|
Log-Analyse und Auswertung: Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
08.02.2014, 09:52 | #1 |
| Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen FRST FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-02-2014 Ran by Manuel (administrator) on MANUEL-PC on 08-02-2014 09:34:11 Running from C:\Users\Manuel\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\System32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe () C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe () C:\Windows\SysWOW64\PnkBstrA.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (VMware, Inc.) D:\Vmware\vmware-authd.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe () D:\Vmware\vmware-hostd.exe (TeamSpeak Systems GmbH) D:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe (Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (VMware, Inc.) D:\Vmware\vmware-tray.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6470760 2012-05-08] (Realtek Semiconductor) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-22] (AVAST Software) HKLM-x32\...\Run: [ControlCenterCount] - C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [872448 2012-03-26] (MSI CO.,LTD.) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-2966757714-401893276-3215075033-1000\...\Run: [Raptr] - C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-01-08] (Raptr, Inc) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD80104D7FE6FCE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: No Name - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\qv46dgox.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll () FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-23] Chrome: ======= CHR DefaultSearchKeyword: bing.com CHR DefaultSearchProvider: Bing CHR DefaultSearchURL: hxxp://www.bing.com/search?FORM=BDT3DF&PC=BDT3&q={searchTerms} CHR DefaultNewTabURL: CHR Extension: (AdBlock) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-30] CHR Extension: (avast! Online Security) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-07] CHR Extension: (Google Wallet) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23] CHR Extension: (YouTube Unblocker) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-02-07] ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-22] (AVAST Software) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 MSISleep; C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe [282624 2013-04-29] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-01-29] () R2 VMAuthdService; D:\Vmware\vmware-authd.exe [86096 2013-10-18] (VMware, Inc.) R2 VMwareHostd; D:\Vmware\vmware-hostd.exe [14405200 2013-10-18] () ==================== Drivers (Whitelisted) ==================== R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices) R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-22] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-22] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-22] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-22] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-22] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-22] (AVAST Software) R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-22] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-22] () R3 NTIOLib_1_0_2; C:\Program Files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [13328 2012-02-14] (MSI) R3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI) R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.) S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X] S3 wolf; \??\D:\AeriaGames\WolfTeam-DE\avital\wolf64.sys [X] S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X] S3 X6va013; \??\C:\Windows\SysWOW64\Drivers\X6va013 [X] S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X] S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-08 09:34 - 2014-02-08 09:34 - 00013675 _____ () C:\Users\Manuel\Desktop\FRST.txt 2014-02-08 09:34 - 2014-02-08 09:34 - 00000000 ____D () C:\FRST 2014-02-08 09:33 - 2014-02-08 09:33 - 00380416 _____ () C:\Users\Manuel\Desktop\Gmer-19357.exe 2014-02-08 09:33 - 2014-02-08 09:33 - 00000895 _____ () C:\Users\Manuel\Desktop\gmer.txt 2014-02-08 09:33 - 2014-02-08 09:32 - 02079744 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe 2014-02-05 19:30 - 2013-10-18 12:46 - 00064080 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys 2014-02-05 19:30 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys 2014-02-05 19:30 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll 2014-02-05 19:30 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll 2014-02-05 19:29 - 2014-02-05 19:29 - 00001515 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk 2014-02-05 19:29 - 2014-02-05 19:29 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-02-05 19:29 - 2013-10-18 12:45 - 00930384 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll 2014-02-05 19:29 - 2013-10-18 12:45 - 00437328 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe 2014-02-05 19:29 - 2013-10-18 12:45 - 00358480 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe 2014-02-05 19:29 - 2013-10-18 12:45 - 00030800 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys 2014-02-05 19:29 - 2013-10-09 08:04 - 00053816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys 2014-02-05 19:29 - 2013-10-09 08:03 - 00038456 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmusb.sys 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Program Files (x86)\VMware 2014-02-05 16:05 - 2014-02-05 16:05 - 00000202 _____ () C:\Users\Manuel\Desktop\Rust.url 2014-02-04 18:10 - 2014-02-04 18:10 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402041810334344.log 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\ProgramData\ATI 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Eclipse 2014-02-02 15:48 - 2014-02-02 15:48 - 00816954 _____ () C:\Users\Manuel\Desktop\worldedit-5.5.8.zip 2014-02-01 22:54 - 2014-02-01 22:54 - 00000837 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel 2014-02-01 22:42 - 2014-02-01 22:42 - 00000010 _____ () C:\Users\Manuel\Desktop\new 3.txt 2014-02-01 20:47 - 2014-02-01 20:47 - 00000000 ____D () C:\Users\Manuel\Desktop\eclipse-java-kepler-SR1-win32-x86_64 2014-02-01 18:24 - 2014-02-01 18:24 - 00000000 ____D () C:\Windows\Sun 2014-02-01 18:21 - 2014-02-01 18:21 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-01 18:21 - 2014-02-01 18:21 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-01 16:04 - 2014-02-01 16:04 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Macromedia 2014-02-01 15:56 - 2014-02-01 15:56 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\library_dir 2014-01-30 15:15 - 2014-02-08 09:13 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Raptr 2014-01-30 15:15 - 2014-02-04 18:03 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-01-30 15:15 - 2014-01-30 15:15 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201401301515246048.log 2014-01-30 14:57 - 2014-01-30 14:57 - 00362029 _____ () C:\Windows\SysWOW64\sqlite3.dll 2014-01-30 14:47 - 2014-02-01 13:12 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-01-30 14:47 - 2014-02-01 13:12 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-30 14:47 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-01-30 14:47 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2014-01-30 14:47 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2014-01-30 14:47 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2014-01-30 14:47 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2014-01-30 14:47 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2014-01-30 14:47 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-01-30 14:47 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-01-30 14:47 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-01-30 14:47 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2014-01-30 14:47 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-01-30 14:47 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2014-01-30 14:47 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-01-30 14:47 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-01-30 14:47 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2014-01-30 14:47 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-01-30 14:47 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2014-01-30 14:47 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2014-01-30 14:47 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2014-01-30 14:47 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2014-01-30 14:47 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-01-30 14:47 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-01-30 14:47 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-01-30 14:47 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-01-30 14:47 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-01-30 14:45 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-01-30 14:45 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2014-01-30 14:34 - 2014-01-30 14:36 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-30 14:34 - 2014-01-06 16:20 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-29 15:27 - 2014-01-29 16:19 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-01-25 19:22 - 2014-02-04 20:23 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\.minecraft 2014-01-24 18:01 - 2014-02-01 23:57 - 00001162 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk 2014-01-24 16:09 - 2014-01-24 16:09 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games 2014-01-24 15:27 - 2013-03-09 14:25 - 00000000 ____D () C:\Users\Manuel\Desktop\TW_Mapeditor 2014-01-22 18:49 - 2014-01-22 18:49 - 00263186 _____ () C:\Users\Manuel\Desktop\Minecraft.exe 2014-01-22 13:49 - 2014-01-22 13:49 - 00000202 _____ () C:\Users\Manuel\Desktop\APB Reloaded.url 2014-01-21 17:03 - 2014-01-24 15:30 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Teeworlds 2014-01-21 17:03 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\Desktop\13x37 0.6.1 Client - Public 003 (win32) 2014-01-19 20:01 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-01-19 19:16 - 2014-01-19 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-19 19:00 - 2014-01-19 19:00 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-18 21:29 - 2014-01-18 21:29 - 00000000 ____D () C:\ProgramData\boost_interprocess 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\LogMeIn 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-01-15 16:51 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 16:51 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 16:51 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-14 17:40 - 2014-01-17 20:02 - 00000000 ____D () C:\Users\Manuel\Desktop\mc server 2014-01-13 16:39 - 2014-01-13 16:39 - 00000000 ____D () C:\AeriaGames 2014-01-10 22:04 - 2014-01-20 16:05 - 00000000 ____D () C:\CFLog ==================== One Month Modified Files and Folders ======= 2014-02-08 09:34 - 2014-02-08 09:34 - 00013675 _____ () C:\Users\Manuel\Desktop\FRST.txt 2014-02-08 09:34 - 2014-02-08 09:34 - 00000000 ____D () C:\FRST 2014-02-08 09:33 - 2014-02-08 09:33 - 00380416 _____ () C:\Users\Manuel\Desktop\Gmer-19357.exe 2014-02-08 09:33 - 2014-02-08 09:33 - 00000895 _____ () C:\Users\Manuel\Desktop\gmer.txt 2014-02-08 09:32 - 2014-02-08 09:33 - 02079744 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe 2014-02-08 09:25 - 2013-07-10 18:26 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\VMware 2014-02-08 09:25 - 2013-07-10 18:26 - 00000000 ____D () C:\Users\Manuel\AppData\Local\VMware 2014-02-08 09:25 - 2013-06-23 11:55 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-08 09:21 - 2013-07-13 21:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Adobe 2014-02-08 09:19 - 2009-07-14 05:45 - 00021696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-08 09:19 - 2009-07-14 05:45 - 00021696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-08 09:15 - 2013-06-23 11:39 - 01805813 _____ () C:\Windows\WindowsUpdate.log 2014-02-08 09:13 - 2014-01-30 15:15 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Raptr 2014-02-08 09:11 - 2013-06-23 13:13 - 00000000 ____D () C:\ProgramData\VMware 2014-02-08 09:11 - 2013-06-23 11:55 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-02-08 09:11 - 2013-06-23 11:55 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-08 09:11 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-08 09:11 - 2009-07-14 05:51 - 00061293 _____ () C:\Windows\setupact.log 2014-02-07 21:54 - 2013-06-23 12:53 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Skype 2014-02-07 20:09 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp 2014-02-06 21:04 - 2013-10-24 13:34 - 00000016 _____ () C:\Users\Manuel\Desktop\timer.cfg 2014-02-05 19:29 - 2014-02-05 19:29 - 00001515 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk 2014-02-05 19:29 - 2014-02-05 19:29 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-02-05 19:29 - 2013-06-23 12:30 - 01712014 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-02-05 19:29 - 2011-04-12 08:43 - 00723530 _____ () C:\Windows\system32\perfh007.dat 2014-02-05 19:29 - 2011-04-12 08:43 - 00160404 _____ () C:\Windows\system32\perfc007.dat 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Program Files (x86)\VMware 2014-02-05 16:05 - 2014-02-05 16:05 - 00000202 _____ () C:\Users\Manuel\Desktop\Rust.url 2014-02-04 20:23 - 2014-01-25 19:22 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\.minecraft 2014-02-04 18:27 - 2013-06-23 11:56 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-02-04 18:10 - 2014-02-04 18:10 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402041810334344.log 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\ProgramData\ATI 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-04 18:10 - 2013-06-23 12:42 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-02-04 18:10 - 2013-06-23 12:09 - 00000000 ____D () C:\ProgramData\AMD 2014-02-04 18:08 - 2013-06-23 12:43 - 00000000 ____D () C:\Program Files\AMD 2014-02-04 18:03 - 2014-01-30 15:15 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Eclipse 2014-02-02 15:48 - 2014-02-02 15:48 - 00816954 _____ () C:\Users\Manuel\Desktop\worldedit-5.5.8.zip 2014-02-01 23:57 - 2014-01-24 18:01 - 00001162 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk 2014-02-01 23:06 - 2013-08-15 23:00 - 00000000 ____D () C:\Users\Manuel\.gimp-2.8 2014-02-01 22:54 - 2014-02-01 22:54 - 00000837 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel 2014-02-01 22:42 - 2014-02-01 22:42 - 00000010 _____ () C:\Users\Manuel\Desktop\new 3.txt 2014-02-01 20:47 - 2014-02-01 20:47 - 00000000 ____D () C:\Users\Manuel\Desktop\eclipse-java-kepler-SR1-win32-x86_64 2014-02-01 18:24 - 2014-02-01 18:24 - 00000000 ____D () C:\Windows\Sun 2014-02-01 18:21 - 2014-02-01 18:21 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-01 18:21 - 2014-02-01 18:21 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-01 18:21 - 2013-11-22 20:09 - 00000000 ____D () C:\ProgramData\Oracle 2014-02-01 16:04 - 2014-02-01 16:04 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Macromedia 2014-02-01 15:56 - 2014-02-01 15:56 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-02-01 13:12 - 2014-01-30 14:47 