pref("browser.search.order.1", "Web Search");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Web Search");
Zeile gelöscht : user_pref("keyword.URL", "hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q=");
Zeile gelöscht : user_pref("smartBar.searchInNewTabOwner", "CT2625848");
Zeile gelöscht : user_pref("smartbar.addressBarOwnerCTID", "CT2625848");
Zeile gelöscht : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT2625848&SearchSource=13&CUI=SB_CUI");
Zeile gelöscht : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2625848&SearchSource=2&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2625848&SearchSource=2&CU[...]
Zeile gelöscht : user_pref("smartbar.machineId", "0EY9RPQQADTHKGFN/R0VO2/VTXVNKXSA1TXHZFLS2IHIO9/GDLMYGSVOWRSEGTCG2D+RP9OB1QPHDMNGMY1SKQ");
Zeile gelöscht : user_pref("smartbar.originalHomepage", "hxxp://www.arcor.de/");
Zeile gelöscht : user_pref("smartbar.originalSearchAddressUrl", "hxxp://de.search.yahoo.com/search?fr=mcafee&p=");
Zeile gelöscht : user_pref("smartbar.originalSearchEngine", "Sichere Suche");
[ Datei : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\jkdq4gsn.default\prefs.js ]
Zeile gelöscht : user_pref("CT2269050..clientLogIsEnabled", false);
Zeile gelöscht : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Zeile gelöscht : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Zeile gelöscht : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Zeile gelöscht : user_pref("CT2269050.AppTrackingLastCheckTime", "Tue Jun 07 2011 15:47:41 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.CTID", "CT2269050");
Zeile gelöscht : user_pref("CT2269050.CurrentServerDate", "10-7-2011");
Zeile gelöscht : user_pref("CT2269050.DialogsAlignMode", "LTR");
Zeile gelöscht : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.DownloadReferralCookieData", "");
Zeile gelöscht : user_pref("CT2269050.EMailNotifierPollDate", "Sun Jul 10 2011 21:08:16 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.FirstServerDate", "15-11-2010");
Zeile gelöscht : user_pref("CT2269050.FirstTime", true);
Zeile gelöscht : user_pref("CT2269050.FirstTimeFF3", true);
Zeile gelöscht : user_pref("CT2269050.FirstTimeSettingsDone", true);
Zeile gelöscht : user_pref("CT2269050.FixPageNotFoundErrors", true);
Zeile gelöscht : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Zeile gelöscht : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Zeile gelöscht : user_pref("CT2269050.HasUserGlobalKeys", true);
Zeile gelöscht : user_pref("CT2269050.HomePageProtectorEnabled", false);
Zeile gelöscht : user_pref("CT2269050.Initialize", true);
Zeile gelöscht : user_pref("CT2269050.InitializeCommonPrefs", true);
Zeile gelöscht : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Zeile gelöscht : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Zeile gelöscht : user_pref("CT2269050.InstalledDate", "Mon Nov 15 2010 17:17:08 GMT+0100");
Zeile gelöscht : user_pref("CT2269050.InvalidateCache", false);
Zeile gelöscht : user_pref("CT2269050.IsAlertDBUpdated", true);
Zeile gelöscht : user_pref("CT2269050.IsGrouping", false);
Zeile gelöscht : user_pref("CT2269050.IsMulticommunity", false);
Zeile gelöscht : user_pref("CT2269050.IsOpenThankYouPage", false);
Zeile gelöscht : user_pref("CT2269050.IsOpenUninstallPage", false);
Zeile gelöscht : user_pref("CT2269050.LanguagePackLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Zeile gelöscht : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Zeile gelöscht : user_pref("CT2269050.LastLogin_2.7.2.0", "Tue Mar 22 2011 21:21:46 GMT+0100");
Zeile gelöscht : user_pref("CT2269050.LastLogin_3.3.2.1", "Sun Mar 27 2011 11:05:03 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.LastLogin_3.3.3.2", "Wed Jun 22 2011 12:40:11 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.LastLogin_3.5.0.12", "Sun Jul 10 2011 19:43:16 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.LatestVersion", "3.3.3.2");
Zeile gelöscht : user_pref("CT2269050.Locale", "en");
Zeile gelöscht : user_pref("CT2269050.LoginCache", 4);
Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Zeile gelöscht : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Zeile gelöscht : user_pref("CT2269050.RadioIsPodcast", false);
Zeile gelöscht : user_pref("CT2269050.RadioLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Zeile gelöscht : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Zeile gelöscht : user_pref("CT2269050.RadioMediaID", "12473383");
Zeile gelöscht : user_pref("CT2269050.RadioMediaType", "Media Player");
Zeile gelöscht : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Zeile gelöscht : user_pref("CT2269050.RadioShrinkedFromSetup", false);
Zeile gelöscht : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Zeile gelöscht : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Zeile gelöscht : user_pref("CT2269050.SearchBoxWidth", 150);
Zeile gelöscht : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Zeile gelöscht : user_pref("CT2269050.SearchEngineBeforeUnload", "ICQ Search");
Zeile gelöscht : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Zeile gelöscht : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabEnabled", true);
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sun Jul 10 2011 15:43:16 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabUserEnabled", false);
Zeile gelöscht : user_pref("CT2269050.SearchProtectorEnabled", false);
Zeile gelöscht : user_pref("CT2269050.SearchProtectorToolbarDisabled", false);
Zeile gelöscht : user_pref("CT2269050.ServiceMapLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Zeile gelöscht : user_pref("CT2269050.SettingsLastCheckTime", "Sun Jul 10 2011 15:43:16 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.SettingsLastUpdate", "1307989396");
Zeile gelöscht : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Zeile gelöscht : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sun Jul 10 2011 15:43:16 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Zeile gelöscht : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Zeile gelöscht : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Zeile gelöscht : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCityToolbar.com,MyCollegeToolba[...]
Zeile gelöscht : user_pref("CT2269050.UserID", "UN04679355902800597");
Zeile gelöscht : user_pref("CT2269050.ValidationData_Search", 0);
Zeile gelöscht : user_pref("CT2269050.ValidationData_Toolbar", 2);
Zeile gelöscht : user_pref("CT2269050.WeatherNetwork", "");
Zeile gelöscht : user_pref("CT2269050.WeatherPollDate", "Sun Jul 10 2011 20:43:19 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.WeatherUnit", "C");
Zeile gelöscht : user_pref("CT2269050.alertChannelId", "666138");
Zeile gelöscht : user_pref("CT2269050.backendstorage.facebook_mode", "32");
Zeile gelöscht : user_pref("CT2269050.clientLogIsEnabled", true);
Zeile gelöscht : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Zeile gelöscht : user_pref("CT2269050.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdownload.conduit.com/\"}");
Zeile gelöscht : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Sun Jul 10 2011 19:43:16 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Zeile gelöscht : user_pref("CT2269050.initDone", true);
Zeile gelöscht : user_pref("CT2269050.isAppTrackingManagerOn", true);
Zeile gelöscht : user_pref("CT2269050.isFirstRadioInstallation", false);
Zeile gelöscht : user_pref("CT2269050.myStuffEnabled", true);
Zeile gelöscht : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Zeile gelöscht : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Zeile gelöscht : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Zeile gelöscht : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Zeile gelöscht : user_pref("CT2269050.oldAppsList", "128834881989343894,128834881989343895,111,129391330693125668,129466585399606892,129466585396013141,129121052374999726,129023235807856892,1000082,129351672002618989,[...]
