| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: CouponDropDown kommt immer wiederWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
23.04.2013, 21:58
| #1 |
 |  CouponDropDown kommt immer wieder Hallo liebes Trojaner-Board, Seit ca. 1 Monat kommt immer dieses CouponDropDown Fenster auf irgendwelchen Seiten, ähnlich wie in diesem Thread http://www.trojaner-board.de/132258-...entfernen.html Erst versuchte ich, mir durch diesen Thread selbst zu helfen. Aber bevor ich was falsches drück, und es doch nicht besser wird, versuch ichs lieber so.. Es wär schön, wenn ihr mir helfen könntet, dieses lästige Fenster loszuwerden.  Vielen Dank im voraus. |
|
24.04.2013, 14:17
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | CouponDropDown kommt immer wieder Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die jemals fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!  Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
24.04.2013, 15:42
| #3 |
| | CouponDropDown kommt immer wieder Huhu.
__________________ Auf Rat eines Freundes habe ich Spybot -Search and Destroy heruntergeladen. Hier das Log dazu. Code:
ATTFilter Search results from Spybot - Search & Destroy
23.04.2013 20:37:59
Scan took 01:17:29.
217 items found.
W3i.IQ5.fraud: [SBI $35D8A8B0] Program directory (Directory, nothing done)
C:\Program Files (x86)\Free Offers from Freeze.com\
Directory.subfile=C:\Program Files (x86)\Free Offers from Freeze.com\16676.url
Directory.subfile.size=79
Directory.subfile.md5=FF8862A3962A0930B0F2F82B4674E5A1
Directory.subfile.filedate=1324240317
Directory.subfile.filedatetext=2011-12-18 22:31:57
Directory.subfile=C:\Program Files (x86)\Free Offers from Freeze.com\16700.url
Directory.subfile.size=80
Directory.subfile.md5=04D56AC64272E217875760C5C513EAB8
Directory.subfile.filedate=1324240317
Directory.subfile.filedatetext=2011-12-18 22:31:56
Directory.subfile=C:\Program Files (x86)\Free Offers from Freeze.com\16714.url
Directory.subfile.size=78
Directory.subfile.md5=9431554F09FBC9AEA1C7A79CB8F8A3FF
Directory.subfile.filedate=1324240317
Directory.subfile.filedatetext=2011-12-18 22:31:57
Directory.subfile=C:\Program Files (x86)\Free Offers from Freeze.com\control.txt
Directory.subfile.size=288
Directory.subfile.md5=93ADF4F551183AC005E8AD53E2433DF3
Directory.subfile.filedate=1324240317
Directory.subfile.filedatetext=2011-12-18 22:31:57
Directory.subfile=C:\Program Files (x86)\Free Offers from Freeze.com\dolphinico.ico
Directory.subfile.size=3262
Directory.subfile.md5=B4D26F879C99E3D9F4E18E25298EFA70
Directory.subfile.filedate=1324240308
Directory.subfile.filedatetext=2011-12-18 22:31:47
Directory.subfile=C:\Program Files (x86)\Free Offers from Freeze.com\wfallsaw.ico
Directory.subfile.size=2238
Directory.subfile.md5=4C5E73008A4155913D010A78E821068E
Directory.subfile.filedate=1324240308
Directory.subfile.filedatetext=2011-12-18 22:31:47
Directory.subfile=C:\Program Files (x86)\Free Offers from Freeze.com\whalesico.ico
Directory.subfile.size=2238
Directory.subfile.md5=196A5FE5D758C96DBEAC20A87E9BEE5C
Directory.subfile.filedate=1324240308
Directory.subfile.filedatetext=2011-12-18 22:31:48
W3i.IQ5.fraud: [SBI $0D979C68] Link (File, nothing done)
C:\Program Files (x86)\Free Offers from Freeze.com\16700.url
Properties.size=80
Properties.md5=04D56AC64272E217875760C5C513EAB8
Properties.filedate=1324240317
Properties.filedatetext=2011-12-18 22:31:56
W3i.IQ5.fraud: [SBI $3071D5CA] Link (File, nothing done)
C:\Program Files (x86)\Free Offers from Freeze.com\16714.url
Properties.size=78
Properties.md5=9431554F09FBC9AEA1C7A79CB8F8A3FF
Properties.filedate=1324240317
Properties.filedatetext=2011-12-18 22:31:57
W3i.IQ5.fraud: [SBI $8CC747E9] Text file (File, nothing done)
C:\Program Files (x86)\Free Offers from Freeze.com\control.txt
Properties.size=288
Properties.md5=93ADF4F551183AC005E8AD53E2433DF3
Properties.filedate=1324240317
Properties.filedatetext=2011-12-18 22:31:57
W3i.IQ5.fraud: [SBI $938235D5] Picture (File, nothing done)
C:\Program Files (x86)\Free Offers from Freeze.com\dolphinico.ico
Properties.size=3262
Properties.md5=B4D26F879C99E3D9F4E18E25298EFA70
Properties.filedate=1324240308
Properties.filedatetext=2011-12-18 22:31:47
W3i.IQ5.fraud: [SBI $F4572031] Picture (File, nothing done)
C:\Program Files (x86)\Free Offers from Freeze.com\whalesico.ico
Properties.size=2238
Properties.md5=196A5FE5D758C96DBEAC20A87E9BEE5C
Properties.filedate=1324240308
Properties.filedatetext=2011-12-18 22:31:48
MyFreezeToolbar: [SBI $B8EC944E] Data (File, nothing done)
C:\Program Files (x86)\Free Offers from Freeze.com\wfallsaw.ico
Properties.size=2238
Properties.md5=4C5E73008A4155913D010A78E821068E
Properties.filedate=1324240308
Properties.filedatetext=2011-12-18 22:31:47
Facebook.Messenger: [SBI $917BFFAB] Program directory (Directory, nothing done)
C:\Users\ACER 5253\AppData\Local\Facebook\
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\FacebookVideoCalling
Directory.subfile.size=369
Directory.subfile.md5=C19BC34E878324CC3E63A619438723A0
Directory.subfile.filedate=1328819584
Directory.subfile.filedatetext=2012-02-09 22:33:04
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\shared.lck
Directory.subfile.size=0
Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E
Directory.subfile.filedate=1325106655
Directory.subfile.filedatetext=2011-12-28 23:10:54
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\shared.xml
Directory.subfile.size=55996
Directory.subfile.md5=6E7C9B3CD43558090820CC53156A790D
Directory.subfile.filedate=1350418888
Directory.subfile.filedatetext=2012-10-16 22:21:28
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\call256.dbb
Directory.subfile.size=402
Directory.subfile.md5=B5853E21F56A3D9A1D6A7CFB34C9420C
Directory.subfile.filedate=1330720601
Directory.subfile.filedatetext=2012-03-02 22:36:40
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\callmember256.dbb
Directory.subfile.size=182
Directory.subfile.md5=7A574BE902D182909ACBE2C2F3F0916A
Directory.subfile.filedate=1330720601
Directory.subfile.filedatetext=2012-03-02 22:36:40
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\callmember512.dbb
Directory.subfile.size=300
Directory.subfile.md5=2AECCAE7028B98E837491E00BBED2A9E
Directory.subfile.filedate=1328819521
Directory.subfile.filedatetext=2012-02-09 22:32:00
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\config.lck
Directory.subfile.size=0
Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E
Directory.subfile.filedate=1328819507
Directory.subfile.filedatetext=2012-02-09 22:31:46
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\config.xml
Directory.subfile.size=2027
Directory.subfile.md5=0A29170BFA3F3EBFD4920FB8C526AFF3
Directory.subfile.filedate=1330720601
Directory.subfile.filedatetext=2012-03-02 22:36:40
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\contactgroup256.dbb
Directory.subfile.size=2925
Directory.subfile.md5=0B6B64C96743CC20957071B9F11828D7
Directory.subfile.filedate=1328819510
Directory.subfile.filedatetext=2012-02-09 22:31:49
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\index2.dat
Directory.subfile.size=288
Directory.subfile.md5=B4F0274D87C47DEEA1B5E969C76840D3
Directory.subfile.filedate=1330720601
Directory.subfile.filedatetext=2012-03-02 22:36:40
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\main.lock
Directory.subfile.size=0
Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E
Directory.subfile.filedate=1328819508
Directory.subfile.filedatetext=2012-02-09 22:31:47
Directory.subfile=C:\Users\ACER 5253\AppData\Local\Facebook\Video\Common\fb#3aac4ds-3b9tlu-vm5vjlribrvajtqcgw4cu_vrgl-nlsz99l3o6au_blg2tq13-2aqao\profile256.dbb
Directory.subfile.size=98
Directory.subfile.md5=716E58287FD5BA4BC2DB714113B6AE4F
Directory.subfile.filedate=1330720601
Directory.subfile.filedatetext=2012-03-02 22:36:40
Facebook.Messenger: [SBI $21F6393C] Program directory (Directory, nothing done)
C:\Users\ACER 5253\AppData\Local\Facebook\CrashReports\
SweetIM: [SBI $D9B554B8] Program directory (Directory, nothing done)
C:\Program Files (x86)\SweetIM\
SweetIM: [SBI $51CF2A45] Settings (Registry Value, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\SweetIM\simapp_id
SweetIM: [SBI $3C0145EF] Settings (Registry Value, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\SweetIM\simapp_id
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a.vimeocdn.com\com.conviva.livePass.sol
Properties.size=220
Properties.md5=407FE933E79DFFAA2DC335E74A29CFD8
Properties.filedate=1366735703
Properties.filedatetext=2013-04-23 18:48:23
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\analytics.sol
Properties.size=419
Properties.md5=FCE4729B6AB4268FEDD26EB1B4D0B1FE
Properties.filedate=1365017490
Properties.filedatetext=2013-04-03 21:31:29
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cache.spreadshirt.net\sprd_c7_591998.sol
Properties.size=1046
Properties.md5=5E71E71F983C47249B694417A8C119C4
Properties.filedate=1361813962
Properties.filedatetext=2013-02-25 19:39:21
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\analytics.sol
Properties.size=491
Properties.md5=1114B056D4351F0800BD029F0A5C8739
Properties.filedate=1366230393
Properties.filedatetext=2013-04-17 22:26:32
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\OVPMetricsProvider.sol
Properties.size=64
Properties.md5=9CF126FEC2EDD15C94FADC22C285BA3F
Properties.filedate=1366146053
Properties.filedatetext=2013-04-16 23:00:52
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\chatroulette.com\16chatroulette.sol
Properties.size=13226
Properties.md5=CBB1BACC4BFA95CE8C9185F349B34664
Properties.filedate=1357851543
Properties.filedatetext=2013-01-10 22:59:02
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\core.mochibot.com\com.mochibot.sol
Properties.size=105
Properties.md5=9AE79FDB8868DF80066DF78BF9E1CCDC
Properties.filedate=1354222784
Properties.filedatetext=2012-11-29 22:59:43
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cyt.internetkarneval.de\IKarneval.sol
Properties.size=63
Properties.md5=4DB2BA128CD355387680C3FF2AA38C49
Properties.filedate=1358201125
Properties.filedatetext=2013-01-15 00:05:25
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\de-freshmilk.cdn.videoplaza.tv\com.videoplaza.adplayer.sol
Properties.size=157
Properties.md5=C126C769FFAADDB1E695F9981A418EBA
Properties.filedate=1365449940
Properties.filedatetext=2013-04-08 21:38:59
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\de-freshmilk.cdn.videoplaza.tv\com.videoplaza.bootloader.sol
Properties.size=121
Properties.md5=B24967A9B287FF38DE6D53287907648F
Properties.filedate=1365449945
Properties.filedatetext=2013-04-08 21:39:04
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\effectivemeasure.net\EM_APP.sol
Properties.size=100
Properties.md5=5004876FFB875AD72E9C7B7F26680F62
Properties.filedate=1355352704
Properties.filedatetext=2012-12-13 00:51:43
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\embed.yesload.net\com.jeroenwijering.sol
Properties.size=54
Properties.md5=4E3C239C0F72A0D648F4588256486AA4
Properties.filedate=1364332788
Properties.filedatetext=2013-03-26 23:19:47
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\fr-himedia.cdn.videoplaza.tv\com.videoplaza.adplayer.sol
Properties.size=113
Properties.md5=8E8A00638BFC0A49D182D26B3B56993C
Properties.filedate=1351807181
Properties.filedatetext=2012-11-01 23:59:40
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\fr-himedia.cdn.videoplaza.tv\com.videoplaza.bootloader.sol
Properties.size=121
Properties.md5=8666CD9967E31C0F51365E3002785B98
Properties.filedate=1364669072
Properties.filedatetext=2013-03-30 20:44:31