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-02-01 13:12 - 2014-01-30 14:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-31 13:31 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-01-30 15:26 - 2013-12-21 10:23 - 00000000 ____D () C:\ProgramData\Origin 2014-01-30 15:19 - 2013-08-23 23:50 - 00000000 ____D () C:\Users\Manuel\Documents\Diablo III 2014-01-30 15:19 - 2013-08-20 15:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\PAYDAY 2 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\library_dir 2014-01-30 15:15 - 2014-01-30 15:15 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201401301515246048.log 2014-01-30 15:12 - 2013-06-23 12:05 - 00000000 ____D () C:\AMD 2014-01-30 15:10 - 2013-12-21 11:14 - 00000000 ____D () C:\ProgramData\Package Cache 2014-01-30 14:57 - 2014-01-30 14:57 - 00362029 _____ () C:\Windows\SysWOW64\sqlite3.dll 2014-01-30 14:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-01-30 14:51 - 2009-07-14 06:13 - 01657124 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-01-30 14:36 - 2014-01-30 14:34 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-30 14:29 - 2013-06-23 13:16 - 00000000 ____D () C:\Program Files (x86)\Pando Networks 2014-01-29 20:43 - 2013-11-17 10:56 - 00000000 ____D () C:\Users\Manuel\Desktop\photoshop 2014-01-29 20:33 - 2013-08-12 12:52 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames 2014-01-29 20:33 - 2013-08-12 12:45 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin 2014-01-29 16:19 - 2014-01-29 15:27 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-01-29 16:19 - 2013-12-21 11:14 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2014-01-29 15:27 - 2013-12-21 12:24 - 00000000 ____D () C:\Users\Manuel\AppData\Local\PunkBuster 2014-01-29 15:27 - 2013-12-21 11:14 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2014-01-29 15:27 - 2013-12-21 11:14 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-01-25 14:47 - 2009-07-14 05:45 - 04938392 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-24 18:30 - 2013-06-23 12:33 - 00058792 _____ () C:\Users\Manuel\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-24 18:15 - 2013-08-10 18:52 - 00000000 ____D () C:\Users\Manuel\Desktop\mc 2014-01-24 18:02 - 2013-12-04 18:36 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\TeamViewer 2014-01-24 18:01 - 2013-07-10 17:46 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-01-24 16:09 - 2014-01-24 16:09 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games 2014-01-24 15:30 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Teeworlds 2014-01-22 18:49 - 2014-01-22 18:49 - 00263186 _____ () C:\Users\Manuel\Desktop\Minecraft.exe 2014-01-22 13:49 - 2014-01-22 13:49 - 00000202 _____ () C:\Users\Manuel\Desktop\APB Reloaded.url 2014-01-21 17:03 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\Desktop\13x37 0.6.1 Client - Public 003 (win32) 2014-01-20 16:05 - 2014-01-10 22:04 - 00000000 ____D () C:\CFLog 2014-01-19 20:10 - 2009-07-14 05:45 - 00006144 _____ () C:\Windows\system32\umstartup.etl 2014-01-19 20:01 - 2013-08-12 13:50 - 00062431 _____ () C:\Windows\DirectX.log 2014-01-19 19:19 - 2013-12-18 19:05 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2014-01-19 19:16 - 2014-01-19 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-19 19:00 - 2014-01-19 19:00 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-18 21:29 - 2014-01-18 21:29 - 00000000 ____D () C:\ProgramData\boost_interprocess 2014-01-17 20:02 - 2014-01-14 17:40 - 00000000 ____D () C:\Users\Manuel\Desktop\mc server 2014-01-17 14:25 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-16 22:00 - 2009-07-14 05:45 - 00015360 _____ () C:\Windows\system32\umstartup000.etl 2014-01-16 15:25 - 2013-11-01 22:06 - 00000000 ____D () C:\Users\Manuel\Desktop\Textdokumente 2014-01-15 20:18 - 2013-06-30 11:08 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\ftblauncher 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\LogMeIn 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-01-14 16:13 - 2014-01-07 20:20 - 00000000 ____D () C:\Users\Manuel\Desktop\hack123 2014-01-13 16:39 - 2014-01-13 16:39 - 00000000 ____D () C:\AeriaGames Some content of TEMP: ==================== C:\Users\Manuel\AppData\Local\Temp\13-12_win7_win8_64_dd_ccc_whql.exe C:\Users\Manuel\AppData\Local\Temp\Creative Cloud Helper.exe C:\Users\Manuel\AppData\Local\Temp\jansi-64-git-Bukkit-1.6.2-R0.1-11-g81cb6e3-b2853jnks.dll C:\Users\Manuel\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.2-10-gd51ccd1-b2987jnks.dll C:\Users\Manuel\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.2-7-g169af45-b2985jnks.dll C:\Users\Manuel\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe C:\Users\Manuel\AppData\Local\Temp\raptrpatch.exe C:\Users\Manuel\AppData\Local\Temp\raptr_stub.exe C:\Users\Manuel\AppData\Local\Temp\SkypeSetup.exe C:\Users\Manuel\AppData\Local\Temp\skype_amd643476549469918892946.dll C:\Users\Manuel\AppData\Local\Temp\sonarinst.exe C:\Users\Manuel\AppData\Local\Temp\SRLDetectionLibrary6013315643244146918.dll C:\Users\Manuel\AppData\Local\Temp\vcredist_x86.exe C:\Users\Manuel\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-31 13:23 ==================== End Of Log ============================ Addition [/CODE] FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-02-2014 Ran by Manuel at 2014-02-08 09:34:35 Running from C:\Users\Manuel\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== Adobe Creative Cloud (x32 Version: 2.2.1.260 - Adobe Systems Incorporated) Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224 - Adobe Systems Incorporated) Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94 - Adobe Systems Incorporated) Adobe Photoshop CC (x32 Version: 14.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated) AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden AMD Fuel (Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden AMD Steady Video Plug-In (Version: 2.06.0000 - AMD) Hidden AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden APB Reloaded (x32 Version: - Reloaded Productions) AutoHotkey 1.1.11.01 (Version: 1.1.11.01 - Lexikos) avast! Free Antivirus (x32 Version: 9.0.2008 - Avast Software) Battlefield 4™ (x32 Version: 1.0.0.1 - Electronic Arts) Battlefield Heroes (Manuel) (HKCU Version: - EA Digital illusions) Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB) Bing-Desktop (x32 Version: 1.3.347.0 - Microsoft Corporation) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden CLICKBIOSII (x32 Version: 1.0.123 - MSI) ControlCenter (x32 Version: 2.5.060 - MSI) Counter-Strike: Source (x32 Version: - Valve) Cross Fire En (x32 Version: - Z8Games.com) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Diablo III (x32 Version: - Blizzard Entertainment) ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB) Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Fraps (remove only) (x32 Version: - ) Garry's Mod (x32 Version: - Garry) GhostMouse (x32 Version: Free V3.2.1 - ghost-mouse.com) GIMP 2.8.6 (Version: 2.8.6 - The GIMP Team) Google Chrome (x32 Version: 32.0.1700.107 - Google Inc.) Google Earth (x32 Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden Gyazo 1.0.1 (x32 Version: - Nota Inc. & Toshiyuki Masui) Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle) Java 7 Update 51 (x32 Version: 7.0.510 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden League of Legends (x32 Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Left 4 Dead 2 (x32 Version: - Valve) Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation) Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla) Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla) MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden MTA:SA v1.3.4 (x32 Version: v1.3.4 - Multi Theft Auto) Notepad++ (x32 Version: 6.5.1 - Notepad++ Team) NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Origin (x32 Version: 9.3.6.4639 - Electronic Arts, Inc.) Paint.NET v3.5.10 (Version: 3.60.0 - dotPDN LLC) PAYDAY 2 (x32 Version: - OVERKILL - a Starbreeze Studio.) PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden PunkBuster Services (x32 Version: 0.990 - Even Balance, Inc.) PX3 Presets Manager (x32 Version: 1.00.0000 - Turtle Beach) Raptr (x32 Version: - ) Realtek Ethernet Controller Driver (x32 Version: 7.53.216.2012 - Realtek) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6631 - Realtek Semiconductor Corp.) Rust (x32 Version: - Facepunch Studios) Skype™ 6.5 (x32 Version: 6.5.158 - Skype Technologies S.A.) Steam (x32 Version: 1.0.0.0 - Valve Corporation) System Requirements Lab CYRI (x32 Version: 6.0.8.0 - Husdawg, LLC) System Requirements Lab Detection (x32 Version: 1.0.5.0 - Husdawg, LLC) TeamSpeak 3 Client (Version: 3.0.13.1 - TeamSpeak Systems GmbH) TeamViewer 9 (x32 Version: 9.0.25790 - TeamViewer) tools-freebsd (x32 Version: 9.6.1.1379776 - VMware, Inc.) Hidden tools-linux (x32 Version: 9.6.1.1379776 - VMware, Inc.) Hidden tools-netware (x32 Version: 9.6.1.1379776 - VMware, Inc.) Hidden tools-solaris (x32 Version: 9.6.1.1379776 - VMware, Inc.) Hidden tools-windows (x32 Version: 9.6.1.1379776 - VMware, Inc.) Hidden tools-winPre2k (x32 Version: 9.6.1.1379776 - VMware, Inc.) Hidden VLC media player 2.0.7 (x32 Version: 2.0.7 - VideoLAN) VMware Workstation (Version: 10.0.1 - VMware, Inc.) Hidden VMware Workstation (x32 Version: 10.0.1 - VMware, Inc) Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden WinRAR 4.20 (64-Bit) (Version: 4.20.0 - win.rar GmbH) ==================== Restore Points ========================= 29-01-2014 19:32:37 Removed Aeria Ignite 30-01-2014 13:33:36 Windows Update 30-01-2014 13:45:52 Windows Update 30-01-2014 14:09:26 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 30-01-2014 14:10:20 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 30-01-2014 14:11:38 Gerätetreiber-Paketinstallation: Advanced Micro Devices, Inc. Grafikkarte 01-02-2014 02:00:10 Windows Update 01-02-2014 17:21:14 Installed Java 7 Update 51 04-02-2014 17:05:55 Windows Update 04-02-2014 17:06:46 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 04-02-2014 17:07:11 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 ==================== Hosts content: ========================== 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {5BD9C972-842B-4CA0-B9C2-4ED3FF82E21D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-23] (Google Inc.) Task: {61884C41-CC1E-44E1-9591-4EB47F2AC30D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-23] (Google Inc.) Task: {A09E3BAD-C3DD-494B-90E6-8AA877BAFC56} - System32\Tasks\AdobeAAMUpdater-1.0-Manuel-PC-Manuel => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-09-25] (Adobe Systems Incorporated) Task: {B32E91A3-FEE9-461F-9853-9E96046BF57D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-11-22] (AVAST Software) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-10-16 18:02 - 2013-10-16 18:02 - 03358064 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll 2013-04-04 09:38 - 2013-11-14 13:08 - 00302056 _____ () D:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll 2013-04-04 09:38 - 2013-11-14 13:08 - 00320488 _____ () D:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll 2013-04-04 09:38 - 2013-11-14 13:08 - 00186344 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\appscanner_plugin.dll 2013-04-04 09:38 - 2013-11-14 13:08 - 00565224 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll 2013-11-14 13:08 - 2013-11-14 13:08 - 00700904 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll 2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2014-02-08 09:12 - 2014-02-07 19:49 - 02171904 _____ () C:\Program Files\AVAST Software\Avast\defs\14020701\algo.dll 2013-10-18 12:46 - 2013-10-18 12:46 - 01260624 _____ () D:\Vmware\libxml2.dll 2013-11-22 19:05 - 2013-11-22 19:05 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2010-11-22 23:56 - 2010-11-22 23:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd 2012-06-22 22:53 - 2012-06-22 22:53 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd 2012-06-22 22:24 - 2012-06-22 22:24 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd 2012-06-22 22:39 - 2012-06-22 22:39 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd 2012-06-22 22:55 - 2012-06-22 22:55 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd 2010-11-22 23:57 - 2010-11-22 23:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll 2010-11-22 23:56 - 2010-11-22 23:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd 2010-11-22 23:57 - 2010-11-22 23:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd 2010-11-22 23:57 - 2010-11-22 23:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00124928 _____ () C:\Program Files (x86)\Raptr\_elementtree.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd 2012-02-06 21:28 - 2012-02-06 21:28 - 00031744 _____ () C:\Program Files (x86)\Raptr\Crypto.Cipher.AES.pyd 2012-02-06 21:28 - 2012-02-06 21:28 - 00010752 _____ () C:\Program Files (x86)\Raptr\Crypto.Random.OSRNG.winrandom.pyd 2012-02-06 21:28 - 2012-02-06 21:28 - 00011264 _____ () C:\Program Files (x86)\Raptr\Crypto.Util._counter.pyd 2011-05-10 20:01 - 2011-05-10 20:01 - 00030208 _____ () C:\Program Files (x86)\Raptr\simplejson._speedups.pyd 2012-06-22 22:59 - 2012-06-22 22:59 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd 2011-02-15 19:17 - 2011-02-15 19:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll 2010-11-22 23:56 - 2010-11-22 23:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll 2010-11-22 23:57 - 2010-11-22 23:57 - 00016384 _____ () C:\Program Files (x86)\Raptr\win32trace.pyd 2010-11-22 23:57 - 2010-11-22 23:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd 2010-11-22 23:56 - 2010-11-22 23:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd 2013-11-21 01:05 - 2013-11-21 01:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll 2010-11-22 23:57 - 2010-11-22 23:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd 2010-11-22 23:57 - 2010-11-22 23:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd 2012-10-27 08:53 - 2012-10-27 08:53 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd 2011-02-15 19:17 - 2011-02-15 19:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll 2010-11-23 00:06 - 2010-11-23 00:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll 2013-05-10 00:52 - 2013-05-10 00:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll 2013-05-10 00:52 - 2013-05-10 00:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll 2013-05-10 00:52 - 2013-05-10 00:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll 2013-05-03 19:57 - 2013-05-03 19:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll 2013-05-03 19:56 - 2013-05-03 19:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll 2013-05-03 19:56 - 2013-05-03 19:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll 2013-05-03 19:57 - 2013-05-03 19:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll 2013-05-03 19:56 - 2013-05-03 19:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll 2013-05-03 19:57 - 2013-05-03 19:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll 2013-05-03 19:57 - 2013-05-03 19:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll 2013-05-03 19:57 - 2013-05-03 19:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll 2013-05-03 19:57 - 2013-05-03 19:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\Users\Manuel\Anwendungsdaten:NT AlternateDataStreams: C:\Users\Manuel\AppData\Roaming:NT ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= Name: USB (Universal Serial Bus)-Controller Description: USB (Universal Serial Bus)-Controller Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (02/08/2014 09:12:49 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/07/2014 02:54:38 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/06/2014 01:13:34 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/05/2014 02:05:02 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/04/2014 06:01:32 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/03/2014 03:13:34 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/02/2014 00:35:40 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/01/2014 01:13:53 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/31/2014 01:07:11 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/30/2014 02:57:44 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (02/01/2014 06:11:11 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252. Error: (02/01/2014 06:11:11 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252. Error: (02/01/2014 03:16:22 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252. Error: (02/01/2014 03:16:22 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252. Error: (01/31/2014 01:55:52 PM) (Source: Microsoft-Windows-HAL) (User: ) Description: Der Speicher wurde beim letzten Leistungsübergang des Systems von der Plattformfirmware beschädigt. Überprüfen Sie, ob für Ihr System aktualisierte Firmware verfügbar ist. Error: (01/30/2014 03:14:16 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (01/28/2014 06:18:04 PM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 28.01.2014 um 18:16:24 unerwartet heruntergefahren. Error: (01/23/2014 02:56:29 PM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 22.01.2014 um 22:58:17 unerwartet heruntergefahren. Error: (01/22/2014 03:03:30 PM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 22.01.2014 um 15:02:04 unerwartet heruntergefahren. Error: (01/20/2014 05:35:23 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "LogMeIn Hamachi Tunneling Engine" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Microsoft Office Sessions: ========================= Error: (02/08/2014 09:12:49 AM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/07/2014 02:54:38 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/06/2014 01:13:34 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/05/2014 02:05:02 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/04/2014 06:01:32 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/03/2014 03:13:34 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/02/2014 00:35:40 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/01/2014 01:13:53 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/31/2014 01:07:11 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/30/2014 02:57:44 PM) (Source: WinMgmt)(User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Percentage of memory in use: 23% Total physical RAM: 8162.14 MB Available physical RAM: 6257.24 MB Total Pagefile: 16322.45 MB Available Pagefile: 14236.75 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:250.49 GB) (Free:166.9 GB) NTFS Drive d: () (Fixed) (Total:680.92 GB) (Free:519.22 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 01C5BAD2) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=250 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=681 GB) - (Type=07 NTFS) ==================== End Of Log ============================ Geändert von manu92000 (08.02.2014 um 10:03 Uhr) |
08.02.2014, 10:09 | #2 | |
/// the machine /// TB-Ausbilder | Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen hi,
__________________Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ |
08.02.2014, 10:34 | #3 |
| Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehenCode:
ATTFilter ComboFix 14-02-05.02 - Manuel 08.02.2014 10:23:00.1.4 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.8162.6102 [GMT 1:00] ausgeführt von:: c:\users\Manuel\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B} SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Neuer Wiederherstellungspunkt wurde erstellt . . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . . C:\CFLog c:\cflog\CrashLog_20140120.txt c:\windows\SysWow64\frapsvid.dll . . ((((((((((((((((((((((( Dateien erstellt von 2014-01-08 bis 2014-02-08 )))))))))))))))))))))))))))))) . . 2014-02-08 09:28 . 2014-02-08 09:28 -------- d-----w- c:\users\Default\AppData\Local\temp 2014-02-08 09:28 . 2014-02-08 09:28 -------- d-----w- c:\users\takky\AppData\Local\temp 2014-02-08 09:20 . 2014-02-08 09:20 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5857BE22-3C6B-452A-B124-B70074AA881E}\offreg.dll 2014-02-08 08:34 . 2014-02-08 08:34 -------- d-----w- C:\FRST 2014-02-07 13:58 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5857BE22-3C6B-452A-B124-B70074AA881E}\mpengine.dll 2014-02-05 18:30 . 2013-10-08 17:21 67664 ----a-w- c:\windows\system32\vsocklib.dll 2014-02-05 18:30 . 2013-10-08 17:21 63568 ----a-w- c:\windows\SysWow64\vsocklib.dll 2014-02-05 18:30 . 2013-10-08 17:21 73296 ----a-w- c:\windows\system32\drivers\vsock.sys 2014-02-05 18:30 . 2013-10-18 11:46 64080 ----a-w- c:\windows\system32\drivers\vmx86.sys 2014-02-05 18:29 . 2013-10-18 11:45 358480 ----a-w- c:\windows\SysWow64\vmnetdhcp.exe 2014-02-05 18:29 . 2013-10-18 11:45 437328 ----a-w- c:\windows\SysWow64\vmnat.exe 2014-02-05 18:29 . 2013-10-18 11:45 30800 ----a-w- c:\windows\system32\drivers\vmnetuserif.sys 2014-02-05 18:29 . 2013-10-18 11:45 930384 ----a-w- c:\windows\system32\vnetlib64.dll 2014-02-05 18:29 . 2013-10-09 07:04 53816 ----a-w- c:\windows\system32\drivers\hcmon.sys 2014-02-05 18:29 . 2013-10-09 07:03 38456 ----a-w- c:\windows\system32\drivers\vmusb.sys 2014-02-05 18:29 . 2014-02-05 18:29 -------- d-----w- c:\program files\Common Files\VMware 2014-02-05 18:28 . 2014-02-05 18:28 -------- d-----w- c:\program files (x86)\VMware 2014-02-05 18:28 . 2014-02-05 18:28 -------- d-----w- c:\program files (x86)\Common Files\VMware 2014-02-04 17:10 . 2014-02-04 17:10 -------- d-----w- c:\programdata\ATI 2014-02-04 17:10 . 2014-02-04 17:10 -------- d-----w- c:\program files (x86)\AMD AVT 2014-02-03 14:27 . 2014-02-03 14:27 -------- d-----w- c:\users\Manuel\AppData\Local\Eclipse 2014-02-01 17:24 . 2014-02-01 17:24 -------- d-----w- c:\windows\Sun 2014-02-01 17:21 . 2014-02-01 17:21 -------- d-----w- c:\program files (x86)\Common Files\Java 2014-02-01 17:21 . 2014-02-01 17:21 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2014-02-01 17:21 . 2014-02-01 17:21 -------- d-----w- c:\program files (x86)\Java 2014-02-01 15:04 . 2014-02-01 15:04 -------- d-----w- c:\users\Manuel\AppData\Local\Macromedia 2014-02-01 14:56 . 2014-02-01 14:56 -------- d-----w- c:\users\Manuel\AppData\Local\Mozilla 2014-02-01 14:56 . 2014-02-01 14:56 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service 2014-01-30 14:16 . 2014-01-30 14:16 -------- d-----w- c:\users\Manuel\AppData\Roaming\library_dir 2014-01-30 14:15 . 2014-02-08 08:13 -------- d-----w- c:\users\Manuel\AppData\Roaming\Raptr 2014-01-30 14:15 . 2014-02-04 17:03 -------- d-----w- c:\program files (x86)\Raptr 2014-01-30 13:57 . 2014-01-30 13:57 362029 ----a-w- c:\windows\SysWow64\sqlite3.dll 2014-01-30 13:50 . 2014-01-30 13:50 -------- d-----w- c:\windows\Migration 2014-01-30 13:46 . 2014-01-30 13:46 -------- d-----w- c:\program files (x86)\Microsoft 2014-01-30 13:45 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll 2014-01-30 13:45 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll 2014-01-30 13:34 . 2014-01-30 13:36 -------- d-----w- c:\windows\system32\MRT 2014-01-29 14:27 . 2014-01-29 15:19 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr 2014-01-25 18:22 . 2014-02-04 19:23 -------- d-----w- c:\users\Manuel\AppData\Roaming\.minecraft 2014-01-21 16:03 . 2014-01-24 14:30 -------- d-----w- c:\users\Manuel\AppData\Roaming\Teeworlds 2014-01-19 19:01 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll 2014-01-19 18:16 . 2014-01-19 18:16 312744 ----a-w- c:\windows\system32\javaws.exe 2014-01-19 18:16 . 2014-01-19 18:16 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll 2014-01-19 18:16 . 2014-01-19 18:16 189352 ----a-w- c:\windows\system32\javaw.exe 2014-01-19 18:16 . 2014-01-19 18:16 189352 ----a-w- c:\windows\system32\java.exe 2014-01-18 20:29 . 2014-01-18 20:29 -------- d-----w- c:\programdata\boost_interprocess 2014-01-15 17:09 . 2014-01-15 17:09 -------- d-----w- c:\users\Manuel\AppData\Local\LogMeIn 2014-01-15 17:09 . 2014-01-15 17:09 -------- d-----w- c:\programdata\LogMeIn 2014-01-15 15:51 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys 2014-01-15 15:51 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2014-01-15 15:51 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys 2014-01-15 15:51 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys 2014-01-15 15:51 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys 2014-01-15 15:51 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2014-01-15 15:51 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys 2014-01-15 15:51 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys 2014-01-15 15:51 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys 2014-01-13 15:39 . 2014-01-13 15:39 -------- d-----w- C:\AeriaGames . . . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2014-01-29 15:19 . 2013-12-21 10:14 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.exe 2014-01-29 14:27 . 2013-12-21 10:14 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe 2014-01-29 14:27 . 2013-12-21 10:14 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0 2013-12-18 05:13 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe 2013-12-06 22:08 . 2013-12-06 22:08 157736 ----a-w- c:\windows\system32\amdhcp64.dll 2013-12-06 22:08 . 2013-12-06 22:08 142304 ----a-w- c:\windows\SysWow64\amdhcp32.dll 2013-12-06 22:07 . 2013-12-06 22:07 78432 ----a-w- c:\windows\system32\atimpc64.dll 2013-12-06 22:07 . 2013-12-06 22:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll 2013-12-06 22:07 . 2013-12-06 22:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll 2013-12-06 22:07 . 2013-12-06 22:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll 2013-12-06 22:04 . 2013-03-29 02:37 143304 ----a-w- c:\windows\system32\atiuxp64.dll 2013-12-06 22:03 . 2013-12-06 22:03 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll 2013-12-06 22:03 . 2013-11-29 17:53 115512 ----a-w- c:\windows\system32\atiu9p64.dll 2013-12-06 22:02 . 2013-03-29 02:37 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll 2013-12-06 22:01 . 2013-03-29 02:37 1318552 ----a-w- c:\windows\system32\aticfx64.dll 2013-12-06 22:01 . 2013-03-29 02:37 1100216 ----a-w- c:\windows\SysWow64\aticfx32.dll 2013-12-06 22:00 . 2013-03-29 02:36 9753752 ----a-w- c:\windows\system32\atidxx64.dll 2013-12-06 21:59 . 2013-12-06 21:59 8406024 ----a-w- c:\windows\SysWow64\atidxx32.dll 2013-12-06 21:59 . 2013-03-29 02:36 8287008 ----a-w- c:\windows\SysWow64\atiumdva.dll 2013-12-06 21:58 . 2013-03-29 02:36 6630232 ----a-w- c:\windows\SysWow64\atiumdag.dll 2013-12-06 21:57 . 2013-11-29 17:47 8927704 ----a-w- c:\windows\system32\atiumd6a.dll 2013-12-06 21:56 . 2013-11-29 17:46 7751920 ----a-w- c:\windows\system32\atiumd64.dll 2013-12-06 21:52 . 2013-12-06 21:52 13207552 ----a-w- c:\windows\system32\drivers\atikmdag.sys 2013-12-06 21:38 . 2013-12-06 21:38 230912 ----a-w- c:\windows\system32\clinfo.exe 2013-12-06 21:38 . 2013-12-06 21:38 99840 ----a-w- c:\windows\system32\OpenVideo64.dll 2013-12-06 21:38 . 2013-12-06 21:38 83968 ----a-w- c:\windows\SysWow64\OpenVideo.dll 2013-12-06 21:38 . 2013-12-06 21:38 86528 ----a-w- c:\windows\system32\OVDecode64.dll 2013-12-06 21:38 . 2013-12-06 21:38 73728 ----a-w- c:\windows\SysWow64\OVDecode.dll 2013-12-06 21:37 . 2013-12-06 21:37 29382144 ----a-w- c:\windows\system32\amdocl64.dll 2013-12-06 21:35 . 2013-12-06 21:35 24860160 ----a-w- c:\windows\SysWow64\amdocl.dll 2013-12-06 21:33 . 2013-12-06 21:33 63488 ----a-w- c:\windows\system32\OpenCL.dll 2013-12-06 21:33 . 2013-12-06 21:33 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll 2013-12-06 21:26 . 2013-12-06 21:26 129536 ----a-w- c:\windows\system32\coinst_13.251.dll 2013-12-06 21:16 . 2013-12-06 21:16 26352128 ----a-w- c:\windows\system32\atio6axx.dll 2013-12-06 21:13 . 2013-12-06 21:13 368640 ----a-w- c:\windows\system32\atiapfxx.exe 2013-12-06 21:12 . 2013-12-06 21:12 62464 ----a-w- c:\windows\system32\aticalrt64.dll 2013-12-06 21:12 . 2013-12-06 21:12 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll 2013-12-06 21:12 . 2013-12-06 21:12 55808 ----a-w- c:\windows\system32\aticalcl64.dll 2013-12-06 21:12 . 2013-12-06 21:12 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll 2013-12-06 21:12 . 2013-12-06 21:12 15716352 ----a-w- c:\windows\system32\aticaldd64.dll 2013-12-06 21:09 . 2013-12-06 21:09 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll 2013-12-06 20:58 . 2013-12-06 20:58 22157824 ----a-w- c:\windows\SysWow64\atioglxx.dll 2013-12-06 20:53 . 2013-12-06 20:53 442368 ----a-w- c:\windows\system32\atidemgy.dll 2013-12-06 20:53 . 2013-12-06 20:53 31232 ----a-w- c:\windows\system32\atimuixx.dll 2013-12-06 20:53 . 2013-12-06 20:53 588288 ----a-w- c:\windows\system32\atieclxx.exe 2013-12-06 20:52 . 2013-12-06 20:52 239616 ----a-w- c:\windows\system32\atiesrxx.exe 2013-12-06 20:50 . 2013-12-06 20:50 190976 ----a-w- c:\windows\system32\atitmm64.dll 2013-12-06 20:22 . 2013-12-06 20:22 96256 ----a-w- c:\windows\system32\amdave64.dll 2013-12-06 20:22 . 2013-12-06 20:22 90112 ----a-w- c:\windows\SysWow64\amdave32.dll 2013-12-06 20:22 . 2013-12-06 20:22 1144320 ----a-w- c:\windows\system32\atiadlxx.dll 2013-12-06 20:22 . 2013-12-06 20:22 89088 ----a-w- c:\windows\system32\atisamu64.dll 2013-12-06 20:22 . 2013-12-06 20:22 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll 2013-12-06 20:22 . 2013-12-06 20:22 825344 ----a-w- c:\windows\SysWow64\atiadlxy.dll 2013-12-06 20:22 . 2013-12-06 20:22 74752 ----a-w- c:\windows\system32\atig6pxx.dll 2013-12-06 20:22 . 2013-12-06 20:22 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll 2013-12-06 20:22 . 2013-12-06 20:22 69632 ----a-w- c:\windows\system32\atiglpxx.dll 2013-12-06 20:22 . 2013-12-06 20:22 100352 ----a-w- c:\windows\system32\atig6txx.dll 2013-12-06 20:21 . 2013-12-06 20:21 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll 2013-12-06 20:21 . 2013-12-06 20:21 626176 ----a-w- c:\windows\system32\drivers\atikmpag.sys 2013-12-06 20:18 . 2013-12-06 20:18 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll 2013-12-06 15:49 . 2013-12-06 15:49 51200 ----a-w- c:\windows\system32\kdbsdk64.dll 2013-12-06 15:44 . 2013-12-06 15:44 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll 2013-11-26 11:54 . 2013-12-11 21:06 23183360 ----a-w- c:\windows\system32\mshtml.dll 2013-11-26 10:19 . 2013-12-11 21:06 2724864 ----a-w- c:\windows\system32\mshtml.tlb 2013-11-26 10:18 . 2013-12-11 21:06 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll 2013-11-26 09:48 . 2013-12-11 21:06 66048 ----a-w- c:\windows\system32\iesetup.dll 2013-11-26 09:46 . 