Zeile gelöscht : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Zeile gelöscht : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Zeile gelöscht : user_pref("CT2269050.testingCtid", "");
Zeile gelöscht : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Zeile gelöscht : user_pref("CT2269050.usagesFlag", 2);
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/666138/661999/DE", "\"0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/DE", "\"0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", "\"1280146508\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "0uSPYx+Kl2jpu8sJZMeHjw==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "Dclc8oo4TTv7+mAkSlUSWg==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "K4Vqu91uAzWURlxJRdXJOg==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"803651ba7facb1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.2.1", "\"0652eeacc6cb1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"807dc126dd28cc1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3.2.1", "\"0652eeacc6cb1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.0.12", "\"807dc126dd28cc1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050", "\"634434930587600000\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/2011 11:17:11 AM", "634356118310000000");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2269050/CT2269050", "\"1307989396\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/equalizer_dead.gif", "\"0a8c48d3330c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/minimize.gif", "\"0e2106f3030c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/play.gif", "\"0f475394430c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/stop.gif", "\"08d9ef44430c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/vol.gif", "\"066e8863030c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"634432176643630000\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"634432176643630000\"");
Zeile gelöscht : user_pref("CommunityToolbar.EngineOwner", "");
Zeile gelöscht : user_pref("CommunityToolbar.EngineOwnerGuid", "{872b5b88-9db5-4310-bdd0-ac189557e5f5}");
Zeile gelöscht : user_pref("CommunityToolbar.EngineOwnerToolbarId", "dvdvideosofttb");
Zeile gelöscht : user_pref("CommunityToolbar.IsEngineShown", true);
Zeile gelöscht : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Zeile gelöscht : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Michael\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\jkdq4gsn.default\\conduitCommon\\modules\\3.5.0.12");
Zeile gelöscht : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.5.0.12");
Zeile gelöscht : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://storage.conduit.com/50/226/CT2269050/Gadgets/4d92694a-e591-42e6-93a2-583f4d96d7c0.html", "800x708");
Zeile gelöscht : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://storage.conduit.com/50/226/CT2269050/Gadgets/8e084b7c-cf5c-4e6c-97f3-6ecd9cd4c13f.html", "800x708");
Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwner", "CT2269050");
Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{872b5b88-9db5-4310-bdd0-ac189557e5f5}");
Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "dvdvideosofttb");
Zeile gelöscht : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=");
Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList", "CT2269050");
Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Zeile gelöscht : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Wed Mar 23 2011 13:34:29 GMT+0100");
Zeile gelöscht : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Jun 21 2011 00:35:32 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.alert.firstTimeAlertShown", true);
Zeile gelöscht : user_pref("CommunityToolbar.alert.locale", "en");
Zeile gelöscht : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Wed Jun 22 2011 13:16:05 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Zeile gelöscht : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Zeile gelöscht : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Zeile gelöscht : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Zeile gelöscht : user_pref("CommunityToolbar.alert.userId", "{5b563431-570b-4c39-b8aa-34b40e7252ad}");
Zeile gelöscht : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Dec 30 2010 14:13:11 GMT+0100");
Zeile gelöscht : user_pref("CommunityToolbar.globalUserId", "8a344a7e-c7fb-4cfb-b157-abcfd413ecb7");
Zeile gelöscht : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Zeile gelöscht : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Zeile gelöscht : user_pref("CommunityToolbar.killedEngine", true);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sun Jul 10 2011 15:43:25 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.firstTimeAlertShown", true);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.locale", "en");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sun Jul 10 2011 15:43:17 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1305622559");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.userId", "c52420b7-9bdb-4edc-bdc5-abbbc0685ca8");
Zeile gelöscht : user_pref("CommunityToolbar.undefined", "");
Zeile gelöscht : user_pref("browser.search.defaultenginename", "Web Search");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Web Search");
Zeile gelöscht : user_pref("extensions.asktb.abar-war-timeout", "4000");
Zeile gelöscht : user_pref("extensions.asktb.autofill-competitor-query-enabled", true);
Zeile gelöscht : user_pref("extensions.asktb.autofill-text-highlight-enabled", true);
Zeile gelöscht : user_pref("extensions.asktb.cbid", "F4");
Zeile gelöscht : user_pref("extensions.asktb.config-updated", true);
Zeile gelöscht : user_pref("extensions.asktb.crumb", "2011.02.17+09.27.50-toolbar001iad-DE-RnJhbmtmdXJ0IEFtIE1haW4sR2VybWFueQ%3D%3D");
Zeile gelöscht : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://de.ask.com/web?q={query}&qsrc={qsrc}&o={o}&l={l}");
Zeile gelöscht : user_pref("extensions.asktb.displaybehavior", "");
Zeile gelöscht : user_pref("extensions.asktb.displaytext", "");
Zeile gelöscht : user_pref("extensions.asktb.dtid", "YYYYYYYYDE");
Zeile gelöscht : user_pref("extensions.asktb.dyn-weather-do-locid-lookup-weatherWidget", true);
Zeile gelöscht : user_pref("extensions.asktb.fresh-install", false);
Zeile gelöscht : user_pref("extensions.asktb.hxxp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com\", \"www.facebook.com\", \"www.playsushi.com\", \"WWW.google.com\", \"hxxps://websearch.ask.com\", [...]
Zeile gelöscht : user_pref("extensions.asktb.l", "dis");
Zeile gelöscht : user_pref("extensions.asktb.last-config-req", "1321031082686");
Zeile gelöscht : user_pref("extensions.asktb.last-search-timestamp", "1303848465305");
Zeile gelöscht : user_pref("extensions.asktb.last-v", "3.12.2.100006");
Zeile gelöscht : user_pref("extensions.asktb.locale", "de_DE");
Zeile gelöscht : user_pref("extensions.asktb.lstation", "");
Zeile gelöscht : user_pref("extensions.asktb.o", "101699");
Zeile gelöscht : user_pref("extensions.asktb.options-lang", "de");
Zeile gelöscht : user_pref("extensions.asktb.options-locale", "UK");
Zeile gelöscht : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Zeile gelöscht : user_pref("extensions.asktb.pstate", "");
Zeile gelöscht : user_pref("extensions.asktb.qsrc", "2871");
Zeile gelöscht : user_pref("extensions.asktb.r", "3");
Zeile gelöscht : user_pref("extensions.asktb.search-history-queries", "Maman tu me manques déjÃ*||Antibiotika (v. altgriech. ");
Zeile gelöscht : user_pref("extensions.asktb.search-suggestions-enabled", true);
Zeile gelöscht : user_pref("extensions.asktb.silent-upgrade", true);
Zeile gelöscht : user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", true);
Zeile gelöscht : user_pref("extensions.asktb.socialmini-first", true);
Zeile gelöscht : user_pref("extensions.asktb.socialmini-interval", "1200000");
Zeile gelöscht : user_pref("extensions.asktb.socialmini-max-char-ticker", "33");
Zeile gelöscht : user_pref("extensions.asktb.socialmini-max-items", "30");
Zeile gelöscht : user_pref("extensions.asktb.socialmini-native-on", true);
Zeile gelöscht : user_pref("extensions.asktb.socialmini-speed", "5000");
Zeile gelöscht : user_pref("extensions.asktb.socialmini-transition-first-open", false);
Zeile gelöscht : user_pref("extensions.asktb.v", "3.13.1.100008");
Zeile gelöscht : user_pref("extensions.asktb.volume", "");
Zeile gelöscht : user_pref("extensions.enabledItems", "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1,{ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1,{ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.1,{872b5b88-9db5-4310-bdd0-a[...]
Zeile gelöscht : user_pref("icqtoolbar.allowSendURL", false);
Zeile gelöscht : user_pref("icqtoolbar.engineVerified", false);
Zeile gelöscht : user_pref("icqtoolbar.geolastmodified", 1320771355);
Zeile gelöscht : user_pref("icqtoolbar.hiddenElements", "itb_options");
Zeile gelöscht : user_pref("icqtoolbar.history", "Bernd%20und%20Reiner%20Methe||ferrari%20italia%20gt3||Der%20Clip%20stellung||Der%20Clip||mann||bmw%20320d%202010%20e46||bmw%20320d||bil||stellungen||Erin%20Holdsworth|[...]