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\images-na.ssl-images-amazon.com\mercury.sol
Properties.size=69
Properties.md5=B90776AC29BA4CF7E9ABDF763082EA26
Properties.filedate=1351255549
Properties.filedatetext=2012-10-26 14:45:49
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\images.buttinette.com\s7_storage_tracker.sol
Properties.size=179
Properties.md5=F09FD5055671B1C1BE36D58187A75984
Properties.filedate=1358445191
Properties.filedatetext=2013-01-17 19:53:10
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\AdModel.sol
Properties.size=180
Properties.md5=67B729F5A295788B5EB17793F4577B11
Properties.filedate=1359227399
Properties.filedatetext=2013-01-26 21:09:58
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\CountryCode.sol
Properties.size=112
Properties.md5=58EFAC5D76D14124CBCAEC2163F7F17C
Properties.filedate=1359227377
Properties.filedatetext=2013-01-26 21:09:37
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\PlaylistModel.sol
Properties.size=132
Properties.md5=7C6466296D94E76609F535B7FED972C7
Properties.filedate=1359227399
Properties.filedatetext=2013-01-26 21:09:58
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\reportingSegment.sol
Properties.size=83
Properties.md5=2B0D97BCAC163D373E3F4300E3B60D6C
Properties.filedate=1359227378
Properties.filedatetext=2013-01-26 21:09:37
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is1.myvideo.de\com.conviva.livePass.sol
Properties.size=224
Properties.md5=DC62168FD4E16BE522ED6A2464C254BF
Properties.filedate=1364244519
Properties.filedatetext=2013-03-25 22:48:39
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is2.myvideo.de\com.conviva.livePass.sol
Properties.size=224
Properties.md5=5D92D715289D96E2D3E7FDD6E0A8FD70
Properties.filedate=1365855685
Properties.filedatetext=2013-04-13 14:21:24
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is3.myvideo.de\com.conviva.livePass.sol
Properties.size=224
Properties.md5=C4E557813C0E690430A54DE10289FBE5
Properties.filedate=1363301325
Properties.filedatetext=2013-03-15 00:48:44
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is4.myvideo.de\com.conviva.livePass.sol
Properties.size=224
Properties.md5=758754E53F0B64BE3774704F69ECF65B
Properties.filedate=1359744790
Properties.filedatetext=2013-02-01 20:53:10
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is5.myvideo.de\com.conviva.livePass.sol
Properties.size=219
Properties.md5=221F1993535A6185E6019B10DCEF2354
Properties.filedate=1364237784
Properties.filedatetext=2013-03-25 20:56:23
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\com.mtvnservices.media.as3player.model.user.SavedPreferencesVO.sol
Properties.size=184
Properties.md5=3D0BDE718F64E12E8E006306C340C1BC
Properties.filedate=1351539666
Properties.filedatetext=2012-10-29 21:41:06
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\MetadataHistory.sol
Properties.size=3886
Properties.md5=DABFFF5E6DB2EC056275CED75B8B7478
Properties.filedate=1353357953
Properties.filedatetext=2012-11-19 22:45:52
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\OVPMetricsProvider.sol
Properties.size=64
Properties.md5=A1B14B99E17899CD5CD3AE5BD5603260
Properties.filedate=1353357952
Properties.filedatetext=2012-11-19 22:45:52
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\playerCounter.sol
Properties.size=288
Properties.md5=3C8176D87193AE0EB3DC457BC2C49293
Properties.filedate=1353357966
Properties.filedatetext=2012-11-19 22:46:05
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\userPrefs4.sol
Properties.size=341
Properties.md5=A8A623234A09CF80E4F6DFC946E30D42
Properties.filedate=1353357953
Properties.filedatetext=2012-11-19 22:45:52
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\com.mochiads.sol
Properties.size=88
Properties.md5=BB1205A1E9B5FDEC7F5E25BFCDBCB0CD
Properties.filedate=1361902726
Properties.filedatetext=2013-02-26 20:18:45
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\mochiLCStatus.sol
Properties.size=154
Properties.md5=BB93B83CF5745A6E5B9845CCC021AE87
Properties.filedate=1364242803
Properties.filedatetext=2013-03-25 22:20:03
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\services.mochiads.com.sol
Properties.size=549
Properties.md5=80771F729EAE712098C5E7B3958D46E0
Properties.filedate=1364242800
Properties.filedatetext=2013-03-25 22:20:00
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\__coinsEventLC__.sol
Properties.size=249
Properties.md5=F2BECF682E7832F23304853097F32D0D
Properties.filedate=1364242803
Properties.filedatetext=2013-03-25 22:20:03
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\__ms_1364242794695_41382.sol
Properties.size=2802
Properties.md5=71525AA02E0501C9146D0C815EDE6688
Properties.filedate=1364242803
Properties.filedatetext=2013-03-25 22:20:03
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\__ms_1364242794695_41382_fromgame.sol
Properties.size=70
Properties.md5=1021FF5139E277417EBC36E31D417AD2
Properties.filedate=1364242799
Properties.filedatetext=2013-03-25 22:19:59
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochibot.com\com.mochibot.sol
Properties.size=105
Properties.md5=615DA23274BC223DE832209679BD43DA
Properties.filedate=1361822670
Properties.filedatetext=2013-02-25 22:04:29
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\play.flashx.tv\analytics.sol
Properties.size=419
Properties.md5=8CBF1A1220B3C54A050BA0AA300154BE
Properties.filedate=1364417994
Properties.filedatetext=2013-03-27 22:59:53
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\play.flashx.tv\com.nuevoplayer.sol
Properties.size=47
Properties.md5=42BCDD1D934AC6DF49FB5069C88E67A7
Properties.filedate=1364417944
Properties.filedatetext=2013-03-27 22:59:04
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\AdobeDynamicStream.sol
Properties.size=63
Properties.md5=29699F1E274CF7358065E63CADC8F826
Properties.filedate=1365453000
Properties.filedatetext=2013-04-08 22:29:59
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\analytics.sol
Properties.size=469
Properties.md5=06CBC98B9083385D86A21E4DB33D3560
Properties.filedate=1365453000
Properties.filedatetext=2013-04-08 22:29:59
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\s.ytimg.com\soundData.sol
Properties.size=49
Properties.md5=F2945B8419B125F71FC8FD7CDDB59948
Properties.filedate=1366653641
Properties.filedatetext=2013-04-22 20:00:41
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\s.ytimg.com\videostats.sol
Properties.size=275
Properties.md5=D448B968AC8FA7BA0C9AA8ACBFA381E9
Properties.filedate=1366655537
Properties.filedatetext=2013-04-22 20:32:16
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\secureinclude.ebaystatic.com\ebayLSO.sol
Properties.size=131
Properties.md5=9E0D301FB1B45B2C37D1068382CA8E0E
Properties.filedate=1354371283
Properties.filedatetext=2012-12-01 16:14:43
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\secureinclude.ebaystatic.com\ebayT.sol
Properties.size=39
Properties.md5=B43F43445AA3414DDC22EC80FBB22871
Properties.filedate=1354371283
Properties.filedatetext=2012-12-01 16:14:43
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\server22.stream2k.com\com.jeroenwijering.sol
Properties.size=54
Properties.md5=4FC9B8936575B4DE413A9840CC4A4C54
Properties.filedate=1351377105
Properties.filedatetext=2012-10-28 00:31:44
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\server39.stream2k.com\com.jeroenwijering.sol
Properties.size=54
Properties.md5=97846880291F203EF7A623306A37C024
Properties.filedate=1353431955
Properties.filedatetext=2012-11-20 19:19:15
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\ssl.hurra.com\restore.hurra.com.sol
Properties.size=267
Properties.md5=B8BC2D5C3AB747CEA3D916A15CC65CDB
Properties.filedate=1365005832
Properties.filedatetext=2013-04-03 18:17:12
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static.novelgames.com\gameOptions.sol
Properties.size=79
Properties.md5=496E766B206B0B3D78D2107D89D4379A
Properties.filedate=1354221131
Properties.filedatetext=2012-11-29 22:32:10
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static1.dmcdn.net\com.dm.player.sol
Properties.size=281
Properties.md5=B422A70D3506232120ED0C6B3FE5EF70
Properties.filedate=1359206761
Properties.filedatetext=2013-01-26 15:26:01
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\streamcloud.eu\com.jeroenwijering.sol
Properties.size=71
Properties.md5=5D9B8F26842BF609DC3847DA84155784
Properties.filedate=1364675199
Properties.filedatetext=2013-03-30 22:26:38
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\tubecloud.net\com.jeroenwijering.sol
Properties.size=54
Properties.md5=073E4CF9ED007312593F4713C08711A1
Properties.filedate=1366144628
Properties.filedatetext=2013-04-16 22:37:08
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\village-spil.s3.amazonaws.com\de-DE_netlog_spielen.com9e269fc698d3f2c6ab40ed91a1f3fc8350bb61acb5b8d_lastScene_New_30000.sol
Properties.size=1915
Properties.md5=8AB81991364B70C0F0AEA48B7EE1D298
Properties.filedate=1354457542
Properties.filedatetext=2012-12-02 16:12:21
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\village-spil.s3.amazonaws.com\de-DE_netlog_spielen.com9e269fc698d3f2c6ab40ed91a1f3fc8350bb61acb5b8d_zoomlevel_key.sol
Properties.size=193
Properties.md5=A8ABEB4EC9205814CEE1B253AEFF7B28
Properties.filedate=1354457539
Properties.filedatetext=2012-12-02 16:12:19
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\village-spil.s3.amazonaws.com\TestFile.sol
Properties.size=39
Properties.md5=D95A82B4AF2AAFE46A5DFB646FC06163
Properties.filedate=1354457538
Properties.filedatetext=2012-12-02 16:12:18
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\weltbild.scene7.com\s7_storage_init.sol
Properties.size=1138
Properties.md5=DB10EFCC40C87A18499BC106F26EF671
Properties.filedate=1355171213
Properties.filedatetext=2012-12-10 22:26:53
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\weltbild.scene7.com\s7_storage_tracker.sol
Properties.size=177
Properties.md5=913CA4320F609B9E6825D17D484E0577
Properties.filedate=1355171215
Properties.filedatetext=2012-12-10 22:26:54
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.dailymotion.com\com.dm.player.sol
Properties.size=281
Properties.md5=EA380D911125A16E21EDACB12F2B75D6
Properties.filedate=1365017596
Properties.filedatetext=2013-04-03 21:33:15
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.ecostream.tv\com.jeroenwijering.sol
Properties.size=54
Properties.md5=E2EA85D4203B1820C4565C4E0AEA69BE
Properties.filedate=1358116454
Properties.filedatetext=2013-01-14 00:34:14
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.fritz.de\com.jeroenwijering.sol
Properties.size=53
Properties.md5=C1554EDA9BBED32E2290324E6200C528
Properties.filedate=1355696031
Properties.filedatetext=2012-12-17 00:13:51
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.helpster.de\analytics.sol
Properties.size=455
Properties.md5=14C2BDEA85D417150844104B1480561B
Properties.filedate=1351427202
Properties.filedatetext=2012-10-28 14:26:42
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.mtv.de\AdobeDynamicStream.sol
Properties.size=63
Properties.md5=234228E700E089DB56EC93C946C3A119
Properties.filedate=1366230869
Properties.filedatetext=2013-04-17 22:34:29
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.mtv.de\analytics.sol
Properties.size=445
Properties.md5=A9EB5945ABCED9E5A6E050725446F211
Properties.filedate=1366230869
Properties.filedatetext=2013-04-17 22:34:29
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\analytics.sol
Properties.size=466
Properties.md5=B8100057B18F1A23D7D085272316C123
Properties.filedate=1364239984
Properties.filedatetext=2013-03-25 21:33:03