2013-12-11 21:06 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll 2013-11-26 09:41 . 2013-12-11 21:06 2764288 ----a-w- c:\windows\system32\iertutil.dll 2013-11-26 09:29 . 2013-12-11 21:06 53760 ----a-w- c:\windows\system32\jsproxy.dll 2013-11-26 09:27 . 2013-12-11 21:06 33792 ----a-w- c:\windows\system32\iernonce.dll 2013-11-26 09:23 . 2013-12-11 21:06 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb 2013-11-26 09:21 . 2013-12-11 21:06 574976 ----a-w- c:\windows\system32\ieui.dll 2013-11-26 09:18 . 2013-12-11 21:06 139264 ----a-w- c:\windows\system32\ieUnatt.exe 2013-11-26 09:18 . 2013-12-11 21:06 111616 ----a-w- c:\windows\system32\ieetwcollector.exe 2013-11-26 09:16 . 2013-12-11 21:06 708608 ----a-w- c:\windows\system32\jscript9diag.dll 2013-11-26 08:57 . 2013-12-11 21:06 218624 ----a-w- c:\windows\system32\ie4uinit.exe 2013-11-26 08:35 . 2013-12-11 21:06 5769216 ----a-w- c:\windows\system32\jscript9.dll 2013-11-26 08:28 . 2013-12-11 21:06 553472 ----a-w- c:\windows\SysWow64\jscript9diag.dll 2013-11-26 08:16 . 2013-12-11 21:06 4243968 ----a-w- c:\windows\SysWow64\jscript9.dll 2013-11-26 08:02 . 2013-12-11 21:06 1995264 ----a-w- c:\windows\system32\inetcpl.cpl 2013-11-26 07:48 . 2013-12-11 21:06 12996608 ----a-w- c:\windows\system32\ieframe.dll 2013-11-26 07:32 . 2013-12-11 21:06 1928192 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2013-11-26 07:07 . 2013-12-11 21:06 2334208 ----a-w- c:\windows\system32\wininet.dll 2013-11-26 06:40 . 2013-12-11 21:06 1395200 ----a-w- c:\windows\system32\urlmon.dll 2013-11-26 06:34 . 2013-12-11 21:06 817664 ----a-w- c:\windows\system32\ieapfltr.dll 2013-11-26 06:33 . 2013-12-11 21:06 1820160 ----a-w- c:\windows\SysWow64\wininet.dll 2013-11-23 18:26 . 2013-12-11 14:20 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll 2013-11-23 17:47 . 2013-12-11 14:20 465920 ----a-w- c:\windows\system32\WMPhoto.dll 2013-11-22 18:05 . 2013-06-23 10:55 38984 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2013-11-22 18:05 . 2013-06-23 10:55 409832 ----a-w- c:\windows\system32\drivers\aswSP.sys 2013-11-22 18:05 . 2013-06-23 10:55 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys 2013-11-22 18:05 . 2013-06-23 10:55 65264 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2013-11-22 18:05 . 2013-06-23 10:55 205320 ----a-w- c:\windows\system32\drivers\aswVmm.sys 2013-11-22 18:05 . 2013-06-23 10:55 1032416 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2013-11-22 18:05 . 2013-06-23 10:55 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys 2013-11-22 18:05 . 2013-06-23 10:55 84328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2013-11-22 18:05 . 2013-06-23 10:55 334648 ----a-w- c:\windows\system32\aswBoot.exe 2013-11-22 18:05 . 2013-06-23 10:54 43152 ----a-w- c:\windows\avastSS.scr 2013-11-19 23:19 . 2013-11-19 23:19 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe 2013-11-19 23:19 . 2013-11-19 23:19 194048 ----a-w- c:\windows\SysWow64\elshyph.dll . . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584] "Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-01-08 55360] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-11-22 3568312] "ControlCenterCount"="c:\program files (x86)\MSI\ControlCenter\ControlCenterCount.exe" [2012-03-26 872448] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-12-06 766208] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 MSISleep;MSISleep;c:\program files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe;c:\program files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe [x] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x] R3 FairplayKD;FairplayKD;c:\programdata\MTA San Andreas All\Common\temp\FairplayKD.sys;c:\programdata\MTA San Andreas All\Common\temp\FairplayKD.sys [x] R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x] R3 NTIOLib_1_0_C;NTIOLib_1_0_C;e:\ntiolib_x64.sys;e:\NTIOLib_X64.sys [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 wolf;wolf;d:\aeriagames\WolfTeam-DE\avital\wolf64.sys;d:\aeriagames\WolfTeam-DE\avital\wolf64.sys [x] R3 X6va012;X6va012;c:\windows\SysWOW64\Drivers\X6va012;c:\windows\SysWOW64\Drivers\X6va012 [x] R3 X6va013;X6va013;c:\windows\SysWOW64\Drivers\X6va013;c:\windows\SysWOW64\Drivers\X6va013 [x] R3 X6va016;X6va016;c:\windows\SysWOW64\Drivers\X6va016;c:\windows\SysWOW64\Drivers\X6va016 [x] R3 X6va017;X6va017;c:\windows\SysWOW64\Drivers\X6va017;c:\windows\SysWOW64\Drivers\X6va017 [x] R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R4 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x] S0 aswRvrt;avast! Revert; [x] S0 aswVmm;avast! VM Monitor; [x] S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys;c:\windows\SYSNATIVE\DRIVERS\vmci.sys [x] S0 vsock;vSockets Driver;c:\windows\system32\drivers\vsock.sys;c:\windows\SYSNATIVE\drivers\vsock.sys [x] S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x] S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x] S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x] S2 AODDriver4.2.0;AODDriver4.2.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x] S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys;c:\windows\SYSNATIVE\drivers\aswFsBlk.sys [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x] S2 BingDesktopUpdate;Bing Desktop Update service;c:\program files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe;c:\program files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [x] S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [x] S2 VMwareHostd;VMware Workstation Server;d:\vmware\vmware-hostd.exe;d:\vmware\vmware-hostd.exe [x] S2 vstor2-mntapi20-shared;Vstor2 MntApi 2.0 Driver (shared);SysWOW64\drivers\vstor2-mntapi20-shared.sys;SysWOW64\drivers\vstor2-mntapi20-shared.sys [x] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x] S3 NTIOLib_1_0_2;NTIOLib_1_0_2;c:\program files (x86)\MSI\ControlCenter\NTIOLib_X64.sys;c:\program files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [x] S3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC;c:\program files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys;c:\program files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] . . --- Andere Dienste/Treiber im Speicher --- . *NewlyCreated* - NTIOLIB_1_0_1 *NewlyCreated* - UWDIYPOG *Deregistered* - NTIOLib_1_0_1 *Deregistered* - uwdiypog . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2014-02-04 17:25 1211720 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe . Inhalt des "geplante Tasks" Ordners . 2014-02-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-23 10:55] . 2014-02-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-23 10:55] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1] @="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}" [HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}] 2013-10-16 17:02 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2] @="{853B7E05-C47D-4985-909A-D0DC5C6D7303}" [HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}] 2013-10-16 17:02 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3] @="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}" [HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}] 2013-10-16 17:02 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2013-11-22 18:05 326944 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-05-08 6470760] . ------- Zusätzlicher Suchlauf ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = <local> LSP: %windir%\system32\vsocklib.dll TCP: DhcpNameServer = 192.168.178.1 FF - ProfilePath - c:\users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\qv46dgox.default\ . - - - - Entfernte verwaiste Registrierungseinträge - - - - . HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va012] "ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va012" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va013] "ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va013" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va016] "ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va016" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va017] "ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va017" . --------------------- Gesperrte Registrierungsschluessel --------------------- . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.3.1_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.3.1_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.1_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.1_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0039-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0040-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0041-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0042-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-0043-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.4.2_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.4.2" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0037-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0038-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0039-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0040-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0041-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0042-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0043-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0044-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0045-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0046-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0047-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0048-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0049-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0050-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0051-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_52" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_52" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0052-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_52" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_53" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_53" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0053-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_53" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_54" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_54" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0054-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_54" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_55" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_55" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0055-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_55" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_56" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_56" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0056-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_56" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_57" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_57" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0057-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_57" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_58" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_58" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0058-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_58" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_59" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_59" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0059-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_59" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_60" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_60" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0060-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_60" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0_61" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.5.0_61" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-0061-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.5.0_61" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.5.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_14" |
08.02.2014, 10:35 | #4 |
| Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen Combofix 2 Code:
ATTFilter . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0040-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0041-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0042-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0043-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0044-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0046-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0047-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0048-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0049-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0050-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0051-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_52" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_52" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0052-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_52" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_53" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_53" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0053-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_53" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_54" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_54" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0054-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_54" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_55" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_55" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0055-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_55" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_56" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_56" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0056-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_56" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_57" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_57" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0057-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_57" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_58" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_58" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0058-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_58" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_59" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_59" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0059-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_59" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_60" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_60" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0060-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_60" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_61" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_61" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0061-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_61" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_62" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_62" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0062-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_62" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_63" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_63" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0063-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_63" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_64" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_64" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0064-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_64" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_65" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_65" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0065-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_65" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_66" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_66" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0066-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_66" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_67" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_67" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0067-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_67" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_68" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_68" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0068-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_68" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_69" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_69" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0069-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_69" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_70" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_70" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0070-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_70" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0_71" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.6.0_71" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-0071-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.6.0_71" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.6.