Zeile gelöscht : user_pref("icqtoolbar.icqgeo", 49);
Zeile gelöscht : user_pref("icqtoolbar.installTime", "1320690031");
Zeile gelöscht : user_pref("icqtoolbar.installsource", "1");
Zeile gelöscht : user_pref("icqtoolbar.newtab_state", "1");
Zeile gelöscht : user_pref("icqtoolbar.numberOfSearches", 0);
Zeile gelöscht : user_pref("icqtoolbar.previousFFVersion", "7.0.1");
Zeile gelöscht : user_pref("icqtoolbar.skip_default_search", "no");
Zeile gelöscht : user_pref("icqtoolbar.suggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.uniqueID", "128966220712896617991289674125221");
Zeile gelöscht : user_pref("icqtoolbar.usageStatstTimestamp", 1321031386);
Zeile gelöscht : user_pref("icqtoolbar.version", "1.3.6");
Zeile gelöscht : user_pref("icqtoolbar.voucherHideClicks", 0);
Zeile gelöscht : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Zeile gelöscht : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Zeile gelöscht : user_pref("icqtoolbar.voucherWasShown", 0);
Zeile gelöscht : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", false);
Zeile gelöscht : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.xmlLanguage", "de");
Zeile gelöscht : user_pref("keyword.URL", "hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.5&ts=1374056477134.000004&tguid=46364-3869-1374056477134-575917B224F78A08AB9A70AFA5273075&st=chrome&q=");
Zeile gelöscht : user_pref("browser.search.defaultengine", "Web Search");
Zeile gelöscht : user_pref("browser.search.order.1", "Web Search");
-\\ Google Chrome v31.0.1650.63
[ Datei : C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gelöscht : search_url
Gelöscht : suggest_url
Gelöscht : keyword
[ Datei : C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [52220 octets] - [16/01/2014 20:58:33]
AdwCleaner[S0].txt - [50735 octets] - [16/01/2014 20:59:35]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [50796 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows Vista (TM) Home Premium x86
Ran by Gerhard on 16.01.2014 at 21:17:00,64
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\foxydeal
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0C7AB15B-BC4D-47B2-92BB-C161B049EE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5E4A064A-A8E2-45CF-9CA4-84F7C0BCEC3A}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\Users\Gerhard\AppData\Roaming\dll-files.com"
Successfully deleted: [Folder] "C:\Users\Gerhard\appdata\local\adawarebp"
Successfully deleted: [Folder] "C:\Program Files\dll-files.com fixer"
~~~ FireFox
Successfully deleted: [File] C:\Users\Gerhard\AppData\Roaming\mozilla\firefox\profiles\i6svqz4h.default\extensions\toolbar_avira-v7@apn.ask.com.xpi
Emptied folder: C:\Users\Gerhard\AppData\Roaming\mozilla\firefox\profiles\i6svqz4h.default\minidumps [183 files]
~~~ Chrome
Successfully deleted: [Folder] C:\Users\Gerhard\appdata\local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\aaaaacalgebmfelllfiaoknifldpngjh
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 16.01.2014 at 21:22:05,22
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2014 03
Ran by Gerhard (administrator) on GERHARD-PC on 16-01-2014 21:26:42
Running from C:\Users\Gerhard\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
() C:\Program Files\Dokan\DokanLibrary\mounter.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
() C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA) C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
(TomTom) C:\Program Files\MyTomTom 3\MyTomTomSA.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [KeNotify] - C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [34352 2006-11-06] ()
HKLM\...\Run: [SVPWUTIL] - C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [438272 2006-03-22] (TOSHIBA)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4702208 2007-09-03] (Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [411192 2007-03-29] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] - C:\Program Files\TOSHIBA\TBS\HSON.exe [55416 2006-12-07] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [509496 2007-04-03] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [538744 2007-05-22] (TOSHIBA Corporation)
HKLM\...\Run: [NDSTray.exe] - NDSTray.exe
HKLM\...\Run: [topi] - C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [581632 2007-07-10] (TOSHIBA)
HKLM\...\Run: [SynTPStart] - C:\Program Files\Synaptics\SynTP\SynTPStart.exe [204800 2007-07-27] (Synaptics, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1451304 2009-03-20] (Synaptics Incorporated)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2009-04-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-20] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKCU\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [413696 2006-11-13] (TOSHIBA)
HKCU\...\Run: [MyTomTomSA.exe] - C:\Program Files\MyTomTom 3\MyTomTomSA.exe [436728 2012-09-10] (TomTom)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-18] (Microsoft Corporation)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-18] (Microsoft Corporation)
HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-10] (Microsoft Corporation)
HKU\Default\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2006-11-13] (TOSHIBA)
HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-10] (Microsoft Corporation)
HKU\Default User\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2006-11-13] (TOSHIBA)
HKU\Michael\...\Run: [TOSCDSPD] - TOSCDSPD.EXE
HKU\Michael\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [ 2008-01-18] (Microsoft Corporation)
HKU\Michael\...\Run: [ICQ] - "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4
Startup: C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {5E4A064A-A8E2-45CF-9CA4-84F7C0BCEC3A} URL = hxxp://www.google.de/search?q={searchTerms}&rls=com.microsoft:*:IE-SearchBox&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7;
SearchScopes: HKCU - {40906B28-1544-4770-A95B-C3131405EBDF} URL = hxxp://de.search.yahoo.com/search?fr=mcafee&p={SearchTerms}
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ICQ Sparberater - {FE163F11-1919-4257-A280-FF5AF8DAEECB} - C:\Program Files\icq\Internet Explorer\icq.dll (solute gmbh)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 37 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default
FF NewTab: about:home
FF Homepage: about:home
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - E:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @innoplus.de/ino3DViewer - C:\Program Files\innoplus\3D-Viewer-innoPlus\npIno3DViewer.dll (INNOVA-engineering GmbH Dresden)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @mcafee.com/SAFFPlugin - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: Widget context - C:\Users\Gerhard\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [2013-12-28]
FF Extension: Lavasoft Search Plugin - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\jid1-yZwVFzbsyfMrqQ@jetpack [2012-05-22]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-01-07]
FF Extension: FoxyDeal - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D} [2013-07-17]
FF Extension: No Name - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\backupfox_959a5970_ada3_11e0_9f1c_0800200c9a66@mozillafirefoxextension.xpi [2011-09-10]
FF Extension: Greasemonkey - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2012-08-24]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-11-16]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2012-07-30]
Chrome:
=======
CHR DefaultSearchKeyword: conduit.search
CHR DefaultSearchProvider: Conduit Search
CHR DefaultSearchURL: hxxp://search.conduit.com/Results.aspx?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPB2E3A2F6-4B67-429C-A9EE-B4370F23D26F&q={searchTerms}&SSPV=
CHR DefaultNewTabURL:
CHR Extension: (YouTube) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2013-04-12]
CHR Extension: (Google Search) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2013-04-02]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb\1.0_0 [2012-07-13]
CHR Extension: (SiteAdvisor) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.6.4.1311_0 [2013-12-18]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.1_0 [2013-01-05]
CHR Extension: (Google Wallet) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2013-12-20]
CHR Extension: (Gmail) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 [2012-11-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2012-07-30]
CHR HKLM\...\Chrome\Extension: [nmpllndkedbnmonoomepeeglghdelffo] - C:\Program Files\icq\Chrome\icq-1.2.662.crx [2011-08-24]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-01-05]
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-20] (Avira Operations GmbH & Co. KG)
S4 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [168400 2013-07-26] (APN LLC.)
R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [22736 2013-06-27] ()
S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [103112 2013-10-02] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1699168 2012-09-19] (TuneUp Software)
R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.)