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\GovernorOfPoker.sol
Properties.size=31770
Properties.md5=8401E78F7B49ED8F997CA9CA0313310B
Properties.filedate=1363254717
Properties.filedatetext=2013-03-14 11:51:56
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\SpilGames_null_UserData.sol
Properties.size=180
Properties.md5=8708B265B6C412CE885A79D064582E0E
Properties.filedate=1364239644
Properties.filedatetext=2013-03-25 21:27:23
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\zlong_games_my_romantic_town.sol
Properties.size=161
Properties.md5=CF4F443CF28F594FF91F87B5C0D0E0F2
Properties.filedate=1364239984
Properties.filedatetext=2013-03-25 21:33:03
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.paypal-deutschland.de\ppLsoTest.sol
Properties.size=48
Properties.md5=74EE4375686A2069414EEF13E7B62789
Properties.filedate=1354650567
Properties.filedatetext=2012-12-04 21:49:27
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.paypalobjects.com\paypalLSO.sol
Properties.size=111
Properties.md5=46A9E9F4B0B0F7BF59362FC14AF2B627
Properties.filedate=1354650246
Properties.filedatetext=2012-12-04 21:44:05
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.paypalobjects.com\ppLsoTest.sol
Properties.size=48
Properties.md5=74EE4375686A2069414EEF13E7B62789
Properties.filedate=1354377917
Properties.filedatetext=2012-12-01 18:05:16
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.rtl2.de\vipoPlayerCookie.sol
Properties.size=56
Properties.md5=E22B821BCBA924EBC22B1C9A416EA038
Properties.filedate=1364245758
Properties.filedatetext=2013-03-25 23:09:18
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www6.zippyshare.com\zippyShare.sol
Properties.size=55
Properties.md5=8193498F9F019CE2E1BE98771F97B4AE
Properties.filedate=1354975767
Properties.filedatetext=2012-12-08 16:09:27
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www8.zippyshare.com\zippyShare.sol
Properties.size=55
Properties.md5=8193498F9F019CE2E1BE98771F97B4AE
Properties.filedate=1359994853
Properties.filedatetext=2013-02-04 18:20:52
Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\yesload.net\com.jeroenwijering.sol
Properties.size=54
Properties.md5=9425E0565278C442B07952FC8E308450
Properties.filedate=1359145243
Properties.filedatetext=2013-01-25 22:20:42
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\images.putlocker.com\video_player.swf\org.flowplayer.sol
Properties.size=67
Properties.md5=341A6A4868715147A988A434441391BF
Properties.filedate=1357570212
Properties.filedatetext=2013-01-07 16:50:12
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\maps-4-u.com\lso.swf\e.sol
Properties.size=45
Properties.md5=74C6355A292FBD05764341789B73C565
Properties.filedate=1357852499
Properties.filedatetext=2013-01-10 23:14:58
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\server08.de\woobies.swf\steganos2.sol
Properties.size=54
Properties.md5=80F56DCE8CCE2A81D46F388B3707A2CA
Properties.filedate=1366138845
Properties.filedatetext=2013-04-16 21:00:44
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\skype.com\#ui\preferences.sol
Properties.size=233
Properties.md5=80D8EBAA7ABB7485277DC7D60CD8E228
Properties.filedate=1366740026
Properties.filedatetext=2013-04-23 20:00:25
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static.putlocker.com\video_player.swf\org.flowplayer.sol
Properties.size=60
Properties.md5=11B628CEABE61125FA85414F1AC515EA
Properties.filedate=1354460133
Properties.filedatetext=2012-12-02 16:55:33
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static.sockshare.com\video_player.swf\org.flowplayer.sol
Properties.size=67
Properties.md5=5A4931B0F8EFB6CE057816B17DEB7945
Properties.filedate=1359144439
Properties.filedatetext=2013-01-25 22:07:19
Macromedia.FlashPlayer.Cookies: [SBI $1EF45977] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.bbc.co.uk\emp\uuid.sol
Properties.size=72
Properties.md5=A0C730124E9024822277375B0C313419
Properties.filedate=1355352719
Properties.filedatetext=2012-12-13 00:51:58
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a.affil.io\s\af.swf\afstorage.sol
Properties.size=52
Properties.md5=9F57122932B5BCED8DC060C050CEA937
Properties.filedate=1351183322
Properties.filedatetext=2012-10-25 18:42:02
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\tapetvobjdel.download.akamai.com\embedV2-13548.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=85ED10AC686867695E34E7D4C0D703F0
Properties.filedate=1354472576
Properties.filedatetext=2012-12-02 20:22:55
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\tapetvobjdel.download.akamai.com\embedV2-13862.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=85ED10AC686867695E34E7D4C0D703F0
Properties.filedate=1355781555
Properties.filedatetext=2012-12-17 23:59:15
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\tapetvobjdel.download.akamai.com\embedV2-15070.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=85ED10AC686867695E34E7D4C0D703F0
Properties.filedate=1365016584
Properties.filedatetext=2013-04-03 21:16:23
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\bilder.rtl.de\flash\david09_player_2012.swf\ConnectionInfo.sol
Properties.size=137
Properties.md5=E839533D11A5A878A9B13A34F90B2471
Properties.filedate=1361550830
Properties.filedatetext=2013-02-22 18:33:49
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\bilder.rtl.de\flash\david09_player_2012.swf\rtl.sol
Properties.size=35
Properties.md5=F240BC8ED3BD00819E900DB730F278F4
Properties.filedate=1361550698
Properties.filedatetext=2013-02-22 18:31:37
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\bilder.rtl.de\flash\david09_player_2012.swf\userinfo6.sol
Properties.size=51
Properties.md5=749FD41D1BD2ADAC308AEE826D3C8C95
Properties.filedate=1361551254
Properties.filedatetext=2013-02-22 18:40:53
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13326.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=31B9C776172D574E617E4DDC2271BD9B
Properties.filedate=1351542350
Properties.filedatetext=2012-10-29 22:25:50
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13326.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=5911930D882089BFF754DD35F4DA77E5
Properties.filedate=1351543028
Properties.filedatetext=2012-10-29 22:37:08
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13348.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=7DD2653618C4DC75C7223C3E33E41BA9
Properties.filedate=1351977641
Properties.filedatetext=2012-11-03 23:20:41
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13348.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=14C7C4B897250AE24BA1B4A2F4D9C61C
Properties.filedate=1351977790
Properties.filedatetext=2012-11-03 23:23:10
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13392.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=55019E7230A2BE97DC41324FFBA75110
Properties.filedate=1352843489
Properties.filedatetext=2012-11-13 23:51:29
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13392.swf\tapeTvSound.sol
Properties.size=56
Properties.md5=068492A33F5A3A728584580A7FAEA4FF
Properties.filedate=1352654282
Properties.filedatetext=2012-11-11 19:18:01
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13392.swf\tapeTvStats.sol
Properties.size=95
Properties.md5=272608DA2887C6213B995F856B96289C
Properties.filedate=1352846918
Properties.filedatetext=2012-11-14 00:48:38
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13548.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=CCE3D0636D5159D5F9AC0C384554BBA1
Properties.filedate=1354483670
Properties.filedatetext=2012-12-02 23:27:49
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13548.swf\tapeTvSound.sol
Properties.size=56
Properties.md5=068492A33F5A3A728584580A7FAEA4FF
Properties.filedate=1353255518
Properties.filedatetext=2012-11-18 18:18:38
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13548.swf\tapeTvStats.sol
Properties.size=95
Properties.md5=536C01A810B1CF7709DBFE182FDA9499
Properties.filedate=1354486398
Properties.filedatetext=2012-12-03 00:13:17
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13862.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=E813481DFB08D92565207ED7B85F38B4
Properties.filedate=1355339142
Properties.filedatetext=2012-12-12 21:05:42
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13862.swf\tapeTvSound.sol
Properties.size=56
Properties.md5=05D57D74A166B1CD2206270653125BB5
Properties.filedate=1355330259
Properties.filedatetext=2012-12-12 18:37:39
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13862.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=76E2F841FA13434D2A06E636FA2B021E
Properties.filedate=1355340621
Properties.filedatetext=2012-12-12 21:30:21
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14030.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=803806DBDD298B29019938A5F95F26B1
Properties.filedate=1356362811
Properties.filedatetext=2012-12-24 17:26:50
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14030.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=06547B11CA2BC24248778B36359DCA5C
Properties.filedate=1356364801
Properties.filedatetext=2012-12-24 18:00:00
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14174.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=D7A49D8CF45B5894692E1A91251BAD70
Properties.filedate=1360191969
Properties.filedatetext=2013-02-07 01:06:08
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14174.swf\tapeTvStats.sol
Properties.size=95
Properties.md5=8C19D9E3ED5B98C536FF2E1C920C458A
Properties.filedate=1360192550
Properties.filedatetext=2013-02-07 01:15:50
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14525.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=4BA6827C0B6C2EA71ADEB4951E96F8BA
Properties.filedate=1361354727
Properties.filedatetext=2013-02-20 12:05:27
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14525.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=85ED10AC686867695E34E7D4C0D703F0
Properties.filedate=1361354734
Properties.filedatetext=2013-02-20 12:05:34
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14778.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=4EF375024F37656EA86624624E21891C
Properties.filedate=1362842868
Properties.filedatetext=2013-03-09 17:27:47
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14778.swf\tapeTvStats.sol
Properties.size=95
Properties.md5=9603BB668181441475758F93A24165C9
Properties.filedate=1362847007
Properties.filedatetext=2013-03-09 18:36:46
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14800.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=3D4828CD61C913FE47E133C6853021B2
Properties.filedate=1363268235
Properties.filedatetext=2013-03-14 15:37:15
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14800.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=4FF8809F38BDA8C31E3396742EEF648E
Properties.filedate=1363271335
Properties.filedatetext=2013-03-14 16:28:55
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14886.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=E3F897CA7BC2A7ACB18B67104A61B30B
Properties.filedate=1364245884
Properties.filedatetext=2013-03-25 23:11:24
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14886.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=9B52D8D88A7384C8E81927E64A48D4B0
Properties.filedate=1364250412
Properties.filedatetext=2013-03-26 00:26:52
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15011.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=48B6497B0E6385F4215C12E79AC1F09D
Properties.filedate=1364332253
Properties.filedatetext=2013-03-26 23:10:53
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15011.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=8E15AEAC0939B5733916283167A6C332