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_01" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_02" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_03" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_04" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_05" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_06" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_07" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_08" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_09" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_10" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_11" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_12" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0013-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_13" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0014-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_14" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0015-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_15" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0016-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_16" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0017-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_17" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0018-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_18" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0019-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_19" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0020-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_20" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0021-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_21" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0022-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_22" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0023-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_23" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0024-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_24" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0025-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_25" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0026-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_26" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0027-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_27" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0028-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_28" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0029-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_29" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0030-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_30" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0031-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_31" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0032-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_32" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0033-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_33" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0034-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_34" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0035-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_35" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0036-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_36" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0037-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_37" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0038-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_38" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0039-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_39" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0040-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_40" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0041-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_41" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0042-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_42" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0043-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_43" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0044-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_44" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0045-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_45" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0046-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_46" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0047-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_47" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0048-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_48" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0049-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_49" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0050-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_50" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBB}] @DACL=(02 0000) @="Java Plug-in 1.7.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-0051-ABCDEFFEDCBC}] @DACL=(02 0000) @="Java Plug-in 1.7.0_51" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}] @DACL=(02 0000) @="Java Plug-in 1.7.0" . [HKEY_USERS\S-1-5-21-2966757714-401893276-3215075033-1000_Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}] @DACL=(02 0000) @="Java Plug-in 1.3.0_02" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Zeit der Fertigstellung: 2014-02-08 10:29:54 ComboFix-quarantined-files.txt 2014-02-08 09:29 . Vor Suchlauf: 14 Verzeichnis(se), 186.551.193.600 Bytes frei Nach Suchlauf: 17 Verzeichnis(se), 188.306.006.016 Bytes frei . - - End Of File - - A11C4E4186EA92C8FF2E9466627747BF A36C5E4F47E84449FF07ED3517B43A31 |
09.02.2014, 08:34 | #5 |
/// the machine /// TB-Ausbilder | Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
09.02.2014, 08:34 | #6 |
/// the machine /// TB-Ausbilder | Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen |
09.02.2014, 15:34 | #7 |
| Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen Malwarbytes Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.02.09.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Manuel :: MANUEL-PC [Administrator] Schutz: Aktiviert 09.02.2014 11:06:29 mbam-log-2014-02-09 (11-06-29).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 239569 Laufzeit: 2 Minute(n), 45 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 2 C:\Users\Manuel\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Manuel\AppData\Roaming\OpenCandy\6A79027C13BB4D9EBD3EFFD71776AD60 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 1 C:\Users\Manuel\AppData\Roaming\OpenCandy\6A79027C13BB4D9EBD3EFFD71776AD60\TuneUpUtilities2013-2200218_de-DE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 09/02/2014 um 11:27:51 # Updated 28/01/2014 von Xplode # Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits) # Benutzername : Manuel - MANUEL-PC # Gestartet von : C:\Users\Manuel\Desktop\adwcleaner.exe # Option : Löschen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Ordner Gelöscht : C:\ProgramData\boost_interprocess ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKCU\Software\OCS ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.16428 -\\ Mozilla Firefox v26.0 (de) [ Datei : C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\qv46dgox.default\prefs.js ] -\\ Google Chrome v32.0.1700.107 [ Datei : C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1066 octets] - [09/02/2014 11:20:20] AdwCleaner[S0].txt - [945 octets] - [09/02/2014 11:27:51] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1004 octets] ########## Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.1 (02.04.2014:1) OS: Windows 7 Professional x64 Ran by Manuel on 09.02.2014 at 11:35:16,02 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 09.02.2014 at 11:38:31,51 Computer was rebooted End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-02-2014 Ran by Manuel (administrator) on MANUEL-PC on 09-02-2014 11:39:40 Running from C:\Users\Manuel\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\System32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe (Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe () C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe (Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (VMware, Inc.) D:\Vmware\vmware-authd.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () D:\Vmware\vmware-hostd.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe (Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe (TeamSpeak Systems GmbH) D:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6470760 2012-05-08] (Realtek Semiconductor) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-22] (AVAST Software) HKLM-x32\...\Run: [ControlCenterCount] - C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [872448 2012-03-26] (MSI CO.,LTD.) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-2966757714-401893276-3215075033-1000\...\Run: [Raptr] - C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-01-08] (Raptr, Inc) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD80104D7FE6FCE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: No Name - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\qv46dgox.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll () FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-23] Chrome: ======= CHR DefaultSearchKeyword: bing.com CHR DefaultSearchProvider: Bing CHR DefaultSearchURL: hxxp://www.bing.com/search?FORM=BDT3DF&PC=BDT3&q={searchTerms} CHR DefaultNewTabURL: CHR Extension: (AdBlock) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-30] CHR Extension: (avast! Online Security) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-07] CHR Extension: (Google Wallet) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23] CHR Extension: (YouTube Unblocker) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-02-07] ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-22] (AVAST Software) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 MBAMScheduler; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 MSISleep; C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe [282624 2013-04-29] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-01-29] () R2 VMAuthdService; D:\Vmware\vmware-authd.exe [86096 2013-10-18] (VMware, Inc.) R2 VMwareHostd; D:\Vmware\vmware-hostd.exe [14405200 2013-10-18] () ==================== Drivers (Whitelisted) ==================== R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices) R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-22] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-22] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-22] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-22] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-22] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-22] (AVAST Software) R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-22] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-22] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) S3 NTIOLib_1_0_2; C:\Program Files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [13328 2012-02-14] (MSI) R3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI) R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.) S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X] S3 wolf; \??\D:\AeriaGames\WolfTeam-DE\avital\wolf64.sys [X] S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X] S3 X6va013; \??