==================== Drivers (Whitelisted) ====================
S3 auusb; C:\Windows\System32\DRIVERS\auusb.sys [158640 2012-02-14] (Auerswald GmbH & Co.KG )
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-25] (Avira Operations GmbH & Co. KG)
S4 CplIR; C:\Windows\system32\DRIVERS\CplIR.SYS [14848 2007-03-06] (COMPAL ELECTRONIC INC.)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [96256 2013-06-20] (Windows (R) Win 7 DDK provider)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [19456 2006-07-28] (COMPAL ELECTRONIC INC.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-05] (Avira GmbH)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-09-19] (TuneUp Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-18] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
S3 catchme; \??\C:\Users\Gerhard\AppData\Local\Temp\catchme.sys [x]
S3 igfx; system32\DRIVERS\igdkmd32.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 Lavasoft Kernexplorer; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x]
S3 Tosrfcom; No ImagePath
S3 TpChoice; system32\DRIVERS\TpChoice.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-16 21:26 - 2014-01-16 21:26 - 00000000 ____D C:\Users\Gerhard\Downloads\FRST-OlderVersion
2014-01-16 21:22 - 2014-01-16 21:22 - 00002019 _____ C:\Users\Gerhard\Desktop\JRT.txt
2014-01-16 21:11 - 2014-01-16 21:11 - 00000000 ____D C:\Windows\ERUNT
2014-01-16 21:10 - 2014-01-16 21:10 - 01037068 _____ (Thisisu) C:\Users\Gerhard\Downloads\JRT.exe
2014-01-16 20:58 - 2014-01-16 21:02 - 00000000 ____D C:\AdwCleaner
2014-01-16 20:57 - 2014-01-16 20:57 - 01236282 _____ C:\Users\Gerhard\Downloads\adwcleaner.exe
2014-01-16 20:22 - 2014-01-16 20:22 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000911 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-16 20:21 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-16 20:20 - 2014-01-16 20:20 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Gerhard\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-16 20:14 - 2014-01-16 20:14 - 00143200 _____ C:\Windows\Minidump\Mini011614-01.dmp
2014-01-14 18:38 - 2014-01-14 18:38 - 00123409 _____ C:\ComboFix.txt
2014-01-14 18:25 - 2014-01-14 18:38 - 00000000 ____D C:\ComboFix
2014-01-14 18:25 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-14 18:25 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-14 18:25 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-14 18:24 - 2014-01-14 18:38 - 00000000 ____D C:\Qoobox
2014-01-14 18:24 - 2014-01-14 18:37 - 00000000 ____D C:\Windows\erdnt
2014-01-14 18:23 - 2014-01-14 18:23 - 05165717 ____R (Swearware) C:\Users\Gerhard\Downloads\ComboFix.exe
2014-01-13 20:27 - 2014-01-16 21:26 - 01221120 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST.exe
2014-01-04 18:50 - 2014-01-04 18:55 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Apple Computer
2014-01-04 18:50 - 2014-01-04 18:50 - 00001669 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-04 18:50 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple Computer
2014-01-04 18:50 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-01-04 18:48 - 2014-01-04 18:50 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-01-04 18:48 - 2014-01-04 18:50 - 00000000 ____D C:\Program Files\iTunes
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iPod
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Program Files\Apple Software Update
2014-01-04 18:44 - 2014-01-04 18:44 - 00000000 ____D C:\Program Files\Bonjour
2014-01-04 18:43 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-04 18:43 - 2014-01-04 18:46 - 00000000 ____D C:\ProgramData\Apple
2014-01-04 18:39 - 2014-01-04 18:42 - 98633040 _____ (Apple Inc.) C:\Users\Gerhard\Downloads\iTunesSetup.exe
2014-01-04 11:14 - 2014-01-04 11:14 - 00000000 ____D C:\ProgramData\Oracle
2014-01-04 11:13 - 2014-01-04 11:12 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-04 11:13 - 2014-01-04 11:11 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-04 11:13 - 2014-01-04 11:11 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-04 11:13 - 2014-01-04 11:11 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-04 11:10 - 2014-01-04 11:10 - 00915368 _____ (Oracle Corporation) C:\Users\Gerhard\Downloads\chromeinstall-7u45.exe
2014-01-02 21:40 - 2014-01-02 21:40 - 00143200 _____ C:\Windows\Minidump\Mini010214-01.dmp
2014-01-02 11:17 - 2014-01-02 19:43 - 00000000 ____D C:\Users\Gerhard\Muzyka od Gerdzika
2013-12-24 16:22 - 2013-12-24 16:22 - 00143200 _____ C:\Windows\Minidump\Mini122413-01.dmp
2013-12-24 16:21 - 2014-01-16 20:14 - 258616575 _____ C:\Windows\MEMORY.DMP
2013-12-22 17:30 - 2014-01-16 20:49 - 00072408 _____ C:\Windows\PFRO.log
2013-12-22 17:04 - 2013-12-22 17:04 - 00009797 _____ C:\Users\Gerhard\Downloads\xpcom.zip
2013-12-22 16:54 - 2013-12-22 16:54 - 00283096 _____ (Mozilla) C:\Users\Gerhard\Downloads\Firefox Setup Stub 26.0.exe
2013-12-22 16:42 - 2013-12-22 16:42 - 03541544 _____ (Piriform Ltd) C:\Users\Gerhard\Downloads\ccsetup408_slim.exe
2013-12-22 16:23 - 2013-12-22 16:23 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Gerhard\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-22 16:12 - 2013-12-22 16:13 - 01543245 _____ C:\Users\Gerhard\Downloads\mozjs.zip
2013-12-22 03:19 - 2013-12-22 03:19 - 00000000 ____D C:\Windows\CheckSur
2013-12-20 22:56 - 2014-01-13 19:58 - 00006956 _____ C:\Users\Gerhard\daemonprocess.txt
2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\cache
2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\.android
2013-12-20 21:02 - 2013-12-20 21:13 - 00028056 _____ C:\Users\Gerhard\Downloads\Addition.txt
2013-12-20 20:57 - 2014-01-16 21:26 - 00022339 _____ C:\Users\Gerhard\Downloads\FRST.txt
2013-12-20 20:57 - 2014-01-16 21:26 - 00000000 ____D C:\FRST
2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\TuneUp Software
2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Avira
2013-12-20 11:58 - 2013-12-22 17:06 - 00000000 ____D C:\Program Files\Mozilla Firefox(45)
==================== One Month Modified Files and Folders =======
2014-01-16 21:27 - 2013-12-20 20:57 - 00022339 _____ C:\Users\Gerhard\Downloads\FRST.txt
2014-01-16 21:26 - 2014-01-16 21:26 - 00000000 ____D C:\Users\Gerhard\Downloads\FRST-OlderVersion
2014-01-16 21:26 - 2014-01-13 20:27 - 01221120 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST.exe
2014-01-16 21:26 - 2013-12-20 20:57 - 00000000 ____D C:\FRST
2014-01-16 21:22 - 2014-01-16 21:22 - 00002019 _____ C:\Users\Gerhard\Desktop\JRT.txt
2014-01-16 21:13 - 2006-11-02 13:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-16 21:13 - 2006-11-02 13:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-16 21:12 - 2010-11-11 19:45 - 01643989 _____ C:\Windows\WindowsUpdate.log
2014-01-16 21:12 - 2006-11-02 14:01 - 00032560 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-16 21:12 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-16 21:11 - 2014-01-16 21:11 - 00000000 ____D C:\Windows\ERUNT
2014-01-16 21:10 - 2014-01-16 21:10 - 01037068 _____ (Thisisu) C:\Users\Gerhard\Downloads\JRT.exe
2014-01-16 21:02 - 2014-01-16 20:58 - 00000000 ____D C:\AdwCleaner
2014-01-16 20:59 - 2010-11-13 20:20 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2014-01-16 20:59 - 2010-11-13 19:48 - 00000000 ____D C:\ProgramData\ICQ
2014-01-16 20:57 - 2014-01-16 20:57 - 01236282 _____ C:\Users\Gerhard\Downloads\adwcleaner.exe
2014-01-16 20:50 - 2011-06-17 10:23 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-16 20:49 - 2013-12-22 17:30 - 00072408 _____ C:\Windows\PFRO.log