Properties.filedate=1364336143
Properties.filedatetext=2013-03-27 00:15:43
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15070.swf\tapeAdblockerCheckC.sol
Properties.size=68
Properties.md5=81863C51989BCBBDAF983D70B274FFE8
Properties.filedate=1366230375
Properties.filedatetext=2013-04-17 22:26:15
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15070.swf\tapeTvStats.sol
Properties.size=94
Properties.md5=92B4B8144E7731CFB6CD4F325D7FA534
Properties.filedate=1366230383
Properties.filedatetext=2013-04-17 22:26:23
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\pixlr-o-matic-border.sol
Properties.size=2085
Properties.md5=F5B2F0399D8C3BE9D438973D5C91B8E4
Properties.filedate=1366131244
Properties.filedatetext=2013-04-16 18:54:04
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\pixlr-o-matic-effect.sol
Properties.size=1330
Properties.md5=5EFCC0CEB241AB115FB16AF6CC2EF3D3
Properties.filedate=1366130502
Properties.filedatetext=2013-04-16 18:41:41
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\pixlr-o-matic-overlay.sol
Properties.size=5021
Properties.md5=274778E3B09140AAD8AB3F0DE043605E
Properties.filedate=1366130928
Properties.filedatetext=2013-04-16 18:48:47
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\pixlr-o-matic-starred.sol
Properties.size=125
Properties.md5=53B18586BA3BC6EC9915A3A691BEB441
Properties.filedate=1366308393
Properties.filedatetext=2013-04-18 20:06:33
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\heias.com\x\heias_sc.swf\heias.sol
Properties.size=62
Properties.md5=5043482F28AB0C0C399D88A65B3BC7D1
Properties.filedate=1357580400
Properties.filedatetext=2013-01-07 19:40:00
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\pimpplayer.mtvnn.com\viva\pimp_viva.swf\MTV-PIEMP.sol
Properties.size=44
Properties.md5=A07D3EE8F206A825938695EA28BCDEF6
Properties.filedate=1362846455
Properties.filedatetext=2013-03-09 18:27:35
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.54.swf\G2PlayerLSO.sol
Properties.size=131
Properties.md5=9C240E2F4508F0152981C7A9EB993890
Properties.filedate=1353538141
Properties.filedatetext=2012-11-22 00:49:00
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.57.swf\G2PlayerLSO.sol
Properties.size=131
Properties.md5=3BD9301C8EA99314A0D81AAB3E1D439E
Properties.filedate=1356547300
Properties.filedatetext=2012-12-26 20:41:40
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.60.swf\G2PlayerLSO.sol
Properties.size=131
Properties.md5=3A85F809D723157D98E66CF958A6C34C
Properties.filedate=1358461455
Properties.filedatetext=2013-01-18 00:24:14
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.61.swf\G2PlayerLSO.sol
Properties.size=131
Properties.md5=D0365EE426E5CDBDB59913ABE96AC76F
Properties.filedate=1358801994
Properties.filedatetext=2013-01-21 22:59:54
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.64.1.swf\G2PlayerLSO.sol
Properties.size=131
Properties.md5=EAE5D5B9BC9B6C606B707E4E91F16CFC
Properties.filedate=1360700894
Properties.filedatetext=2013-02-12 22:28:14
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.64.3.swf\G2PlayerLSO.sol
Properties.size=131
Properties.md5=E9E1BA9FF2F251D1A83B2CAA747BF7F4
Properties.filedate=1365453000
Properties.filedatetext=2013-04-08 22:29:59
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.64.swf\G2PlayerLSO.sol
Properties.size=131
Properties.md5=A01E9785BAFD95CEF45999A63444BEE9
Properties.filedate=1360191888
Properties.filedatetext=2013-02-07 01:04:47
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\ConnectionInfo.sol
Properties.size=140
Properties.md5=EDE57D540071F010923B58C701B575BA
Properties.filedate=1361352496
Properties.filedatetext=2013-02-20 11:28:15
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\rtl.sol
Properties.size=35
Properties.md5=F240BC8ED3BD00819E900DB730F278F4
Properties.filedate=1360186115
Properties.filedatetext=2013-02-06 23:28:35
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\rtlbw.sol
Properties.size=38
Properties.md5=B5DFC13AB0F74077B033F05000F7CAC7
Properties.filedate=1360189097
Properties.filedatetext=2013-02-07 00:18:16
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\userinfo6.sol
Properties.size=50
Properties.md5=D22F4D8F2D70722C49A0B8D4106DCF0D
Properties.filedate=1360189097
Properties.filedatetext=2013-02-07 00:18:16
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl2now.rtl2.de\includes\vodplayer.swf\ConnectionInfo.sol
Properties.size=140
Properties.md5=5179AD8D4D261CEBB7C66FE9DAFF0A39
Properties.filedate=1353536946
Properties.filedatetext=2012-11-22 00:29:05
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl2now.rtl2.de\includes\vodplayer.swf\rtl.sol
Properties.size=35
Properties.md5=F240BC8ED3BD00819E900DB730F278F4
Properties.filedate=1353536902
Properties.filedatetext=2012-11-22 00:28:21
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl2now.rtl2.de\includes\vodplayer.swf\userinfo6.sol
Properties.size=50
Properties.md5=CC0BBB871E3E8FD968EC38DA507DFEAD
Properties.filedate=1353537122
Properties.filedatetext=2012-11-22 00:32:02
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\sensic.net\jsf\vis_lso.swf\vis_lso.sol
Properties.size=155
Properties.md5=36DC2B23F8716329B25B7B1DAA373619
Properties.filedate=1363260709
Properties.filedatetext=2013-03-14 13:31:49
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.5gum.com\global\index.swf\intro.sol
Properties.size=45
Properties.md5=874652CF40C2646A3105270533192E03
Properties.filedate=1364326499
Properties.filedatetext=2013-03-26 21:34:58
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.mtv.de\player\g2player_2.1.2.swf\G2PlayerLSO.sol
Properties.size=117
Properties.md5=057CFE4A7075949F5FD70B93ED4F2959
Properties.filedate=1366230869
Properties.filedatetext=2013-04-17 22:34:29
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www6.zippyshare.com\swf\player_local.swf\zippyshareplayer.sol
Properties.size=70
Properties.md5=8E42349B2D986CF1C63470803DE9CA3F
Properties.filedate=1354975769
Properties.filedatetext=2012-12-08 16:09:28
Macromedia.FlashPlayer.Cookies: [SBI $5555F3D7] Text file (File, nothing done)
C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www8.zippyshare.com\swf\player_local.swf\zippyshareplayer.sol
Properties.size=71
Properties.md5=9101727D8A31FDD05C56BB0C89794235
Properties.filedate=1359994855
Properties.filedatetext=2013-02-04 18:20:55
DoubleClick: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
Tradedoubler: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
FastClick: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
Right Media: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
Adviva: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Internet Explorer (Benutzer): ACER 5253) (Browser: Cookie, nothing done)
Tradedoubler: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
Tradedoubler: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
DoubleClick: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
Tradedoubler: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
Tradedoubler: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
Statcounter: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
MediaPlex: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
CasaleMedia: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
CasaleMedia: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
CasaleMedia: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
CasaleMedia: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
CasaleMedia: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
CasaleMedia: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
DoubleClick: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
WebTrends live: [SBI $8E73A7FB] Tracking cookie (Firefox: ACER 5253 (default)) (Browser: Cookie, nothing done)
Log: [SBI $8E73A7FB] Install: Directx.log (File, nothing done)
C:\Windows\Directx.log
Properties.size=10270
Properties.md5=034D4738D2A1BAC595E231C5E7830D0F
Properties.filedate=1336304325
Properties.filedatetext=2012-05-06 13:38:44
Log: [SBI $8E73A7FB] Install: setupact.log (File, nothing done)
C:\Windows\setupact.log
Properties.size=58733
Properties.md5=B541FCBC88C4D4E61741C46F64E04786
Properties.filedate=1366736827
Properties.filedatetext=2013-04-23 19:07:06
Adobe Acrobat Reader 4: [SBI $58E23D78] Recent file #1 (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Adobe\Acrobat Reader\4.0\AdobeViewer\avpRecentFile1
Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Internet Explorer\TypedURLs
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
MS Management Console: [SBI $ECD50EAD] Recent command list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Microsoft Management Console\Recent File List
MS Media Player: [SBI $5C51E349] Client ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\MediaPlayer\Player\Settings\Client ID
MS Direct3D: [SBI $7FB7B83F] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication\Name
MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Direct3D\MostRecentApplication\Name
MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Direct3D\MostRecentApplication\Name
MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Direct3D\MostRecentApplication\Name
MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\DirectInput\MostRecentApplication\Name
MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\DirectInput\MostRecentApplication\Id
MS Paint: [SBI $07867C39] Recent file list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List
MS Wordpad: [SBI $4C02334D] Recent file list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Recent File List
Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources
Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources
Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
Windows.OpenWith: [SBI $A1C94E79] Open with list - .BMP extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BMP\OpenWithList
Windows Explorer: [SBI $7308A845] Run history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU
Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
Cookie: [SBI $49804B54] Browser: Cookie (200) (Browser: Cookie, nothing done)
Cache: [SBI $49804B54] Browser: Cache (541) (Browser: Cache, nothing done)
Verlauf: [SBI $49804B54] Browser: History (162) (Browser: History, nothing done)
Cookie: [SBI $49804B54] Browser: Cookie (2920) (Browser: Cookie, nothing done)
--- Spybot - Search & Destroy version: 2.0.12.131 DLL (build: 20121113) ---
2012-11-13 blindman.exe (2.0.12.151)
2012-11-13 explorer.exe (2.0.12.173)
2012-11-13 SDBootCD.exe (2.0.12.109)
2012-11-13 SDCleaner.exe (2.0.12.110)
2012-11-13 SDDelFile.exe (2.0.12.94)
2012-11-13 SDFiles.exe (2.0.12.135)
2012-11-13 SDFileScanHelper.exe (2.0.12.1)
2012-11-13 SDFSSvc.exe (2.0.12.205)
2012-11-13 SDImmunize.exe (2.0.12.130)
2012-11-13 SDLogReport.exe (2.0.12.107)
2012-11-13 SDPESetup.exe (2.0.12.3)
2012-11-13 SDPEStart.exe (2.0.12.86)
2012-11-13 SDPhoneScan.exe (2.0.12.27)
2012-11-13 SDPRE.exe (2.0.12.13)
2012-11-13 SDPrepPos.exe (2.0.12.10)
2012-11-13 SDQuarantine.exe (2.0.12.103)
2012-11-13 SDRootAlyzer.exe (2.0.12.116)
2012-11-13 SDSBIEdit.exe (2.0.12.39)
2012-11-13 SDScan.exe (2.0.12.173)
2012-11-13 SDScript.exe (2.0.12.53)
2012-11-13 SDSettings.exe (2.0.12.130)
2012-11-13 SDShred.exe (2.0.12.105)
2012-11-13 SDSysRepair.exe (2.0.12.101)
2012-11-13 SDTools.exe (2.0.12.150)
2012-11-13 SDTray.exe (2.0.12.127)
2012-11-13 SDUpdate.exe (2.0.12.89)
2012-11-13 SDUpdSvc.exe (2.0.12.76)
2012-11-13 SDWelcome.exe (2.0.12.126)
2012-11-13 SDWSCSvc.exe (2.0.12.2)
2013-04-23 unins000.exe (51.1052.0.0)