\C:\Windows\SysWOW64\Drivers\X6va013 [X] S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X] S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-09 11:39 - 2014-02-09 11:39 - 00000000 ____D () C:\Users\Manuel\Desktop\frst 2014-02-09 11:38 - 2014-02-09 11:38 - 00000719 _____ () C:\Users\Manuel\Desktop\JRT.txt 2014-02-09 11:32 - 2014-02-09 11:32 - 00000000 ____D () C:\Windows\ERUNT 2014-02-09 11:29 - 2014-02-09 11:30 - 00001084 _____ () C:\Users\Manuel\Desktop\adwcleaner.txt 2014-02-09 11:07 - 2014-02-09 11:27 - 00000000 ____D () C:\AdwCleaner 2014-02-09 11:07 - 2014-02-09 11:03 - 01166132 _____ () C:\Users\Manuel\Desktop\adwcleaner.exe 2014-02-09 11:05 - 2014-02-09 11:05 - 01037530 _____ (Thisisu) C:\Users\Manuel\Desktop\JRT.exe 2014-02-09 11:05 - 2014-02-09 11:05 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Malwarebytes 2014-02-09 11:04 - 2014-02-09 11:04 - 00000786 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-02-09 11:04 - 2014-02-09 11:04 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-02-09 11:04 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-02-08 21:49 - 2014-02-08 21:49 - 00000000 ____D () C:\CFLog 2014-02-08 12:30 - 2014-02-08 12:30 - 00000000 _____ () C:\Users\Manuel\Desktop\Neues Textdokument.txt 2014-02-08 10:29 - 2014-02-08 10:29 - 00144795 _____ () C:\ComboFix.txt 2014-02-08 10:10 - 2014-02-08 10:29 - 00000000 ____D () C:\Qoobox 2014-02-08 10:10 - 2014-02-08 10:28 - 00000000 ____D () C:\Windows\erdnt 2014-02-08 10:10 - 2014-02-08 10:10 - 05180173 ____R (Swearware) C:\Users\Manuel\Desktop\ComboFix.exe 2014-02-08 10:10 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe 2014-02-08 10:10 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe 2014-02-08 10:10 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe 2014-02-08 10:01 - 2014-02-08 10:01 - 00010031 _____ () C:\Users\Manuel\Desktop\GMERlog.rar 2014-02-08 09:34 - 2014-02-09 11:39 - 00014353 _____ () C:\Users\Manuel\Desktop\FRST.txt 2014-02-08 09:34 - 2014-02-09 11:39 - 00000000 ____D () C:\FRST 2014-02-08 09:33 - 2014-02-08 09:46 - 00337564 _____ () C:\Users\Manuel\Desktop\GMER.txt 2014-02-08 09:33 - 2014-02-08 09:33 - 00380416 _____ () C:\Users\Manuel\Desktop\Gmer-19357.exe 2014-02-08 09:33 - 2014-02-08 09:33 - 00000895 _____ () C:\Users\Manuel\Desktop\gm.txt 2014-02-08 09:33 - 2014-02-08 09:32 - 02079744 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe 2014-02-05 19:30 - 2013-10-18 12:46 - 00064080 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys 2014-02-05 19:30 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys 2014-02-05 19:30 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll 2014-02-05 19:30 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll 2014-02-05 19:29 - 2014-02-05 19:29 - 00001515 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk 2014-02-05 19:29 - 2014-02-05 19:29 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-02-05 19:29 - 2013-10-18 12:45 - 00930384 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll 2014-02-05 19:29 - 2013-10-18 12:45 - 00437328 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe 2014-02-05 19:29 - 2013-10-18 12:45 - 00358480 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe 2014-02-05 19:29 - 2013-10-18 12:45 - 00030800 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys 2014-02-05 19:29 - 2013-10-09 08:04 - 00053816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys 2014-02-05 19:29 - 2013-10-09 08:03 - 00038456 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmusb.sys 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Program Files (x86)\VMware 2014-02-05 16:05 - 2014-02-05 16:05 - 00000202 _____ () C:\Users\Manuel\Desktop\Rust.url 2014-02-04 18:10 - 2014-02-04 18:10 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402041810334344.log 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\ProgramData\ATI 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Eclipse 2014-02-02 15:48 - 2014-02-02 15:48 - 00816954 _____ () C:\Users\Manuel\Desktop\worldedit-5.5.8.zip 2014-02-01 22:54 - 2014-02-01 22:54 - 00000837 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel 2014-02-01 22:42 - 2014-02-01 22:42 - 00000010 _____ () C:\Users\Manuel\Desktop\new 3.txt 2014-02-01 20:47 - 2014-02-01 20:47 - 00000000 ____D () C:\Users\Manuel\Desktop\eclipse-java-kepler-SR1-win32-x86_64 2014-02-01 18:24 - 2014-02-01 18:24 - 00000000 ____D () C:\Windows\Sun 2014-02-01 18:21 - 2014-02-01 18:21 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-01 18:21 - 2014-02-01 18:21 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-01 16:04 - 2014-02-01 16:04 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Macromedia 2014-02-01 15:56 - 2014-02-01 15:56 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\library_dir 2014-01-30 15:15 - 2014-02-09 11:36 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Raptr 2014-01-30 15:15 - 2014-02-04 18:03 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-01-30 15:15 - 2014-01-30 15:15 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201401301515246048.log 2014-01-30 14:57 - 2014-01-30 14:57 - 00362029 _____ () C:\Windows\SysWOW64\sqlite3.dll 2014-01-30 14:47 - 2014-02-01 13:12 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-01-30 14:47 - 2014-02-01 13:12 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-30 14:47 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-01-30 14:47 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2014-01-30 14:47 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2014-01-30 14:47 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2014-01-30 14:47 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2014-01-30 14:47 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2014-01-30 14:47 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-01-30 14:47 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-01-30 14:47 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-01-30 14:47 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2014-01-30 14:47 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-01-30 14:47 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2014-01-30 14:47 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-01-30 14:47 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-01-30 14:47 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2014-01-30 14:47 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-01-30 14:47 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2014-01-30 14:47 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2014-01-30 14:47 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2014-01-30 14:47 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2014-01-30 14:47 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-01-30 14:47 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-01-30 14:47 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-01-30 14:47 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-01-30 14:47 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-01-30 14:45 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-01-30 14:45 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2014-01-30 14:34 - 2014-01-30 14:36 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-30 14:34 - 2014-01-06 16:20 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-29 15:27 - 2014-01-29 16:19 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-01-25 19:22 - 2014-02-04 20:23 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\.minecraft 2014-01-24 18:01 - 2014-02-01 23:57 - 00001162 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk 2014-01-24 16:09 - 2014-01-24 16:09 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games 2014-01-24 15:27 - 2013-03-09 14:25 - 00000000 ____D () C:\Users\Manuel\Desktop\TW_Mapeditor 2014-01-22 18:49 - 2014-01-22 18:49 - 00263186 _____ () C:\Users\Manuel\Desktop\Minecraft.exe 2014-01-22 13:49 - 2014-01-22 13:49 - 00000202 _____ () C:\Users\Manuel\Desktop\APB Reloaded.url 2014-01-21 17:03 - 2014-01-24 15:30 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Teeworlds 2014-01-21 17:03 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\Desktop\13x37 0.6.1 Client - Public 003 (win32) 2014-01-19 20:01 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-01-19 19:16 - 2014-01-19 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-19 19:00 - 2014-01-19 19:00 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\LogMeIn 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-01-15 16:51 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 16:51 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 16:51 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-14 17:40 - 2014-01-17 20:02 - 00000000 ____D () C:\Users\Manuel\Desktop\mc server 2014-01-13 16:39 - 2014-01-13 16:39 - 00000000 ____D () C:\AeriaGames ==================== One Month Modified Files and Folders ======= 2014-02-09 11:39 - 2014-02-09 11:39 - 00000000 ____D () C:\Users\Manuel\Desktop\frst 2014-02-09 11:39 - 2014-02-08 09:34 - 00014353 _____ () C:\Users\Manuel\Desktop\FRST.txt 2014-02-09 11:39 - 2014-02-08 09:34 - 00000000 ____D () C:\FRST 2014-02-09 11:38 - 2014-02-09 11:38 - 00000719 _____ () C:\Users\Manuel\Desktop\JRT.txt 2014-02-09 11:36 - 2014-01-30 15:15 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Raptr 2014-02-09 11:35 - 2013-06-23 11:55 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-09 11:34 - 2013-06-23 13:13 - 00000000 ____D () C:\ProgramData\VMware 2014-02-09 11:34 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-09 11:34 - 2009-07-14 05:51 - 00061461 _____ () C:\Windows\setupact.log 2014-02-09 11:33 - 2013-06-23 11:39 - 01868185 _____ () C:\Windows\WindowsUpdate.log 2014-02-09 11:33 - 2009-07-14 05:45 - 00021696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-09 11:33 - 2009-07-14 05:45 - 00021696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-09 11:32 - 2014-02-09 11:32 - 00000000 ____D () C:\Windows\ERUNT 2014-02-09 11:30 - 2014-02-09 11:29 - 00001084 _____ () C:\Users\Manuel\Desktop\adwcleaner.txt 2014-02-09 11:27 - 2014-02-09 11:07 - 00000000 ____D () C:\AdwCleaner 2014-02-09 11:25 - 2013-06-23 11:55 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-09 11:14 - 2010-11-21 04:47 - 00034780 _____ () C:\Windows\PFRO.log 2014-02-09 11:08 - 2013-06-23 12:53 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Skype 2014-02-09 11:05 - 2014-02-09 11:05 - 01037530 _____ (Thisisu) C:\Users\Manuel\Desktop\JRT.exe 2014-02-09 11:05 - 2014-02-09 11:05 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Malwarebytes 2014-02-09 11:04 - 2014-02-09 11:04 - 00000786 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-02-09 11:04 - 2014-02-09 11:04 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-02-09 11:03 - 2014-02-09 11:07 - 01166132 _____ () C:\Users\Manuel\Desktop\adwcleaner.exe 2014-02-09 02:00 - 2013-07-13 21:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Adobe 2014-02-08 21:49 - 2014-02-08 21:49 - 00000000 ____D () C:\CFLog 2014-02-08 20:42 - 2013-07-10 18:26 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\VMware 2014-02-08 20:42 - 2013-07-10 18:26 - 00000000 ____D () C:\Users\Manuel\AppData\Local\VMware 2014-02-08 18:52 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp 2014-02-08 12:30 - 2014-02-08 12:30 - 00000000 _____ () C:\Users\Manuel\Desktop\Neues Textdokument.txt 2014-02-08 10:29 - 2014-02-08 10:29 - 00144795 _____ () C:\ComboFix.txt 2014-02-08 10:29 - 2014-02-08 10:10 - 00000000 ____D () C:\Qoobox 2014-02-08 10:29 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default 2014-02-08 10:28 - 2014-02-08 10:10 - 00000000 ____D () C:\Windows\erdnt 2014-02-08 10:28 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini 2014-02-08 10:10 - 2014-02-08 10:10 - 05180173 ____R (Swearware) C:\Users\Manuel\Desktop\ComboFix.exe 2014-02-08 10:01 - 2014-02-08 10:01 - 00010031 _____ () C:\Users\Manuel\Desktop\GMERlog.rar 2014-02-08 09:46 - 2014-02-08 09:33 - 00337564 _____ () C:\Users\Manuel\Desktop\GMER.txt 2014-02-08 09:33 - 2014-02-08 09:33 - 00380416 _____ () C:\Users\Manuel\Desktop\Gmer-19357.exe 2014-02-08 09:33 - 2014-02-08 09:33 - 00000895 _____ () C:\Users\Manuel\Desktop\gm.txt 2014-02-08 09:32 - 2014-02-08 09:33 - 02079744 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe 2014-02-08 09:11 - 2013-06-23 11:55 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-02-06 21:04 - 2013-10-24 13:34 - 00000016 _____ () C:\Users\Manuel\Desktop\timer.cfg 2014-02-05 19:29 - 2014-02-05 19:29 - 00001515 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk 2014-02-05 19:29 - 2014-02-05 19:29 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-02-05 19:29 - 2013-06-23 12:30 - 01712014 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-02-05 19:29 - 2011-04-12 08:43 - 00723530 _____ () C:\Windows\system32\perfh007.dat 2014-02-05 19:29 - 2011-04-12 08:43 - 00160404 _____ () C:\Windows\system32\perfc007.dat 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Program Files (x86)\VMware 2014-02-05 16:05 - 2014-02-05 16:05 - 00000202 _____ () C:\Users\Manuel\Desktop\Rust.url 2014-02-04 20:23 - 2014-01-25 19:22 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\.minecraft 2014-02-04 18:27 - 2013-06-23 11:56 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-02-04 18:10 - 2014-02-04 18:10 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402041810334344.log 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\ProgramData\ATI 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-04 18:10 - 2013-06-23 12:42 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-02-04 18:10 - 2013-06-23 12:09 - 00000000 ____D () C:\ProgramData\AMD 2014-02-04 18:08 - 2013-06-23 12:43 - 00000000 ____D () C:\Program Files\AMD 2014-02-04 18:03 - 2014-01-30 15:15 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Eclipse 2014-02-02 15:48 - 2014-02-02 15:48 - 00816954 _____ () C:\Users\Manuel\Desktop\worldedit-5.5.8.zip 2014-02-01 23:57 - 2014-01-24 18:01 - 00001162 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk 2014-02-01 23:06 - 2013-08-15 23:00 - 00000000 ____D () C:\Users\Manuel\.gimp-2.8 2014-02-01 22:54 - 2014-02-01 22:54 - 00000837 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel 2014-02-01 22:42 - 2014-02-01 22:42 - 00000010 _____ () C:\Users\Manuel\Desktop\new 3.txt 2014-02-01 20:47 - 2014-02-01 20:47 - 00000000 ____D () C:\Users\Manuel\Desktop\eclipse-java-kepler-SR1-win32-x86_64 2014-02-01 18:24 - 2014-02-01 18:24 - 00000000 ____D () C:\Windows\Sun 2014-02-01 18:21 - 2014-02-01 18:21 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-01 18:21 - 2014-02-01 18:21 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-01 18:21 - 2013-11-22 20:09 - 00000000 ____D () C:\ProgramData\Oracle 2014-02-01 16:04 - 2014-02-01 16:04 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Macromedia 2014-02-01 15:56 - 2014-02-01 15:56 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-02-01 13:12 - 2014-01-30 14:47 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-02-01 13:12 - 2014-01-30 14:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-31 13:31 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-01-30 15:26 - 2013-12-21 10:23 - 00000000 ____D () C:\ProgramData\Origin 2014-01-30 15:19 - 2013-08-23 23:50 - 00000000 ____D () C:\Users\Manuel\Documents\Diablo III 2014-01-30 15:19 - 2013-08-20 15:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\PAYDAY 2 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\library_dir 2014-01-30 15:15 - 2014-01-30 15:15 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201401301515246048.log 2014-01-30 15:12 - 2013-06-23 12:05 - 00000000 ____D () C:\AMD 2014-01-30 15:10 - 2013-12-21 11:14 - 00000000 ____D () C:\ProgramData\Package Cache 2014-01-30 14:57 - 2014-01-30 14:57 - 00362029 _____ () C:\Windows\SysWOW64\sqlite3.dll 2014-01-30 14:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-01-30 14:51 - 2009-07-14 06:13 - 01657124 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-01-30 14:36 - 2014-01-30 14:34 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-30 14:29 - 2013-06-23 13:16 - 00000000 ____D () C:\Program Files (x86)\Pando Networks 2014-01-29 20:43 - 2013-11-17 10:56 - 00000000 ____D () C:\Users\Manuel\Desktop\photoshop 2014-01-29 20:33 - 2013-08-12 12:52 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames 2014-01-29 16:19 - 2014-01-29 15:27 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-01-29 16:19 - 2013-12-21 11:14 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2014-01-29 15:27 - 2013-12-21 12:24 - 00000000 ____D () C:\Users\Manuel\AppData\Local\PunkBuster 2014-01-29 15:27 - 2013-12-21 11:14 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2014-01-29 15:27 - 2013-12-21 11:14 