2014-01-16 20:46 - 2012-11-29 20:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-16 20:31 - 2011-06-17 10:23 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-16 20:22 - 2014-01-16 20:22 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000911 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-16 20:20 - 2014-01-16 20:20 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Gerhard\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-16 20:14 - 2014-01-16 20:14 - 00143200 _____ C:\Windows\Minidump\Mini011614-01.dmp
2014-01-16 20:14 - 2013-12-24 16:21 - 258616575 _____ C:\Windows\MEMORY.DMP
2014-01-16 20:14 - 2010-12-12 19:45 - 00000000 ____D C:\Windows\Minidump
2014-01-16 19:04 - 2010-11-19 16:48 - 00000478 ____H C:\Windows\Tasks\Norton Security Scan for Michael.job
2014-01-16 03:00 - 2010-11-11 21:13 - 00007728 _____ C:\Users\Gerhard\AppData\Local\d3d9caps.dat
2014-01-14 18:38 - 2014-01-14 18:38 - 00123409 _____ C:\ComboFix.txt
2014-01-14 18:38 - 2014-01-14 18:25 - 00000000 ____D C:\ComboFix
2014-01-14 18:38 - 2014-01-14 18:24 - 00000000 ____D C:\Qoobox
2014-01-14 18:38 - 2006-11-02 12:18 - 00000000 __RHD C:\Users\Default
2014-01-14 18:38 - 2006-11-02 12:18 - 00000000 ___RD C:\Users\Public
2014-01-14 18:37 - 2014-01-14 18:24 - 00000000 ____D C:\Windows\erdnt
2014-01-14 18:36 - 2006-11-02 11:23 - 00000215 _____ C:\Windows\system.ini
2014-01-14 18:23 - 2014-01-14 18:23 - 05165717 ____R (Swearware) C:\Users\Gerhard\Downloads\ComboFix.exe
2014-01-13 20:06 - 2012-05-29 17:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-13 20:06 - 2011-05-22 18:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-01-13 19:58 - 2013-12-20 22:56 - 00006956 _____ C:\Users\Gerhard\daemonprocess.txt
2014-01-09 06:14 - 2013-07-17 11:22 - 00033864 _____ C:\Windows\Launcher.exe
2014-01-04 18:55 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Apple Computer
2014-01-04 18:50 - 2014-01-04 18:50 - 00001669 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-04 18:50 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple Computer
2014-01-04 18:50 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-01-04 18:50 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iTunes
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iPod
2014-01-04 18:48 - 2014-01-04 18:43 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Program Files\Apple Software Update
2014-01-04 18:46 - 2014-01-04 18:43 - 00000000 ____D C:\ProgramData\Apple
2014-01-04 18:46 - 2010-11-11 21:13 - 00000000 ____D C:\Users\Gerhard
2014-01-04 18:44 - 2014-01-04 18:44 - 00000000 ____D C:\Program Files\Bonjour
2014-01-04 18:42 - 2014-01-04 18:39 - 98633040 _____ (Apple Inc.) C:\Users\Gerhard\Downloads\iTunesSetup.exe
2014-01-04 11:14 - 2014-01-04 11:14 - 00000000 ____D C:\ProgramData\Oracle
2014-01-04 11:13 - 2007-04-16 06:04 - 00000000 ____D C:\Program Files\Common Files\Java
2014-01-04 11:12 - 2014-01-04 11:13 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-04 11:11 - 2014-01-04 11:13 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-04 11:11 - 2014-01-04 11:13 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-04 11:11 - 2014-01-04 11:13 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-04 11:11 - 2007-04-16 06:04 - 00000000 ____D C:\Program Files\Java
2014-01-04 11:10 - 2014-01-04 11:10 - 00915368 _____ (Oracle Corporation) C:\Users\Gerhard\Downloads\chromeinstall-7u45.exe
2014-01-02 21:40 - 2014-01-02 21:40 - 00143200 _____ C:\Windows\Minidump\Mini010214-01.dmp
2014-01-02 19:43 - 2014-01-02 11:17 - 00000000 ____D C:\Users\Gerhard\Muzyka od Gerdzika
2014-01-02 11:21 - 2010-11-11 21:37 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Toshiba
2013-12-31 17:51 - 2012-07-13 15:37 - 00000000 ____D C:\Users\Gerhard\Documents\Dokumente
2013-12-28 17:28 - 2010-11-11 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Adobe
2013-12-28 16:07 - 2006-11-02 11:33 - 01567294 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-25 18:04 - 2013-11-16 18:13 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-24 16:31 - 2011-01-10 18:46 - 00073728 _____ C:\Users\Gerhard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-24 16:22 - 2013-12-24 16:22 - 00143200 _____ C:\Windows\Minidump\Mini122413-01.dmp
2013-12-22 18:05 - 2012-12-11 18:55 - 00000000 ____D C:\Users\Gerhard\Documents\Kontoauszug
2013-12-22 17:37 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-12-22 17:12 - 2010-11-13 16:08 - 00000851 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-22 17:06 - 2013-12-20 11:58 - 00000000 ____D C:\Program Files\Mozilla Firefox(45)
2013-12-22 17:04 - 2013-12-22 17:04 - 00009797 _____ C:\Users\Gerhard\Downloads\xpcom.zip
2013-12-22 16:54 - 2013-12-22 16:54 - 00283096 _____ (Mozilla) C:\Users\Gerhard\Downloads\Firefox Setup Stub 26.0.exe
2013-12-22 16:46 - 2007-04-13 11:12 - 00000000 ____D C:\Windows\Panther
2013-12-22 16:42 - 2013-12-22 16:42 - 03541544 _____ (Piriform Ltd) C:\Users\Gerhard\Downloads\ccsetup408_slim.exe
2013-12-22 16:23 - 2013-12-22 16:23 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Gerhard\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-22 16:13 - 2013-12-22 16:12 - 01543245 _____ C:\Users\Gerhard\Downloads\mozjs.zip
2013-12-22 03:21 - 2010-11-14 13:11 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-22 03:19 - 2013-12-22 03:19 - 00000000 ____D C:\Windows\CheckSur
2013-12-22 03:15 - 2013-08-14 16:33 - 00000000 ____D C:\Windows\system32\MRT
2013-12-22 03:11 - 2006-11-02 11:24 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-12-21 12:27 - 2013-01-05 17:51 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\DVDVideoSoft
2013-12-21 09:31 - 2011-06-17 10:23 - 00000000 ____D C:\Program Files\Google
2013-12-20 23:04 - 2013-08-05 21:02 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-12-20 23:04 - 2013-08-05 21:02 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\cache
2013-12-20 22:56 - 2013-12-20 22:56 - 00000000 ____D C:\Users\Gerhard\.android
2013-12-20 22:33 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc
2013-12-20 22:32 - 2010-11-13 16:05 - 00000000 ____D C:\Users\Michael
2013-12-20 22:32 - 2006-11-02 11:22 - 49807360 _____ C:\Windows\system32\config\software_previous
2013-12-20 22:32 - 2006-11-02 11:22 - 42467328 _____ C:\Windows\system32\config\components_previous
2013-12-20 22:32 - 2006-11-02 11:22 - 23855104 _____ C:\Windows\system32\config\system_previous
2013-12-20 22:32 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2013-12-20 22:32 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2013-12-20 22:32 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\default_previous
2013-12-20 22:31 - 2012-08-26 17:12 - 00000000 ____D C:\Users\Gerhard\Documents\102CANON
2013-12-20 22:31 - 2012-07-22 11:40 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-12-20 22:31 - 2010-11-14 18:06 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\vlc
2013-12-20 22:31 - 2010-11-11 21:13 - 00000000 ___RD C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-20 22:31 - 2010-11-11 21:13 - 00000000 ___RD C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-20 22:31 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool
2013-12-20 22:30 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration
2013-12-20 21:13 - 2013-12-20 21:02 - 00028056 _____ C:\Users\Gerhard\Downloads\Addition.txt
2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\TuneUp Software
2013-12-20 15:37 - 2013-12-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Avira
2013-12-20 15:37 - 2010-11-13 16:05 - 00000000 ____D C:\Users\Michael\AppData\Local\VirtualStore
2013-12-18 03:31 - 2012-07-30 14:27 - 00000000 ____D C:\Program Files\McAfee
Some content of TEMP:
====================
C:\Users\Gerhard\AppData\Local\Temp\avgnt.exe
C:\Users\Gerhard\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-16 21:21
==================== End Of Log ============================
--- --- --- |
|
17.01.2014, 16:54
| #7 |
| /// the machine /// TB-Ausbilder | Lollipop Network VirusESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