1999-12-02 xcacls.exe
2012-08-23 borlndmm.dll (10.0.2288.42451)
2012-09-05 DelZip190.dll (1.9.0.107)
2012-09-10 libeay32.dll (1.0.0.4)
2012-09-10 libssl32.dll (1.0.0.4)
2012-11-13 SDAdvancedCheckLibrary.dll (2.0.12.98)
2012-11-13 SDECon32.dll (2.0.12.113)
2012-11-13 SDECon64.dll (2.0.12.113)
2012-11-13 SDEvents.dll (2.0.12.2)
2012-11-13 SDFileScanLibrary.dll (2.0.12.9)
2012-11-13 SDHelper.dll (2.0.12.88)
2012-11-13 SDImmunizeLibrary.dll (2.0.12.2)
2012-11-13 SDLists.dll (2.0.12.4)
2012-11-13 SDResources.dll (2.0.12.7)
2012-11-13 SDScanLibrary.dll (2.0.12.131)
2012-11-13 SDTasks.dll (2.0.12.15)
2012-11-13 SDWinLogon.dll (2.0.12.0)
2012-08-23 sqlite3.dll
2012-09-10 ssleay32.dll (1.0.0.4)
2012-11-13 Tools.dll (2.0.12.36)
2012-11-13 UninsSrv.dll (2.0.12.52)
2012-11-14 Includes\Adware.sbi (*)
2012-11-14 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2012-11-14 Includes\Dialer.sbi (*)
2012-11-14 Includes\DialerC.sbi (*)
2012-11-14 Includes\HeavyDuty.sbi (*)
2012-11-14 Includes\Hijackers.sbi (*)
2012-11-14 Includes\HijackersC.sbi (*)
2012-11-14 Includes\iPhone.sbi (*)
2012-11-14 Includes\Keyloggers.sbi (*)
2012-11-14 Includes\KeyloggersC.sbi (*)
2012-11-14 Includes\Malware.sbi (*)
2012-11-14 Includes\MalwareC.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2012-11-14 Includes\PUPSC.sbi (*)
2012-11-14 Includes\Security.sbi (*)
2012-11-14 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2012-11-14 Includes\Spyware.sbi (*)
2012-11-14 Includes\SpywareC.sbi (*)
2011-06-07 Includes\Tracks.sbi (*)
2005-02-17 Includes\Tracks.uti (*)
2012-11-14 Includes\Trojans.sbi (*)
2012-11-14 Includes\TrojansC-02.sbi (*)
2012-11-14 Includes\TrojansC-03.sbi (*)
2012-11-14 Includes\TrojansC-04.sbi (*)
2012-11-14 Includes\TrojansC-05.sbi (*)
2012-11-14 Includes\TrojansC.sbi (*)
Siehe hier. Code:
ATTFilter [i] 2013-04-23 20:40:02 :
[i] 2013-04-23 20:40:02 Processing: 130423-192029.xml
[i] 2013-04-23 20:40:02 :
[i] 2013-04-23 20:40:02 Product: W3i.IQ5.fraud
[+] 2013-04-23 20:40:02 Moving into quarantine: C:\Program Files (x86)\Free Offers from Freeze.com\
[+] 2013-04-23 20:40:02 Moving into quarantine: C:\Program Files (x86)\Free Offers from Freeze.com\ 16700.url
[+] 2013-04-23 20:40:02 Moving into quarantine: C:\Program Files (x86)\Free Offers from Freeze.com\ 16714.url
[+] 2013-04-23 20:40:02 Moving into quarantine: C:\Program Files (x86)\Free Offers from Freeze.com\ control.txt
[+] 2013-04-23 20:40:02 Moving into quarantine: C:\Program Files (x86)\Free Offers from Freeze.com\ dolphinico.ico
[+] 2013-04-23 20:40:02 Moving into quarantine: C:\Program Files (x86)\Free Offers from Freeze.com\ whalesico.ico
[+] 2013-04-23 20:40:02 Successfully cleaned: C:\Program Files (x86)\Free Offers from Freeze.com\
[+] 2013-04-23 20:40:03 Successfully cleaned: C:\Program Files (x86)\Free Offers from Freeze.com\ 16700.url
[+] 2013-04-23 20:40:03 Successfully cleaned: C:\Program Files (x86)\Free Offers from Freeze.com\ 16714.url
[+] 2013-04-23 20:40:03 Successfully cleaned: C:\Program Files (x86)\Free Offers from Freeze.com\ control.txt
[+] 2013-04-23 20:40:03 Successfully cleaned: C:\Program Files (x86)\Free Offers from Freeze.com\ dolphinico.ico
[+] 2013-04-23 20:40:03 Successfully cleaned: C:\Program Files (x86)\Free Offers from Freeze.com\ whalesico.ico
[i] 2013-04-23 20:40:03 :
[i] 2013-04-23 20:40:03 Product: MyFreezeToolbar
[+] 2013-04-23 20:40:03 Moving into quarantine: C:\Program Files (x86)\Free Offers from Freeze.com\ wfallsaw.ico
[+] 2013-04-23 20:40:04 Successfully cleaned: C:\Program Files (x86)\Free Offers from Freeze.com\ wfallsaw.ico
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Facebook.Messenger
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Local\Facebook\
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Local\Facebook\CrashReports\
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: SweetIM
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\SweetIM\ simapp_id
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_LOCAL_MACHINE\SOFTWARE\SweetIM\ simapp_id
[+] 2013-04-23 20:40:04 Moving into quarantine: C:\Program Files (x86)\SweetIM\
[+] 2013-04-23 20:40:04 Moving into quarantine: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\SweetIM\ simapp_id
[+] 2013-04-23 20:40:04 Moving into quarantine: HKEY_LOCAL_MACHINE\SOFTWARE\SweetIM\ simapp_id
[+] 2013-04-23 20:40:04 Successfully cleaned: C:\Program Files (x86)\SweetIM\
[+] 2013-04-23 20:40:04 Successfully cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\SweetIM\ simapp_id
[+] 2013-04-23 20:40:04 Successfully cleaned: HKEY_LOCAL_MACHINE\SOFTWARE\SweetIM\ simapp_id
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Macromedia.FlashPlayer.Cookies
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a.vimeocdn.com\ com.conviva.livePass.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\ analytics.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cache.spreadshirt.net\ sprd_c7_591998.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\ analytics.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\ OVPMetricsProvider.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\chatroulette.com\ 16chatroulette.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\core.mochibot.com\ com.mochibot.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cyt.internetkarneval.de\ IKarneval.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\de-freshmilk.cdn.videoplaza.tv\ com.videoplaza.adplayer.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\de-freshmilk.cdn.videoplaza.tv\ com.videoplaza.bootloader.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\effectivemeasure.net\ EM_APP.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\embed.yesload.net\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\fr-himedia.cdn.videoplaza.tv\ com.videoplaza.adplayer.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\fr-himedia.cdn.videoplaza.tv\ com.videoplaza.bootloader.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\images-na.ssl-images-amazon.com\ mercury.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\images.buttinette.com\ s7_storage_tracker.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\ AdModel.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\ CountryCode.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\ PlaylistModel.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\img.widgets.video.s-msn.com\ reportingSegment.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is1.myvideo.de\ com.conviva.livePass.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is2.myvideo.de\ com.conviva.livePass.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is3.myvideo.de\ com.conviva.livePass.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is4.myvideo.de\ com.conviva.livePass.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\is5.myvideo.de\ com.conviva.livePass.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\ com.mtvnservices.media.as3player.model.user.SavedPreferencesVO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\ MetadataHistory.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\ OVPMetricsProvider.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\ playerCounter.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\media.mtvnservices.com\ userPrefs4.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\ com.mochiads.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\ mochiLCStatus.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\ services.mochiads.com.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\ __coinsEventLC__.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\ __ms_1364242794695_41382.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochiads.com\ __ms_1364242794695_41382_fromgame.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\mochibot.com\ com.mochibot.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\play.flashx.tv\ analytics.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\play.flashx.tv\ com.nuevoplayer.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\ AdobeDynamicStream.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\ analytics.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\s.ytimg.com\ soundData.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\s.ytimg.com\ videostats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\secureinclude.ebaystatic.com\ ebayLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\secureinclude.ebaystatic.com\ ebayT.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\server22.stream2k.com\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\server39.stream2k.com\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\ssl.hurra.com\ restore.hurra.com.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static.novelgames.com\ gameOptions.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static1.dmcdn.net\ com.dm.player.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\streamcloud.eu\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\tubecloud.net\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\village-spil.s3.amazonaws.com\ de-DE_netlog_spielen.com9e269fc698d3f2c6ab40ed91a1f3fc8350bb61acb5b8d_lastScene_New_30000.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\village-spil.s3.amazonaws.com\ de-DE_netlog_spielen.com9e269fc698d3f2c6ab40ed91a1f3fc8350bb61acb5b8d_zoomlevel_key.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\village-spil.s3.amazonaws.com\ TestFile.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\weltbild.scene7.com\ s7_storage_init.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\weltbild.scene7.com\ s7_storage_tracker.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.dailymotion.com\ com.dm.player.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.ecostream.tv\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.fritz.de\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.helpster.de\ analytics.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.mtv.de\ AdobeDynamicStream.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.mtv.de\ analytics.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\ analytics.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\ GovernorOfPoker.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\ SpilGames_null_UserData.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.oyun66.com\ zlong_games_my_romantic_town.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.paypal-deutschland.de\ ppLsoTest.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.paypalobjects.com\ paypalLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.paypalobjects.com\ ppLsoTest.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.rtl2.de\ vipoPlayerCookie.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www6.zippyshare.com\ zippyShare.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www8.zippyshare.com\ zippyShare.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\yesload.net\ com.jeroenwijering.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\images.putlocker.com\video_player.swf\ org.flowplayer.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\maps-4-u.com\lso.swf\ e.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\server08.de\woobies.swf\ steganos2.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\skype.com\#ui\ preferences.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static.putlocker.com\video_player.swf\ org.flowplayer.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\static.sockshare.com\video_player.swf\ org.flowplayer.