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-01-25 14:47 - 2009-07-14 05:45 - 04938392 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-24 18:30 - 2013-06-23 12:33 - 00058792 _____ () C:\Users\Manuel\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-24 18:15 - 2013-08-10 18:52 - 00000000 ____D () C:\Users\Manuel\Desktop\mc 2014-01-24 18:02 - 2013-12-04 18:36 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\TeamViewer 2014-01-24 18:01 - 2013-07-10 17:46 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-01-24 16:09 - 2014-01-24 16:09 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games 2014-01-24 15:30 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Teeworlds 2014-01-22 18:49 - 2014-01-22 18:49 - 00263186 _____ () C:\Users\Manuel\Desktop\Minecraft.exe 2014-01-22 13:49 - 2014-01-22 13:49 - 00000202 _____ () C:\Users\Manuel\Desktop\APB Reloaded.url 2014-01-21 17:03 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\Desktop\13x37 0.6.1 Client - Public 003 (win32) 2014-01-19 20:10 - 2009-07-14 05:45 - 00006144 _____ () C:\Windows\system32\umstartup.etl 2014-01-19 20:01 - 2013-08-12 13:50 - 00062431 _____ () C:\Windows\DirectX.log 2014-01-19 19:19 - 2013-12-18 19:05 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2014-01-19 19:16 - 2014-01-19 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-19 19:00 - 2014-01-19 19:00 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-17 20:02 - 2014-01-14 17:40 - 00000000 ____D () C:\Users\Manuel\Desktop\mc server 2014-01-17 14:25 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-16 22:00 - 2009-07-14 05:45 - 00015360 _____ () C:\Windows\system32\umstartup000.etl 2014-01-16 15:25 - 2013-11-01 22:06 - 00000000 ____D () C:\Users\Manuel\Desktop\Textdokumente 2014-01-15 20:18 - 2013-06-30 11:08 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\ftblauncher 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\LogMeIn 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-01-14 16:13 - 2014-01-07 20:20 - 00000000 ____D () C:\Users\Manuel\Desktop\hack123 2014-01-13 16:39 - 2014-01-13 16:39 - 00000000 ____D () C:\AeriaGames Some content of TEMP: ==================== C:\Users\Manuel\AppData\Local\Temp\Quarantine.exe C:\Users\Manuel\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-02-08 16:57 ==================== End Of Log ============================ |
10.02.2014, 10:12 | #8 |
/// the machine /// TB-Ausbilder | Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehenESET Online Scanner
Downloade Dir bitte SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
10.02.2014, 20:19 | #9 |
| Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen securitycheck Code:
ATTFilter Results of screen317's Security Check version 0.99.79 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` avast! Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Java 7 Update 51 Adobe Flash Player 11.8.800.94 Adobe Reader XI Mozilla Firefox (26.0) Google Chrome 32.0.1700.102 Google Chrome 32.0.1700.107 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe ESET ESET Online Scanner OnlineScannerApp.exe Malwarebytes' Anti-Malware mbamscheduler.exe AVAST Software Avast AvastSvc.exe AVAST Software Avast AvastUI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=dab75a866c9dbf4a86ada0a6e08a8428 # engine=17012 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2014-02-10 02:43:51 # local_time=2014-02-10 03:43:51 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=774 16777213 85 83 6903461 168753303 0 0 # compatibility_mode=5893 16776573 100 94 69481 143673281 0 0 # scanned=306261 # found=0 # cleaned=0 # scan_time=5557 FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-02-2014 Ran by Manuel (administrator) on MANUEL-PC on 10-02-2014 20:17:58 Running from C:\Users\Manuel\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AMD) C:\Windows\system32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe (Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe () C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe () C:\Windows\SysWOW64\PnkBstrA.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (VMware, Inc.) D:\Vmware\vmware-authd.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe () D:\Vmware\vmware-hostd.exe (Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe (Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe (TeamSpeak Systems GmbH) D:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe () C:\Users\Manuel\Desktop\13x37 0.6.1 Client - Public 003 (win32)\13x37 0.6.1 Client - Public 003\{13x37}teeworlds.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6470760 2012-05-08] (Realtek Semiconductor) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-22] (AVAST Software) HKLM-x32\...\Run: [ControlCenterCount] - C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [872448 2012-03-26] (MSI CO.,LTD.) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKU\S-1-5-21-2966757714-401893276-3215075033-1000\...\Run: [Raptr] - C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-01-08] (Raptr, Inc) IFEO\taskmgr.exe: [Debugger] "C:\USERS\MANUEL\DESKTOP\PROCEX\PROCEXP.EXE" IFEO\utilman.exe: [Debugger] cmd.exe ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD80104D7FE6FCE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: No Name - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Manuel\AppData\Roaming\Mozilla\Firefox\Profiles\qv46dgox.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll () FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-23] Chrome: ======= CHR DefaultSearchKeyword: bing.com CHR DefaultSearchProvider: Bing CHR DefaultSearchURL: hxxp://www.bing.com/search?FORM=BDT3DF&PC=BDT3&q={searchTerms} CHR DefaultNewTabURL: CHR Extension: (AdBlock) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-30] CHR Extension: (avast! Online Security) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-07] CHR Extension: (Google Wallet) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23] CHR Extension: (YouTube Unblocker) - C:\Users\Manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-02-07] ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-22] (AVAST Software) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 MBAMScheduler; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 MSISleep; C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe [282624 2013-04-29] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-01-29] () R2 VMAuthdService; D:\Vmware\vmware-authd.exe [86096 2013-10-18] (VMware, Inc.) R2 VMwareHostd; D:\Vmware\vmware-hostd.exe [14405200 2013-10-18] () ==================== Drivers (Whitelisted) ==================== R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices) R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-22] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-22] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-22] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-22] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-22] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-22] (AVAST Software) R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-22] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-22] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) S3 NTIOLib_1_0_2; C:\Program Files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [13328 2012-02-14] (MSI) R3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI) R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.) S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X] S3 wolf; \??\D:\AeriaGames\WolfTeam-DE\avital\wolf64.sys [X] S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X] S3 X6va013; \??\C:\Windows\SysWOW64\Drivers\X6va013 [X] S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X] S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-10 20:17 - 2014-02-10 20:17 - 00014746 _____ () C:\Users\Manuel\Desktop\FRST.txt 2014-02-10 20:17 - 2014-02-10 20:17 - 00000000 ____D () C:\Users\Manuel\Desktop\FRST-OlderVersion 2014-02-10 16:17 - 2014-02-10 16:17 - 00000000 _____ () C:\Users\Manuel\Desktop\Neues Textdokument (2).txt 2014-02-10 15:52 - 2014-02-10 15:52 - 00987425 _____ () C:\Users\Manuel\Desktop\SecurityCheck.exe 2014-02-10 14:08 - 2014-02-10 14:08 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-09 16:50 - 2014-02-09 17:34 - 00317195 _____ () C:\Users\Manuel\Downloads\bhop.exe 2014-02-09 12:00 - 2014-02-09 12:00 - 01243588 _____ () C:\Users\Manuel\Desktop\ProcessExplorer.zip 2014-02-09 12:00 - 2014-02-09 12:00 - 00000000 ____D () C:\Users\Manuel\Desktop\procex 2014-02-09 11:39 - 2014-02-09 11:39 - 00000000 ____D () C:\Users\Manuel\Desktop\frst 2014-02-09 11:38 - 2014-02-09 11:38 - 00000719 _____ () C:\Users\Manuel\Desktop\JRT.txt 2014-02-09 11:32 - 2014-02-09 11:32 - 00000000 ____D () C:\Windows\ERUNT 2014-02-09 11:29 - 2014-02-09 11:30 - 00001084 _____ () C:\Users\Manuel\Desktop\adwcleaner.txt 2014-02-09 11:07 - 2014-02-09 11:27 - 00000000 ____D () C:\AdwCleaner 2014-02-09 11:07 - 2014-02-09 11:03 - 01166132 _____ () C:\Users\Manuel\Desktop\adwcleaner.exe 2014-02-09 11:05 - 2014-02-09 11:05 - 01037530 _____ (Thisisu) C:\Users\Manuel\Desktop\JRT.exe 2014-02-09 11:05 - 2014-02-09 11:05 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Malwarebytes 2014-02-09 11:04 - 2014-02-09 11:04 - 00000786 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-02-09 11:04 - 2014-02-09 11:04 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-02-09 11:04 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-02-08 21:49 - 2014-02-08 21:49 - 00000000 ____D () C:\CFLog 2014-02-08 12:30 - 2014-02-08 12:30 - 00000000 _____ () C:\Users\Manuel\Desktop\Neues Textdokument.txt 2014-02-08 10:29 - 2014-02-08 10:29 - 00144795 _____ () C:\ComboFix.txt 2014-02-08 10:10 - 2014-02-08 10:29 - 00000000 ____D () C:\Qoobox 2014-02-08 10:10 - 2014-02-08 10:28 - 00000000 ____D () C:\Windows\erdnt 2014-02-08 10:10 - 2014-02-08 10:10 - 05180173 ____R (Swearware) C:\Users\Manuel\Desktop\ComboFix.exe 2014-02-08 10:10 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe 2014-02-08 10:10 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe 2014-02-08 10:10 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe 2014-02-08 10:10 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe 2014-02-08 10:01 - 2014-02-08 10:01 - 00010031 _____ () C:\Users\Manuel\Desktop\GMERlog.rar 2014-02-08 09:34 - 2014-02-10 20:17 - 00000000 ____D () C:\FRST 2014-02-08 09:33 - 2014-02-10 20:17 - 02150400 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe 2014-02-08 09:33 - 2014-02-08 09:46 - 00337564 _____ () C:\Users\Manuel\Desktop\GMER.txt 2014-02-08 09:33 - 2014-02-08 09:33 - 00380416 _____ () C:\Users\Manuel\Desktop\Gmer-19357.exe 2014-02-08 09:33 - 2014-02-08 09:33 - 00000895 _____ () C:\Users\Manuel\Desktop\gm.txt 2014-02-05 19:30 - 2013-10-18 12:46 - 00064080 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys 2014-02-05 19:30 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys 2014-02-05 19:30 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll 2014-02-05 19:30 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll 2014-02-05 19:29 - 2014-02-05 19:29 - 00001515 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk 2014-02-05 19:29 - 2014-02-05 19:29 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-02-05 19:29 - 2013-10-18 12:45 - 00930384 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll 2014-02-05 19:29 - 2013-10-18 12:45 - 00437328 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe 2014-02-05 19:29 - 2013-10-18 12:45 - 00358480 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe 2014-02-05 19:29 - 2013-10-18 12:45 - 00030800 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys 2014-02-05 19:29 - 2013-10-09 08:04 - 00053816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys 2014-02-05 19:29 - 2013-10-09 08:03 - 00038456 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmusb.sys 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Program Files (x86)\VMware 2014-02-05 16:05 - 2014-02-05 16:05 - 00000202 _____ () C:\Users\Manuel\Desktop\Rust.url 2014-02-04 18:10 - 2014-02-04 18:10 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402041810334344.log 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\ProgramData\ATI 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Eclipse 2014-02-02 15:48 - 2014-02-02 15:48 - 00816954 _____ () C:\Users\Manuel\Desktop\worldedit-5.5.8.zip 2014-02-01 22:54 - 2014-02-01 22:54 - 00000837 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel 2014-02-01 22:42 - 2014-02-01 22:42 - 00000010 _____ () C:\Users\Manuel\Desktop\new 3.txt 2014-02-01 20:47 - 2014-02-01 20:47 - 00000000 ____D () C:\Users\Manuel\Desktop\eclipse-java-kepler-SR1-win32-x86_64 2014-02-01 18:24 - 2014-02-01 18:24 - 00000000 ____D () C:\Windows\Sun 2014-02-01 18:21 - 2014-02-01 18:21 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-01 18:21 - 2014-02-01 18:21 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-01 16:04 - 2014-02-01 16:04 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Macromedia 2014-02-01 15:56 - 2014-02-01 15:56 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\library_dir 2014-01-30 15:15 - 2014-02-10 18:06 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Raptr 2014-01-30 15:15 - 2014-02-04 18:03 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-01-30 15:15 - 2014-01-30 15:15 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201401301515246048.log 2014-01-30 14:57 - 2014-01-30 14:57 - 00362029 _____ () C:\Windows\SysWOW64\sqlite3.dll 2014-01-30 14:47 - 2014-02-01 13:12 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-01-30 14:47 - 2014-02-01 13:12 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-30 14:47 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-01-30 14:47 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2014-01-30 14:47 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2014-01-30 14:47 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2014-01-30 14:47 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2014-01-30 14:47 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2014-01-30 14:47 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2014-01-30 14:47 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2014-01-30 14:47 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-01-30 14:47 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2014-01-30 14:47 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2014-01-30 14:47 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2014-01-30 14:47 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2014-01-30 14:47 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-01-30 14:47 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2014-01-30 14:47 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2014-01-30 14:47 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2014-01-30 14:47 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2014-01-30 14:47 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2014-01-30 14:47 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2014-01-30 14:47 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2014-01-30 14:47 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2014-01-30 14:47 