17.01.2014, 22:13
| #8 |
| | Lollipop Network VirusCode:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=3ec35f760ee07a4ea6724113b8bdee7a
# engine=16694
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-17 08:55:22
# local_time=2014-01-17 09:55:22 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1799 16775166 100 95 26272 160663427 18968 0
# compatibility_mode=5892 16776573 100 100 21529 227524850 0 0
# scanned=203711
# found=0
# cleaned=0
# scan_time=7930
Code:
ATTFilter Results of screen317's Security Check version 0.99.79 Windows Vista Service Pack 2 x86 Internet Explorer 8 Out of date! Internet Explorer 8 ``````````````Antivirus/Firewall Check:`````````````` Avira Desktop Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` McAfee SiteAdvisor Malwarebytes Anti-Malware Version 1.75.0.1300 TuneUp Utilities 2013 TuneUp Utilities Language Pack (de-DE) Java(TM) 6 Update 37 Java 7 Update 45 Java(TM) SE Runtime Environment 6 Java version out of Date! Adobe Flash Player 11.9.900.170 Adobe Reader 10.1.0 Adobe Reader out of Date! Mozilla Firefox (9.0.1) Google Chrome 31.0.1650.63 Google Chrome 32.0.1700.76 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Avira Antivir avgnt.exe Avira Antivir avguard.exe Malwarebytes' Anti-Malware mbamscheduler.exe TOSHIBA Toshiba Online Product Information TOPI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` |
|
18.01.2014, 09:46
| #9 |
| /// the machine /// TB-Ausbilder | Lollipop Network Virus das frische FRST log?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
21.01.2014, 18:16
| #10 |
| | Lollipop Network VirusFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-01-2014
Ran by Gerhard (administrator) on GERHARD-PC on 21-01-2014 18:14:46
Running from C:\Users\Gerhard\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
() C:\Program Files\Dokan\DokanLibrary\mounter.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
() C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA) C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
(TomTom) C:\Program Files\MyTomTom 3\MyTomTomSA.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Gerhard\Downloads\FRST (1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [KeNotify] - C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [34352 2006-11-06] ()
HKLM\...\Run: [SVPWUTIL] - C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [438272 2006-03-22] (TOSHIBA)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4702208 2007-09-03] (Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [411192 2007-03-29] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] - C:\Program Files\TOSHIBA\TBS\HSON.exe [55416 2006-12-07] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [509496 2007-04-03] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [538744 2007-05-22] (TOSHIBA Corporation)
HKLM\...\Run: [NDSTray.exe] - NDSTray.exe
HKLM\...\Run: [topi] - C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [581632 2007-07-10] (TOSHIBA)
HKLM\...\Run: [SynTPStart] - C:\Program Files\Synaptics\SynTP\SynTPStart.exe [204800 2007-07-27] (Synaptics, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1451304 2009-03-20] (Synaptics Incorporated)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2009-04-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-20] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKCU\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [413696 2006-11-13] (TOSHIBA)
HKCU\...\Run: [MyTomTomSA.exe] - C:\Program Files\MyTomTom 3\MyTomTomSA.exe [436728 2012-09-10] (TomTom)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-18] (Microsoft Corporation)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-18] (Microsoft Corporation)
HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-10] (Microsoft Corporation)
HKU\Default\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2006-11-13] (TOSHIBA)
HKU\Michael\...\Run: [TOSCDSPD] - TOSCDSPD.EXE
HKU\Michael\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [ 2008-01-18] (Microsoft Corporation)
HKU\Michael\...\Run: [ICQ] - "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4
Startup: C:\Users\Gerhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {5E4A064A-A8E2-45CF-9CA4-84F7C0BCEC3A} URL = hxxp://www.google.de/search?q={searchTerms}&rls=com.microsoft:*:IE-SearchBox&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7;
SearchScopes: HKCU - {40906B28-1544-4770-A95B-C3131405EBDF} URL = hxxp://de.search.yahoo.com/search?fr=mcafee&p={SearchTerms}
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ICQ Sparberater - {FE163F11-1919-4257-A280-FF5AF8DAEECB} - C:\Program Files\icq\Internet Explorer\icq.dll (solute gmbh)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 37 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default
FF NewTab: about:home
FF Homepage: about:home
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - E:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @innoplus.de/ino3DViewer - C:\Program Files\innoplus\3D-Viewer-innoPlus\npIno3DViewer.dll (INNOVA-engineering GmbH Dresden)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @mcafee.com/SAFFPlugin - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: Widget context - C:\Users\Gerhard\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [2013-12-28]
FF Extension: Lavasoft Search Plugin - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\jid1-yZwVFzbsyfMrqQ@jetpack [2012-05-22]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-01-07]
FF Extension: FoxyDeal - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D} [2013-07-17]
FF Extension: No Name - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\backupfox_959a5970_ada3_11e0_9f1c_0800200c9a66@mozillafirefoxextension.xpi [2011-09-10]
FF Extension: Greasemonkey - C:\Users\Gerhard\AppData\Roaming\Mozilla\Firefox\Profiles\i6svqz4h.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2012-08-24]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-11-16]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2012-07-30]
Chrome:
=======
CHR DefaultSearchKeyword: conduit.search
CHR DefaultSearchProvider: Conduit Search
CHR DefaultSearchURL: hxxp://search.conduit.com/Results.aspx?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPB2E3A2F6-4B67-429C-A9EE-B4370F23D26F&q={searchTerms}&SSPV=
CHR DefaultNewTabURL:
CHR Extension: (No Name) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiennapmieppnpfhhogglccgepbdajan [2013-07-17]
CHR Extension: (YouTube) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-19]
CHR Extension: (Google Search) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-19]
CHR Extension: (Lamborghini Sesto Elemento Theme) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb [2012-07-13]
CHR Extension: (SiteAdvisor) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2012-07-31]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-01-05]
CHR Extension: (Google Wallet) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\Gerhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-19]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2012-07-30]
CHR HKLM\...\Chrome\Extension: [nmpllndkedbnmonoomepeeglghdelffo] - C:\Program Files\icq\Chrome\icq-1.2.662.crx [2011-08-24]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-01-05]
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-20] (Avira Operations GmbH & Co. KG)
S4 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [168400 2013-07-26] (APN LLC.)
R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [22736 2013-06-27] ()
S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [103112 2013-10-02] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1699168 2012-09-19] (TuneUp Software)
R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.)