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.bbc.co.uk\emp\ uuid.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a.affil.io\s\af.swf\ afstorage.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\tapetvobjdel.download.akamai.com\embedV2-13548.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\tapetvobjdel.download.akamai.com\embedV2-13862.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\a248.e.akamai.net\tapetvobjdel.download.akamai.com\embedV2-15070.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\bilder.rtl.de\flash\david09_player_2012.swf\ ConnectionInfo.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\bilder.rtl.de\flash\david09_player_2012.swf\ rtl.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\bilder.rtl.de\flash\david09_player_2012.swf\ userinfo6.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13326.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13326.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13348.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13348.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13392.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13392.swf\ tapeTvSound.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13392.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13548.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13548.swf\ tapeTvSound.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13548.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13862.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13862.swf\ tapeTvSound.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-13862.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14030.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14030.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14174.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14174.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14525.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14525.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14778.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14778.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14800.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14800.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14886.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-14886.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15011.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15011.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15070.swf\ tapeAdblockerCheckC.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cachinga.tape.tv\static\main-15070.swf\ tapeTvStats.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\ pixlr-o-matic-border.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\ pixlr-o-matic-effect.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\ pixlr-o-matic-overlay.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\cdn.pixlr.com\o-matic\o-matic.swf\ pixlr-o-matic-starred.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\heias.com\x\heias_sc.swf\ heias.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\pimpplayer.mtvnn.com\viva\pimp_viva.swf\ MTV-PIEMP.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.54.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.57.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.60.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.61.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.64.1.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.64.3.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\player.mtvnn.com\g2\g2player_2.0.64.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\ ConnectionInfo.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\ rtl.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\ rtlbw.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl-now.rtl.de\includes\vodplayer.swf\ userinfo6.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl2now.rtl2.de\includes\vodplayer.swf\ ConnectionInfo.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl2now.rtl2.de\includes\vodplayer.swf\ rtl.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\rtl2now.rtl2.de\includes\vodplayer.swf\ userinfo6.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\sensic.net\jsf\vis_lso.swf\ vis_lso.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.5gum.com\global\index.swf\ intro.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www.mtv.de\player\g2player_2.1.2.swf\ G2PlayerLSO.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www6.zippyshare.com\swf\player_local.swf\ zippyshareplayer.sol
[i] 2013-04-23 20:40:04 Already cleaned: C:\Users\ACER 5253\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\JMAF9E6D\www8.zippyshare.com\swf\player_local.swf\ zippyshareplayer.sol
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: DoubleClick
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@doubleclick.net/ ()
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .doubleclick.net/ (id)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .doubleclick.net/ (_drt_)
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Tradedoubler
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@tradedoubler.com/ ()
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .tradedoubler.com/ (TradeDoublerGUID)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .tradedoubler.com/ (TD_EH_0)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .tradedoubler.com/ (BT)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .tradedoubler.com/ (TD_UNIQUE_IMP)
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MediaPlex
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@apmebf.com/ ()
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@www.emjcd.com/ ()
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@emjcd.com/ ()
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@mediaplex.com/ ()
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .apmebf.com/ (S)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .mediaplex.com/ (svid)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .mediaplex.com/ (mojo2)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .emjcd.com/ (S)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .apmebf.com/ (LCLK)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .emjcd.com/ (LCLK)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .emjcd.com/ (PBLP)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .apmebf.com/ (TT)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .mediaplex.com/ (mojo3)
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: FastClick
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@fastclick.net/ ()
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Right Media
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@ad.yieldmanager.com/ ()
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Adviva
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Internet Explorer (Benutzer): ACER 5253) Cookie:acer 5253@adviva.net/ ()
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Statcounter
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .statcounter.com/ (is_unique)
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: CasaleMedia
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .casalemedia.com/ (CMID)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .casalemedia.com/ (CMPS)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .casalemedia.com/ (CMPP)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .casalemedia.com/ (CMRUM2)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .casalemedia.com/ (CMST)
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) .casalemedia.com/ (CMDD)
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: WebTrends live
[i] 2013-04-23 20:40:04 Already cleaned: Cookie (Firefox: ACER 5253 (default)) statse.webtrendslive.com/ (ACOOKIE)
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Log
[i] 2013-04-23 20:40:04 Already cleaned: C:\Windows\ Directx.log
[i] 2013-04-23 20:40:04 Already cleaned: C:\Windows\ setupact.log
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Adobe Acrobat Reader 4
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Adobe\Acrobat Reader\4.0\AdobeViewer\ avpRecentFile1
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Internet Explorer
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Internet Explorer\TypedURLs
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ User Agent
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ User Agent
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ User Agent
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MS Management Console
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Microsoft Management Console\Recent File List
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MS Media Player
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\MediaPlayer\Player\Settings\ Client ID
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MS Direct3D
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication\ Name
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\.DEFAULT\Software\Microsoft\Direct3D\MostRecentApplication\ Name
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Direct3D\MostRecentApplication\ Name
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-18\Software\Microsoft\Direct3D\MostRecentApplication\ Name
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MS DirectDraw
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\ Name
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MS DirectInput
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\DirectInput\MostRecentApplication\ Name
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\DirectInput\MostRecentApplication\ Id
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MS Paint
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: MS Wordpad
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Recent File List
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Windows
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ Installation Sources
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ Installation Sources
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Windows.OpenWith
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BMP\OpenWithList
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Windows Explorer
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Windows Media SDK
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows Media\WMSDK\General\ ComputerName
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows Media\WMSDK\General\ UniqueID
[i] 2013-04-23 20:40:04 Already cleaned: HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows Media\WMSDK\General\ VolumeSerialNumber
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Cookie
[i] 2013-04-23 20:40:04 Already cleaned: Internet Explorer (Benutzer) (ACER 5253) Cookies
[i] 2013-04-23 20:40:04 Already cleaned: Firefox (ACER 5253 (default)) Cookies
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Cache
[i] 2013-04-23 20:40:04 Already cleaned: Internet Explorer (Benutzer) (ACER 5253) Cache
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Product: Verlauf
[i] 2013-04-23 20:40:04 Already cleaned: Internet Explorer (Benutzer) (ACER 5253) History
[i] 2013-04-23 20:40:04 :
[i] 2013-04-23 20:40:04 Summary:
[i] 2013-04-23 20:40:04 Errors while cleaning: 0
[i] 2013-04-23 20:40:04 Files moved into quarantine: 10
[i] 2013-04-23 20:40:04 Files successfully cleaned: 219
[+] 2013-04-23 20:40:08 : Gratulation, alles (aus Datei 130423-192029.xml) wurde gelöscht.