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-01-30 14:47 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2014-01-30 14:47 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-01-30 14:45 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-01-30 14:45 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2014-01-30 14:34 - 2014-01-30 14:36 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-30 14:34 - 2014-01-06 16:20 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-29 15:27 - 2014-01-29 16:19 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-01-25 19:22 - 2014-02-04 20:23 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\.minecraft 2014-01-24 18:01 - 2014-02-01 23:57 - 00001162 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk 2014-01-24 16:09 - 2014-01-24 16:09 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games 2014-01-24 15:27 - 2013-03-09 14:25 - 00000000 ____D () C:\Users\Manuel\Desktop\TW_Mapeditor 2014-01-22 18:49 - 2014-01-22 18:49 - 00263186 _____ () C:\Users\Manuel\Desktop\Minecraft.exe 2014-01-22 13:49 - 2014-01-22 13:49 - 00000202 _____ () C:\Users\Manuel\Desktop\APB Reloaded.url 2014-01-21 17:03 - 2014-01-24 15:30 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Teeworlds 2014-01-21 17:03 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\Desktop\13x37 0.6.1 Client - Public 003 (win32) 2014-01-19 20:01 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-01-19 19:16 - 2014-01-19 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-19 19:00 - 2014-01-19 19:00 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\LogMeIn 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-01-15 16:51 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 16:51 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 16:51 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 16:51 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-14 17:40 - 2014-01-17 20:02 - 00000000 ____D () C:\Users\Manuel\Desktop\mc server 2014-01-13 16:39 - 2014-01-13 16:39 - 00000000 ____D () C:\AeriaGames ==================== One Month Modified Files and Folders ======= 2014-02-10 20:18 - 2014-02-10 20:17 - 00014746 _____ () C:\Users\Manuel\Desktop\FRST.txt 2014-02-10 20:17 - 2014-02-10 20:17 - 00000000 ____D () C:\Users\Manuel\Desktop\FRST-OlderVersion 2014-02-10 20:17 - 2014-02-08 09:34 - 00000000 ____D () C:\FRST 2014-02-10 20:17 - 2014-02-08 09:33 - 02150400 _____ (Farbar) C:\Users\Manuel\Desktop\FRST64.exe 2014-02-10 20:14 - 2013-06-23 12:53 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Skype 2014-02-10 19:25 - 2013-06-23 11:55 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-10 18:06 - 2014-01-30 15:15 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Raptr 2014-02-10 17:32 - 2013-06-23 11:55 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-10 16:17 - 2014-02-10 16:17 - 00000000 _____ () C:\Users\Manuel\Desktop\Neues Textdokument (2).txt 2014-02-10 15:52 - 2014-02-10 15:52 - 00987425 _____ () C:\Users\Manuel\Desktop\SecurityCheck.exe 2014-02-10 15:22 - 2013-06-23 11:39 - 01904380 _____ () C:\Windows\WindowsUpdate.log 2014-02-10 14:08 - 2014-02-10 14:08 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-02-10 13:39 - 2009-07-14 05:45 - 00021696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-10 13:39 - 2009-07-14 05:45 - 00021696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-10 13:31 - 2013-06-23 13:13 - 00000000 ____D () C:\ProgramData\VMware 2014-02-10 13:31 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-10 13:31 - 2009-07-14 05:51 - 00061965 _____ () C:\Windows\setupact.log 2014-02-09 19:58 - 2013-07-10 18:26 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\VMware 2014-02-09 19:58 - 2013-07-10 18:26 - 00000000 ____D () C:\Users\Manuel\AppData\Local\VMware 2014-02-09 19:54 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp 2014-02-09 17:34 - 2014-02-09 16:50 - 00317195 _____ () C:\Users\Manuel\Downloads\bhop.exe 2014-02-09 14:59 - 2013-06-23 11:55 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-02-09 12:00 - 2014-02-09 12:00 - 01243588 _____ () C:\Users\Manuel\Desktop\ProcessExplorer.zip 2014-02-09 12:00 - 2014-02-09 12:00 - 00000000 ____D () C:\Users\Manuel\Desktop\procex 2014-02-09 11:39 - 2014-02-09 11:39 - 00000000 ____D () C:\Users\Manuel\Desktop\frst 2014-02-09 11:38 - 2014-02-09 11:38 - 00000719 _____ () C:\Users\Manuel\Desktop\JRT.txt 2014-02-09 11:32 - 2014-02-09 11:32 - 00000000 ____D () C:\Windows\ERUNT 2014-02-09 11:30 - 2014-02-09 11:29 - 00001084 _____ () C:\Users\Manuel\Desktop\adwcleaner.txt 2014-02-09 11:27 - 2014-02-09 11:07 - 00000000 ____D () C:\AdwCleaner 2014-02-09 11:14 - 2010-11-21 04:47 - 00034780 _____ () C:\Windows\PFRO.log 2014-02-09 11:05 - 2014-02-09 11:05 - 01037530 _____ (Thisisu) C:\Users\Manuel\Desktop\JRT.exe 2014-02-09 11:05 - 2014-02-09 11:05 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Malwarebytes 2014-02-09 11:04 - 2014-02-09 11:04 - 00000786 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-02-09 11:04 - 2014-02-09 11:04 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-02-09 11:03 - 2014-02-09 11:07 - 01166132 _____ () C:\Users\Manuel\Desktop\adwcleaner.exe 2014-02-09 02:00 - 2013-07-13 21:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Adobe 2014-02-08 21:49 - 2014-02-08 21:49 - 00000000 ____D () C:\CFLog 2014-02-08 12:30 - 2014-02-08 12:30 - 00000000 _____ () C:\Users\Manuel\Desktop\Neues Textdokument.txt 2014-02-08 10:29 - 2014-02-08 10:29 - 00144795 _____ () C:\ComboFix.txt 2014-02-08 10:29 - 2014-02-08 10:10 - 00000000 ____D () C:\Qoobox 2014-02-08 10:29 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default 2014-02-08 10:28 - 2014-02-08 10:10 - 00000000 ____D () C:\Windows\erdnt 2014-02-08 10:28 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini 2014-02-08 10:10 - 2014-02-08 10:10 - 05180173 ____R (Swearware) C:\Users\Manuel\Desktop\ComboFix.exe 2014-02-08 10:01 - 2014-02-08 10:01 - 00010031 _____ () C:\Users\Manuel\Desktop\GMERlog.rar 2014-02-08 09:46 - 2014-02-08 09:33 - 00337564 _____ () C:\Users\Manuel\Desktop\GMER.txt 2014-02-08 09:33 - 2014-02-08 09:33 - 00380416 _____ () C:\Users\Manuel\Desktop\Gmer-19357.exe 2014-02-08 09:33 - 2014-02-08 09:33 - 00000895 _____ () C:\Users\Manuel\Desktop\gm.txt 2014-02-06 21:04 - 2013-10-24 13:34 - 00000016 _____ () C:\Users\Manuel\Desktop\timer.cfg 2014-02-05 19:29 - 2014-02-05 19:29 - 00001515 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk 2014-02-05 19:29 - 2014-02-05 19:29 - 00000000 ____D () C:\Program Files\Common Files\VMware 2014-02-05 19:29 - 2013-06-23 12:30 - 01712014 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-02-05 19:29 - 2011-04-12 08:43 - 00723530 _____ () C:\Windows\system32\perfh007.dat 2014-02-05 19:29 - 2011-04-12 08:43 - 00160404 _____ () C:\Windows\system32\perfc007.dat 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines 2014-02-05 19:28 - 2014-02-05 19:28 - 00000000 ____D () C:\Program Files (x86)\VMware 2014-02-05 16:05 - 2014-02-05 16:05 - 00000202 _____ () C:\Users\Manuel\Desktop\Rust.url 2014-02-04 20:23 - 2014-01-25 19:22 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\.minecraft 2014-02-04 18:27 - 2013-06-23 11:56 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-02-04 18:10 - 2014-02-04 18:10 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201402041810334344.log 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\ProgramData\ATI 2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\AMD AVT 2014-02-04 18:10 - 2013-06-23 12:42 - 00000000 ____D () C:\Program Files\ATI Technologies 2014-02-04 18:10 - 2013-06-23 12:09 - 00000000 ____D () C:\ProgramData\AMD 2014-02-04 18:08 - 2013-06-23 12:43 - 00000000 ____D () C:\Program Files\AMD 2014-02-04 18:03 - 2014-01-30 15:15 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-02-03 15:27 - 2014-02-03 15:27 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Eclipse 2014-02-02 15:48 - 2014-02-02 15:48 - 00816954 _____ () C:\Users\Manuel\Desktop\worldedit-5.5.8.zip 2014-02-01 23:57 - 2014-01-24 18:01 - 00001162 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk 2014-02-01 23:06 - 2013-08-15 23:00 - 00000000 ____D () C:\Users\Manuel\.gimp-2.8 2014-02-01 22:54 - 2014-02-01 22:54 - 00000837 _____ () C:\Users\Manuel\AppData\Local\recently-used.xbel 2014-02-01 22:42 - 2014-02-01 22:42 - 00000010 _____ () C:\Users\Manuel\Desktop\new 3.txt 2014-02-01 20:47 - 2014-02-01 20:47 - 00000000 ____D () C:\Users\Manuel\Desktop\eclipse-java-kepler-SR1-win32-x86_64 2014-02-01 18:24 - 2014-02-01 18:24 - 00000000 ____D () C:\Windows\Sun 2014-02-01 18:21 - 2014-02-01 18:21 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-02-01 18:21 - 2014-02-01 18:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-01 18:21 - 2014-02-01 18:21 - 00000000 ____D () C:\Program Files (x86)\Java 2014-02-01 18:21 - 2013-11-22 20:09 - 00000000 ____D () C:\ProgramData\Oracle 2014-02-01 16:04 - 2014-02-01 16:04 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Macromedia 2014-02-01 15:56 - 2014-02-01 15:56 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Users\Manuel\AppData\Local\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\ProgramData\Mozilla 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-02-01 15:56 - 2014-02-01 15:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-02-01 13:12 - 2014-01-30 14:47 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-02-01 13:12 - 2014-01-30 14:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-31 13:31 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-01-30 15:26 - 2013-12-21 10:23 - 00000000 ____D () C:\ProgramData\Origin 2014-01-30 15:19 - 2013-08-23 23:50 - 00000000 ____D () C:\Users\Manuel\Documents\Diablo III 2014-01-30 15:19 - 2013-08-20 15:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\PAYDAY 2 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2014-01-30 15:16 - 2014-01-30 15:16 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\library_dir 2014-01-30 15:15 - 2014-01-30 15:15 - 00060993 _____ () C:\Windows\SysWOW64\CCCInstall_201401301515246048.log 2014-01-30 15:12 - 2013-06-23 12:05 - 00000000 ____D () C:\AMD 2014-01-30 15:10 - 2013-12-21 11:14 - 00000000 ____D () C:\ProgramData\Package Cache 2014-01-30 14:57 - 2014-01-30 14:57 - 00362029 _____ () C:\Windows\SysWOW64\sqlite3.dll 2014-01-30 14:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-01-30 14:51 - 2009-07-14 06:13 - 01657124 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-01-30 14:36 - 2014-01-30 14:34 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-30 14:29 - 2013-06-23 13:16 - 00000000 ____D () C:\Program Files (x86)\Pando Networks 2014-01-29 20:43 - 2013-11-17 10:56 - 00000000 ____D () C:\Users\Manuel\Desktop\photoshop 2014-01-29 20:33 - 2013-08-12 12:52 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames 2014-01-29 16:19 - 2014-01-29 15:27 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-01-29 16:19 - 2013-12-21 11:14 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2014-01-29 15:27 - 2013-12-21 12:24 - 00000000 ____D () C:\Users\Manuel\AppData\Local\PunkBuster 2014-01-29 15:27 - 2013-12-21 11:14 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2014-01-29 15:27 - 2013-12-21 11:14 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-01-25 14:47 - 2009-07-14 05:45 - 04938392 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-24 18:30 - 2013-06-23 12:33 - 00058792 _____ () C:\Users\Manuel\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-24 18:15 - 2013-08-10 18:52 - 00000000 ____D () C:\Users\Manuel\Desktop\mc 2014-01-24 18:02 - 2013-12-04 18:36 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\TeamViewer 2014-01-24 18:01 - 2013-07-10 17:46 - 00000000 ____D () C:\Program Files (x86)\TeamViewer 2014-01-24 16:09 - 2014-01-24 16:09 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games 2014-01-24 15:30 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\Teeworlds 2014-01-22 18:49 - 2014-01-22 18:49 - 00263186 _____ () C:\Users\Manuel\Desktop\Minecraft.exe 2014-01-22 13:49 - 2014-01-22 13:49 - 00000202 _____ () C:\Users\Manuel\Desktop\APB Reloaded.url 2014-01-21 17:03 - 2014-01-21 17:03 - 00000000 ____D () C:\Users\Manuel\Desktop\13x37 0.6.1 Client - Public 003 (win32) 2014-01-19 20:10 - 2009-07-14 05:45 - 00006144 _____ () C:\Windows\system32\umstartup.etl 2014-01-19 20:01 - 2013-08-12 13:50 - 00062431 _____ () C:\Windows\DirectX.log 2014-01-19 19:19 - 2013-12-18 19:05 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2014-01-19 19:16 - 2014-01-19 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-19 19:16 - 2014-01-19 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-19 19:00 - 2014-01-19 19:00 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log 2014-01-17 20:02 - 2014-01-14 17:40 - 00000000 ____D () C:\Users\Manuel\Desktop\mc server 2014-01-17 14:25 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-16 22:00 - 2009-07-14 05:45 - 00015360 _____ () C:\Windows\system32\umstartup000.etl 2014-01-16 15:25 - 2013-11-01 22:06 - 00000000 ____D () C:\Users\Manuel\Desktop\Textdokumente 2014-01-15 20:18 - 2013-06-30 11:08 - 00000000 ____D () C:\Users\Manuel\AppData\Roaming\ftblauncher 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\Users\Manuel\AppData\Local\LogMeIn 2014-01-15 18:09 - 2014-01-15 18:09 - 00000000 ____D () C:\ProgramData\LogMeIn 2014-01-14 16:13 - 2014-01-07 20:20 - 00000000 ____D () C:\Users\Manuel\Desktop\hack123 2014-01-13 16:39 - 2014-01-13 16:39 - 00000000 ____D () C:\AeriaGames Some content of TEMP: ==================== C:\Users\Manuel\AppData\Local\Temp\Quarantine.exe C:\Users\Manuel\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-02-08 16:57 ==================== End Of Log ============================ --- --- --- und nein es gibt keine probleme mehr danke für die hilfe^^ |
11.02.2014, 17:39 | #10 |
/// the machine /// TB-Ausbilder | Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter IFEO\taskmgr.exe: [Debugger] "C:\USERS\MANUEL\DESKTOP\PROCEX\PROCEXP.EXE" IFEO\utilman.exe: [Debugger] cmd.exe Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
11.02.2014, 17:59 | #11 |
| Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen Fixlist Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 10-02-2014 01 Ran by Manuel at 2014-02-11 17:58:33 Run:1 Running from C:\Users\Manuel\Desktop Boot Mode: Normal ============================================== Content of fixlist: ***************** IFEO\taskmgr.exe: [Debugger] "C:\USERS\MANUEL\DESKTOP\PROCEX\PROCEXP.EXE" IFEO\utilman.exe: [Debugger] cmd.exe ***************** HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\taskmgr.exe => Key deleted successfully. HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\utilman.exe => Key deleted successfully. ==== End of Fixlog ==== |
12.02.2014, 17:43 | #12 |
/// the machine /// TB-Ausbilder | Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen fertig
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu Nach dem Scan mit GMER hat er Festgestellt dass System Modifikationen bestehen |
adobe, antivirus, avast, branding, browser, defender, error, explorer, flash player, google, helper, installation, manuel, mozilla, realtek, registry, scan, security, services.exe, software, svchost.exe, system, teamspeak, temp, updates, vcredist, warnung |