==================== Drivers (Whitelisted) ====================
S3 auusb; C:\Windows\System32\DRIVERS\auusb.sys [158640 2012-02-14] (Auerswald GmbH & Co.KG )
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-25] (Avira Operations GmbH & Co. KG)
S4 CplIR; C:\Windows\system32\DRIVERS\CplIR.SYS [14848 2007-03-06] (COMPAL ELECTRONIC INC.)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [96256 2013-06-20] (Windows (R) Win 7 DDK provider)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [19456 2006-07-28] (COMPAL ELECTRONIC INC.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-05] (Avira GmbH)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-09-19] (TuneUp Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-18] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
S3 catchme; \??\C:\Users\Gerhard\AppData\Local\Temp\catchme.sys [x]
S3 igfx; system32\DRIVERS\igdkmd32.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 Lavasoft Kernexplorer; \??\C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x]
S3 Tosrfcom; No ImagePath
S3 TpChoice; system32\DRIVERS\TpChoice.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-21 18:14 - 2014-01-21 18:14 - 01222144 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST (1).exe
2014-01-21 10:37 - 2014-01-21 10:37 - 00143200 _____ C:\Windows\Minidump\Mini012114-01.dmp
2014-01-19 20:50 - 2014-01-19 20:51 - 00000000 ____D C:\Users\Gerhard\Documents\Datein 2
2014-01-17 22:07 - 2014-01-17 22:07 - 00987425 _____ C:\Users\Gerhard\Downloads\SecurityCheck.exe
2014-01-17 19:36 - 2014-01-17 19:36 - 02347384 _____ (ESET) C:\Users\Gerhard\Downloads\esetsmartinstaller_enu.exe
2014-01-16 21:26 - 2014-01-16 21:26 - 00000000 ____D C:\Users\Gerhard\Downloads\FRST-OlderVersion
2014-01-16 21:11 - 2014-01-16 21:11 - 00000000 ____D C:\Windows\ERUNT
2014-01-16 21:10 - 2014-01-16 21:10 - 01037068 _____ (Thisisu) C:\Users\Gerhard\Downloads\JRT.exe
2014-01-16 20:58 - 2014-01-16 21:02 - 00000000 ____D C:\AdwCleaner
2014-01-16 20:57 - 2014-01-16 20:57 - 01236282 _____ C:\Users\Gerhard\Downloads\adwcleaner.exe
2014-01-16 20:22 - 2014-01-16 20:22 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000911 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-16 20:21 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-16 20:20 - 2014-01-16 20:20 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Gerhard\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-16 20:14 - 2014-01-16 20:14 - 00143200 _____ C:\Windows\Minidump\Mini011614-01.dmp
2014-01-14 18:38 - 2014-01-14 18:38 - 00123409 _____ C:\ComboFix.txt
2014-01-14 18:25 - 2014-01-14 18:38 - 00000000 ____D C:\ComboFix
2014-01-14 18:25 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-14 18:25 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-14 18:25 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-14 18:25 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-14 18:24 - 2014-01-14 18:38 - 00000000 ____D C:\Qoobox
2014-01-14 18:24 - 2014-01-14 18:37 - 00000000 ____D C:\Windows\erdnt
2014-01-14 18:23 - 2014-01-14 18:23 - 05165717 ____R (Swearware) C:\Users\Gerhard\Downloads\ComboFix.exe
2014-01-13 20:27 - 2014-01-16 21:26 - 01221120 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST.exe
2014-01-04 18:50 - 2014-01-04 18:55 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Apple Computer
2014-01-04 18:50 - 2014-01-04 18:50 - 00001669 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-04 18:50 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple Computer
2014-01-04 18:50 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-01-04 18:48 - 2014-01-04 18:50 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-01-04 18:48 - 2014-01-04 18:50 - 00000000 ____D C:\Program Files\iTunes
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iPod
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Program Files\Apple Software Update
2014-01-04 18:44 - 2014-01-04 18:44 - 00000000 ____D C:\Program Files\Bonjour
2014-01-04 18:43 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-04 18:43 - 2014-01-04 18:46 - 00000000 ____D C:\ProgramData\Apple
2014-01-04 18:39 - 2014-01-04 18:42 - 98633040 _____ (Apple Inc.) C:\Users\Gerhard\Downloads\iTunesSetup.exe
2014-01-04 11:14 - 2014-01-04 11:14 - 00000000 ____D C:\ProgramData\Oracle
2014-01-04 11:13 - 2014-01-04 11:12 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-04 11:13 - 2014-01-04 11:11 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-04 11:13 - 2014-01-04 11:11 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-04 11:13 - 2014-01-04 11:11 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-04 11:10 - 2014-01-04 11:10 - 00915368 _____ (Oracle Corporation) C:\Users\Gerhard\Downloads\chromeinstall-7u45.exe
2014-01-02 21:40 - 2014-01-02 21:40 - 00143200 _____ C:\Windows\Minidump\Mini010214-01.dmp
2014-01-02 11:17 - 2014-01-02 19:43 - 00000000 ____D C:\Users\Gerhard\Muzyka od Gerdzika
2013-12-24 16:22 - 2013-12-24 16:22 - 00143200 _____ C:\Windows\Minidump\Mini122413-01.dmp
2013-12-24 16:21 - 2014-01-21 10:37 - 273940447 _____ C:\Windows\MEMORY.DMP
2013-12-22 17:30 - 2014-01-16 20:49 - 00072408 _____ C:\Windows\PFRO.log
2013-12-22 17:04 - 2013-12-22 17:04 - 00009797 _____ C:\Users\Gerhard\Downloads\xpcom.zip
2013-12-22 16:54 - 2013-12-22 16:54 - 00283096 _____ (Mozilla) C:\Users\Gerhard\Downloads\Firefox Setup Stub 26.0.exe
2013-12-22 16:42 - 2013-12-22 16:42 - 03541544 _____ (Piriform Ltd) C:\Users\Gerhard\Downloads\ccsetup408_slim.exe
2013-12-22 16:23 - 2013-12-22 16:23 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Gerhard\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-22 16:12 - 2013-12-22 16:13 - 01543245 _____ C:\Users\Gerhard\Downloads\mozjs.zip
2013-12-22 03:19 - 2013-12-22 03:19 - 00000000 ____D C:\Windows\CheckSur
==================== One Month Modified Files and Folders =======
2014-01-21 18:14 - 2014-01-21 18:14 - 01222144 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST (1).exe
2014-01-21 18:14 - 2013-12-20 20:57 - 00022114 _____ C:\Users\Gerhard\Downloads\FRST.txt
2014-01-21 17:46 - 2012-11-29 20:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-21 17:45 - 2010-11-19 16:48 - 00000478 ____H C:\Windows\Tasks\Norton Security Scan for Michael.job
2014-01-21 17:31 - 2011-06-17 10:23 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 17:23 - 2010-11-11 19:45 - 01530191 _____ C:\Windows\WindowsUpdate.log
2014-01-21 10:37 - 2014-01-21 10:37 - 00143200 _____ C:\Windows\Minidump\Mini012114-01.dmp
2014-01-21 10:37 - 2013-12-24 16:21 - 273940447 _____ C:\Windows\MEMORY.DMP
2014-01-21 10:37 - 2010-12-12 19:45 - 00000000 ____D C:\Windows\Minidump
2014-01-21 10:37 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-21 10:37 - 2006-11-02 13:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-21 10:37 - 2006-11-02 13:47 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-19 20:51 - 2014-01-19 20:50 - 00000000 ____D C:\Users\Gerhard\Documents\Datein 2