Von Malwarebytes Anti Malware habe ich noch einen älteren Log. Aber der fand eh nichts. Code:
ATTFilter Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.02.25.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 ACER 5253 :: ACER5253-PC [Administrator] 25.02.2013 18:50:07 mbam-log-2013-02-25 (18-50-07).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 413951 Laufzeit: 3 Stunde(n), 28 Minute(n), 9 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Das wars dann auch.. |
|
24.04.2013, 15:49
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | CouponDropDown kommt immer wieder Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Bitte die drei Tools MBAR / aswMBR / TDSSkiller nun ausführen und die Logs in CODE-Tags posten MBAR (Malwarebytes Anti-Rootkit) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers aswMBR Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ Logfiles bitte immer in CODE-Tags posten |
|
24.04.2013, 16:51
| #5 |
| | CouponDropDown kommt immer wieder So. Hier die Logs Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.05.0.1001
www.malwarebytes.org
Database version: v2013.04.23.07
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16540
ACER 5253 :: ACER5253-PC [administrator]
24.04.2013 17:13:23
mbar-log-2013-04-24 (17-13-23).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 29958
Time elapsed: 19 minute(s), 41 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-04-24 17:18:23
-----------------------------
17:18:23.691 OS Version: Windows x64 6.1.7601 Service Pack 1
17:18:23.691 Number of processors: 2 586 0x100
17:18:23.691 ComputerName: ACER5253-PC UserName: ACER 5253
17:18:26.561 Initialize success
17:20:55.723 AVAST engine defs: 13042400
17:21:13.837 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
17:21:13.846 Disk 0 Vendor: WDC_WD3200BPVT-22ZEST0 01.01A01 Size: 305245MB BusType: 11
17:21:14.055 Disk 0 MBR read successfully
17:21:14.065 Disk 0 MBR scan
17:21:14.175 Disk 0 Windows 7 default MBR code
17:21:14.182 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15360 MB offset 2048
17:21:14.221 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 31459328
17:21:14.279 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 289783 MB offset 31664128
17:21:14.336 Disk 0 scanning C:\Windows\system32\drivers
17:21:32.035 Service scanning
17:22:07.467 Modules scanning
17:22:07.492 Disk 0 trace - called modules:
17:22:07.542 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
17:22:07.553 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80030a6060]
17:22:07.564 3 CLASSPNP.SYS[fffff880018a443f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002bc6060]
17:22:09.887 AVAST engine scan C:\Windows
17:22:14.083 AVAST engine scan C:\Windows\system32
17:28:51.981 AVAST engine scan C:\Windows\system32\drivers
17:29:14.010 AVAST engine scan C:\Users\ACER 5253
17:42:50.618 AVAST engine scan C:\ProgramData
17:44:06.869 Scan finished successfully
17:45:07.681 Disk 0 MBR has been saved successfully to "C:\Users\ACER 5253\Desktop\lalilu\MBR.dat"
17:45:07.692 The log file has been saved successfully to "C:\Users\ACER 5253\Desktop\lalilu\aswMBR.txt"
Code:
ATTFilter 17:45:47.0077 3332 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:45:47.0503 3332 ============================================================
17:45:47.0503 3332 Current date / time: 2013/04/24 17:45:47.0503
17:45:47.0503 3332 SystemInfo:
17:45:47.0503 3332
17:45:47.0503 3332 OS Version: 6.1.7601 ServicePack: 1.0
17:45:47.0503 3332 Product type: Workstation
17:45:47.0504 3332 ComputerName: ACER5253-PC
17:45:47.0504 3332 UserName: ACER 5253
17:45:47.0504 3332 Windows directory: C:\Windows
17:45:47.0504 3332 System windows directory: C:\Windows
17:45:47.0504 3332 Running under WOW64
17:45:47.0504 3332 Processor architecture: Intel x64
17:45:47.0505 3332 Number of processors: 2
17:45:47.0505 3332 Page size: 0x1000
17:45:47.0505 3332 Boot type: Normal boot
17:45:47.0505 3332 ============================================================
17:45:49.0051 3332 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:45:49.0059 3332 Drive \Device\Harddisk1\DR1 - Size: 0x1DD000000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:45:49.0390 3332 Drive \Device\Harddisk2\DR2 - Size: 0x1DC400000 (7.44 Gb), SectorSize: 0x200, Cylinders: 0x3CB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:45:49.0563 3332 ============================================================
17:45:49.0563 3332 \Device\Harddisk0\DR0:
17:45:49.0563 3332 MBR partitions:
17:45:49.0563 3332 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
17:45:49.0564 3332 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x235FB800
17:45:49.0564 3332 \Device\Harddisk1\DR1:
17:45:49.0565 3332 MBR partitions:
17:45:49.0565 3332 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0xEFE000
17:45:49.0565 3332 \Device\Harddisk2\DR2:
17:45:49.0567 3332 MBR partitions:
17:45:49.0567 3332 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0xEE0000
17:45:49.0567 3332 ============================================================
17:45:49.0597 3332 C: <-> \Device\Harddisk0\DR0\Partition2
17:45:49.0597 3332 ============================================================
17:45:49.0598 3332 Initialize success
17:45:49.0598 3332 ============================================================
17:46:45.0644 3316 ============================================================
17:46:45.0644 3316 Scan started
17:46:45.0644 3316 Mode: Manual; SigCheck; TDLFS;
17:46:45.0644 3316 ============================================================
17:46:46.0123 3316 ================ Scan system memory ========================
17:46:46.0123 3316 System memory - ok
17:46:46.0124 3316 ================ Scan services =============================
17:46:46.0317 3316 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:46:46.0749 3316 1394ohci - ok
17:46:46.0885 3316 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:46:46.0994 3316 ACDaemon - ok
17:46:47.0036 3316 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:46:47.0070 3316 ACPI - ok
17:46:47.0102 3316 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:46:47.0180 3316 AcpiPmi - ok
17:46:47.0237 3316 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:46:47.0276 3316 adp94xx - ok
17:46:47.0309 3316 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:46:47.0343 3316 adpahci - ok
17:46:47.0372 3316 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:46:47.0400 3316 adpu320 - ok
17:46:47.0437 3316 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:46:47.0651 3316 AeLookupSvc - ok
17:46:47.0799 3316 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\Windows\syswow64\drivers\Afc.sys
17:46:47.0821 3316 Afc - ok
17:46:47.0864 3316 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:46:47.0950 3316 AFD - ok
17:46:47.0970 3316 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:46:47.0994 3316 agp440 - ok
17:46:48.0004 3316 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:46:48.0082 3316 ALG - ok
17:46:48.0118 3316 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:46:48.0164 3316 aliide - ok
17:46:48.0251 3316 [ CF4D1EBE8FEC994A0DF69149ED27E417 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:46:48.0331 3316 AMD External Events Utility - ok
17:46:48.0383 3316 AMD FUEL Service - ok
17:46:48.0466 3316 [ DD27F6C3DE9BFE50635C721E09EDC5DD ] AMD Reservation Manager C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
17:46:48.0490 3316 AMD Reservation Manager - ok
17:46:48.0500 3316 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:46:48.0523 3316 amdide - ok
17:46:48.0536 3316 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
17:46:48.0557 3316 amdiox64 - ok
17:46:48.0592 3316 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:46:48.0648 3316 AmdK8 - ok
17:46:48.0868 3316 [ 375AC85E1130EAA1EAEB62DDD22B0EFB ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:46:49.0193 3316 amdkmdag - ok
17:46:49.0229 3316 [ DAEB3F2BB2095B95B98BE6CEC99D02E7 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:46:49.0283 3316 amdkmdap - ok
17:46:49.0311 3316 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:46:49.0351 3316 AmdPPM - ok
17:46:49.0391 3316 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:46:49.0419 3316 amdsata - ok
17:46:49.0450 3316 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:46:49.0478 3316 amdsbs - ok
17:46:49.0495 3316 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:46:49.0520 3316 amdxata - ok
17:46:49.0690 3316 [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:46:49.0748 3316 AntiVirSchedulerService - ok
17:46:49.0787 3316 [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:46:49.0809 3316 AntiVirService - ok
17:46:49.0846 3316 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:46:50.0042 3316 AppID - ok
17:46:50.0084 3316 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:46:50.0177 3316 AppIDSvc - ok
17:46:50.0205 3316 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:46:50.0294 3316 Appinfo - ok
17:46:50.0449 3316 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:46:50.0473 3316 Apple Mobile Device - ok
17:46:50.0523 3316 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:46:50.0548 3316 arc - ok
17:46:50.0567 3316 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:46:50.0593 3316 arcsas - ok
17:46:50.0615 3316 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:46:50.0689 3316 AsyncMac - ok
17:46:50.0724 3316 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:46:50.0746 3316 atapi - ok
17:46:50.0830 3316 [ E642491F64E58CD5BC8FB8B347DCF65F ] athr C:\Windows\system32\DRIVERS\athrx.sys
17:46:50.0957 3316 athr - ok
17:46:51.0030 3316 [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:46:51.0056 3316 AtiHDAudioService - ok
17:46:51.0123 3316 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:46:51.0222 3316 AudioEndpointBuilder - ok
17:46:51.0239 3316 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:46:51.0320 3316 AudioSrv - ok
17:46:51.0363 3316 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:46:51.0388 3316 avgntflt - ok
17:46:51.0428 3316 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:46:51.0454 3316 avipbb - ok