2014-01-19 12:34 - 2006-11-02 14:01 - 00032558 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-17 22:07 - 2014-01-17 22:07 - 00987425 _____ C:\Users\Gerhard\Downloads\SecurityCheck.exe
2014-01-17 19:36 - 2014-01-17 19:36 - 02347384 _____ (ESET) C:\Users\Gerhard\Downloads\esetsmartinstaller_enu.exe
2014-01-17 15:46 - 2012-07-13 15:37 - 00000000 ____D C:\Users\Gerhard\Documents\Dokumente
2014-01-17 03:17 - 2010-11-14 13:11 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-17 03:08 - 2013-08-14 16:33 - 00000000 ____D C:\Windows\system32\MRT
2014-01-17 03:05 - 2006-11-02 11:24 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-01-16 21:26 - 2014-01-16 21:26 - 00000000 ____D C:\Users\Gerhard\Downloads\FRST-OlderVersion
2014-01-16 21:26 - 2014-01-13 20:27 - 01221120 _____ (Farbar) C:\Users\Gerhard\Downloads\FRST.exe
2014-01-16 21:26 - 2013-12-20 20:57 - 00000000 ____D C:\FRST
2014-01-16 21:11 - 2014-01-16 21:11 - 00000000 ____D C:\Windows\ERUNT
2014-01-16 21:10 - 2014-01-16 21:10 - 01037068 _____ (Thisisu) C:\Users\Gerhard\Downloads\JRT.exe
2014-01-16 21:02 - 2014-01-16 20:58 - 00000000 ____D C:\AdwCleaner
2014-01-16 20:59 - 2010-11-13 20:20 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2014-01-16 20:59 - 2010-11-13 19:48 - 00000000 ____D C:\ProgramData\ICQ
2014-01-16 20:57 - 2014-01-16 20:57 - 01236282 _____ C:\Users\Gerhard\Downloads\adwcleaner.exe
2014-01-16 20:50 - 2011-06-17 10:23 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-16 20:49 - 2013-12-22 17:30 - 00072408 _____ C:\Windows\PFRO.log
2014-01-16 20:22 - 2014-01-16 20:22 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000911 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-16 20:21 - 2014-01-16 20:21 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-16 20:20 - 2014-01-16 20:20 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Gerhard\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-16 20:14 - 2014-01-16 20:14 - 00143200 _____ C:\Windows\Minidump\Mini011614-01.dmp
2014-01-16 03:00 - 2010-11-11 21:13 - 00007728 _____ C:\Users\Gerhard\AppData\Local\d3d9caps.dat
2014-01-14 18:38 - 2014-01-14 18:38 - 00123409 _____ C:\ComboFix.txt
2014-01-14 18:38 - 2014-01-14 18:25 - 00000000 ____D C:\ComboFix
2014-01-14 18:38 - 2014-01-14 18:24 - 00000000 ____D C:\Qoobox
2014-01-14 18:38 - 2006-11-02 12:18 - 00000000 __RHD C:\Users\Default
2014-01-14 18:38 - 2006-11-02 12:18 - 00000000 ___RD C:\Users\Public
2014-01-14 18:37 - 2014-01-14 18:24 - 00000000 ____D C:\Windows\erdnt
2014-01-14 18:36 - 2006-11-02 11:23 - 00000215 _____ C:\Windows\system.ini
2014-01-14 18:23 - 2014-01-14 18:23 - 05165717 ____R (Swearware) C:\Users\Gerhard\Downloads\ComboFix.exe
2014-01-13 20:06 - 2012-05-29 17:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-13 20:06 - 2011-05-22 18:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-01-13 19:58 - 2013-12-20 22:56 - 00006956 _____ C:\Users\Gerhard\daemonprocess.txt
2014-01-09 06:14 - 2013-07-17 11:22 - 00033864 _____ C:\Windows\Launcher.exe
2014-01-04 18:55 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Apple Computer
2014-01-04 18:50 - 2014-01-04 18:50 - 00001669 _____ C:\Users\Public\Desktop\iTunes.lnk
2014-01-04 18:50 - 2014-01-04 18:50 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple Computer
2014-01-04 18:50 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-01-04 18:50 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iTunes
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-04 18:48 - 2014-01-04 18:48 - 00000000 ____D C:\Program Files\iPod
2014-01-04 18:48 - 2014-01-04 18:43 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Apple
2014-01-04 18:47 - 2014-01-04 18:47 - 00000000 ____D C:\Program Files\Apple Software Update
2014-01-04 18:46 - 2014-01-04 18:43 - 00000000 ____D C:\ProgramData\Apple
2014-01-04 18:46 - 2010-11-11 21:13 - 00000000 ____D C:\Users\Gerhard
2014-01-04 18:44 - 2014-01-04 18:44 - 00000000 ____D C:\Program Files\Bonjour
2014-01-04 18:42 - 2014-01-04 18:39 - 98633040 _____ (Apple Inc.) C:\Users\Gerhard\Downloads\iTunesSetup.exe
2014-01-04 11:14 - 2014-01-04 11:14 - 00000000 ____D C:\ProgramData\Oracle
2014-01-04 11:13 - 2007-04-16 06:04 - 00000000 ____D C:\Program Files\Common Files\Java
2014-01-04 11:12 - 2014-01-04 11:13 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-04 11:11 - 2014-01-04 11:13 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-04 11:11 - 2014-01-04 11:13 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-04 11:11 - 2014-01-04 11:13 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-04 11:11 - 2007-04-16 06:04 - 00000000 ____D C:\Program Files\Java
2014-01-04 11:10 - 2014-01-04 11:10 - 00915368 _____ (Oracle Corporation) C:\Users\Gerhard\Downloads\chromeinstall-7u45.exe
2014-01-02 21:40 - 2014-01-02 21:40 - 00143200 _____ C:\Windows\Minidump\Mini010214-01.dmp
2014-01-02 19:43 - 2014-01-02 11:17 - 00000000 ____D C:\Users\Gerhard\Muzyka od Gerdzika
2014-01-02 11:21 - 2010-11-11 21:37 - 00000000 ____D C:\Users\Gerhard\AppData\Roaming\Toshiba
2013-12-28 17:28 - 2010-11-11 22:56 - 00000000 ____D C:\Users\Gerhard\AppData\Local\Adobe
2013-12-28 16:07 - 2006-11-02 11:33 - 01567294 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-25 18:04 - 2013-11-16 18:13 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-24 16:31 - 2011-01-10 18:46 - 00073728 _____ C:\Users\Gerhard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-24 16:22 - 2013-12-24 16:22 - 00143200 _____ C:\Windows\Minidump\Mini122413-01.dmp
2013-12-22 18:05 - 2012-12-11 18:55 - 00000000 ____D C:\Users\Gerhard\Documents\Kontoauszug
2013-12-22 17:37 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-12-22 17:12 - 2010-11-13 16:08 - 00000851 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-22 17:06 - 2013-12-20 11:58 - 00000000 ____D C:\Program Files\Mozilla Firefox(45)
2013-12-22 17:04 - 2013-12-22 17:04 - 00009797 _____ C:\Users\Gerhard\Downloads\xpcom.zip
2013-12-22 16:54 - 2013-12-22 16:54 - 00283096 _____ (Mozilla) C:\Users\Gerhard\Downloads\Firefox Setup Stub 26.0.exe
2013-12-22 16:46 - 2007-04-13 11:12 - 00000000 ____D C:\Windows\Panther
2013-12-22 16:42 - 2013-12-22 16:42 - 03541544 _____ (Piriform Ltd) C:\Users\Gerhard\Downloads\ccsetup408_slim.exe
2013-12-22 16:23 - 2013-12-22 16:23 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Gerhard\Downloads\ParetoLogic PC Health Advisor_de.exe
2013-12-22 16:13 - 2013-12-22 16:12 - 01543245 _____ C:\Users\Gerhard\Downloads\mozjs.zip
2013-12-22 03:19 - 2013-12-22 03:19 - 00000000 ____D C:\Windows\CheckSur
Some content of TEMP:
====================
C:\Users\Gerhard\AppData\Local\Temp\avgnt.exe
C:\Users\Gerhard\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-21 10:44
==================== End Of Log ============================
Vielen Dank |
|
22.01.2014, 12:05
| #11 |
| /// the machine /// TB-Ausbilder | Lollipop Network Virus Java, Adobe und Windows updaten. Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
Linear-Darstellung