17:46:51.0479 3316 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:46:51.0503 3316 avkmgr - ok
17:46:51.0548 3316 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:46:51.0662 3316 AxInstSV - ok
17:46:51.0700 3316 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:46:51.0779 3316 b06bdrv - ok
17:46:51.0837 3316 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:46:51.0903 3316 b57nd60a - ok
17:46:51.0965 3316 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:46:52.0093 3316 BDESVC - ok
17:46:52.0114 3316 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:46:52.0226 3316 Beep - ok
17:46:52.0277 3316 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:46:52.0392 3316 BFE - ok
17:46:52.0447 3316 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:46:52.0583 3316 BITS - ok
17:46:52.0597 3316 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:46:52.0640 3316 blbdrive - ok
17:46:52.0713 3316 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:46:52.0746 3316 Bonjour Service - ok
17:46:52.0792 3316 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:46:52.0881 3316 bowser - ok
17:46:52.0903 3316 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:46:53.0025 3316 BrFiltLo - ok
17:46:53.0099 3316 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:46:53.0145 3316 BrFiltUp - ok
17:46:53.0178 3316 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:46:53.0234 3316 Browser - ok
17:46:53.0275 3316 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:46:53.0333 3316 Brserid - ok
17:46:53.0352 3316 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:46:53.0393 3316 BrSerWdm - ok
17:46:53.0414 3316 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:46:53.0480 3316 BrUsbMdm - ok
17:46:53.0497 3316 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:46:53.0523 3316 BrUsbSer - ok
17:46:53.0547 3316 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:46:53.0592 3316 BTHMODEM - ok
17:46:53.0622 3316 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:46:53.0705 3316 bthserv - ok
17:46:53.0730 3316 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:46:53.0805 3316 cdfs - ok
17:46:53.0847 3316 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:46:53.0875 3316 cdrom - ok
17:46:53.0924 3316 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:46:53.0995 3316 CertPropSvc - ok
17:46:54.0057 3316 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:46:54.0100 3316 circlass - ok
17:46:54.0133 3316 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:46:54.0167 3316 CLFS - ok
17:46:54.0254 3316 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:46:54.0277 3316 clr_optimization_v2.0.50727_32 - ok
17:46:54.0326 3316 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:46:54.0349 3316 clr_optimization_v2.0.50727_64 - ok
17:46:54.0426 3316 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:46:54.0450 3316 clr_optimization_v4.0.30319_32 - ok
17:46:54.0499 3316 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:46:54.0524 3316 clr_optimization_v4.0.30319_64 - ok
17:46:54.0547 3316 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:46:54.0589 3316 CmBatt - ok
17:46:54.0617 3316 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:46:54.0639 3316 cmdide - ok
17:46:54.0686 3316 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:46:54.0759 3316 CNG - ok
17:46:54.0873 3316 [ 9F005CED6A6A11AECC536FDAA17E7A04 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
17:46:54.0954 3316 CnxtHdAudService - ok
17:46:55.0003 3316 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:46:55.0026 3316 Compbatt - ok
17:46:55.0064 3316 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:46:55.0106 3316 CompositeBus - ok
17:46:55.0123 3316 COMSysApp - ok
17:46:55.0152 3316 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:46:55.0175 3316 crcdisk - ok
17:46:55.0229 3316 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:46:55.0335 3316 CryptSvc - ok
17:46:55.0364 3316 [ 9D0D050170D47E778B624A28C90F23DE ] CxAudMsg C:\Windows\system32\CxAudMsg64.exe
17:46:55.0390 3316 CxAudMsg - ok
17:46:55.0447 3316 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:46:55.0536 3316 DcomLaunch - ok
17:46:55.0578 3316 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:46:55.0672 3316 defragsvc - ok
17:46:55.0713 3316 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:46:55.0790 3316 DfsC - ok
17:46:55.0807 3316 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:46:55.0872 3316 Dhcp - ok
17:46:55.0882 3316 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:46:55.0969 3316 discache - ok
17:46:55.0994 3316 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:46:56.0021 3316 Disk - ok
17:46:56.0056 3316 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:46:56.0109 3316 Dnscache - ok
17:46:56.0146 3316 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:46:56.0221 3316 dot3svc - ok
17:46:56.0258 3316 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:46:56.0343 3316 DPS - ok
17:46:56.0375 3316 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:46:56.0415 3316 drmkaud - ok
17:46:56.0477 3316 [ 470F7F19188AB45463F8B612D6DDE7C8 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
17:46:56.0506 3316 DsiWMIService - ok
17:46:56.0565 3316 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:46:56.0639 3316 DXGKrnl - ok
17:46:56.0665 3316 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:46:56.0738 3316 EapHost - ok
17:46:56.0827 3316 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:46:57.0007 3316 ebdrv - ok
17:46:57.0040 3316 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:46:57.0113 3316 EFS - ok
17:46:57.0183 3316 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:46:57.0301 3316 ehRecvr - ok
17:46:57.0333 3316 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:46:57.0382 3316 ehSched - ok
17:46:57.0433 3316 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:46:57.0472 3316 elxstor - ok
17:46:57.0573 3316 [ 8E12D885D17EC5FA4F52D2C6E953E285 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
17:46:57.0635 3316 ePowerSvc - ok
17:46:57.0664 3316 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:46:57.0714 3316 ErrDev - ok
17:46:57.0778 3316 [ 9D8739A2A2173C9D27C499A3FC6EDA3F ] ETD C:\Windows\system32\DRIVERS\ETD.sys
17:46:57.0804 3316 ETD - ok
17:46:57.0859 3316 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:46:57.0950 3316 EventSystem - ok
17:46:57.0978 3316 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:46:58.0066 3316 exfat - ok
17:46:58.0093 3316 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:46:58.0180 3316 fastfat - ok
17:46:58.0244 3316 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:46:58.0535 3316 Fax - ok
17:46:58.0575 3316 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:46:58.0612 3316 fdc - ok
17:46:58.0633 3316 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:46:58.0702 3316 fdPHost - ok
17:46:58.0718 3316 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:46:58.0801 3316 FDResPub - ok
17:46:58.0810 3316 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:46:58.0839 3316 FileInfo - ok
17:46:58.0855 3316 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:46:58.0945 3316 Filetrace - ok
17:46:58.0999 3316 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:46:59.0044 3316 FLEXnet Licensing Service - ok
17:46:59.0070 3316 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:46:59.0109 3316 flpydisk - ok
17:46:59.0157 3316 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:46:59.0188 3316 FltMgr - ok
17:46:59.0262 3316 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
17:46:59.0374 3316 FontCache - ok
17:46:59.0432 3316 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:46:59.0470 3316 FontCache3.0.0.0 - ok
17:46:59.0483 3316 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:46:59.0507 3316 FsDepends - ok
17:46:59.0549 3316 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:46:59.0572 3316 Fs_Rec - ok
17:46:59.0633 3316 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:46:59.0671 3316 fvevol - ok
17:46:59.0717 3316 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:46:59.0741 3316 gagp30kx - ok
17:46:59.0791 3316 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:46:59.0810 3316 GEARAspiWDM - ok
17:46:59.0859 3316 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:46:59.0999 3316 gpsvc - ok
17:47:00.0068 3316 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
17:47:00.0088 3316 GREGService - ok
17:47:00.0116 3316 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:47:00.0178 3316 hcw85cir - ok
17:47:00.0211 3316 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:47:00.0251 3316 HdAudAddService - ok
17:47:00.0285 3316 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:47:00.0325 3316 HDAudBus - ok
17:47:00.0349 3316 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:47:00.0386 3316 HidBatt - ok
17:47:00.0422 3316 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:47:00.0455 3316 HidBth - ok
17:47:00.0473 3316 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:47:00.0504 3316 HidIr - ok
17:47:00.0550 3316 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:47:00.0630 3316 hidserv - ok
17:47:00.0674 3316 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:47:00.0700 3316 HidUsb - ok
17:47:00.0737 3316 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:47:00.0832 3316 hkmsvc - ok
17:47:00.0873 3316 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:47:00.0939 3316 HomeGroupListener - ok
17:47:00.0965 3316 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:47:01.0000 3316 HomeGroupProvider - ok
17:47:01.0040 3316 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:47:01.0065 3316 HpSAMD - ok
17:47:01.0117 3316 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:47:01.0218 3316 HTTP - ok
17:47:01.0246 3316 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:47:01.0269 3316 hwpolicy - ok
17:47:01.0320 3316 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:47:01.0363 3316 i8042prt - ok
17:47:01.0406 3316 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:47:01.0443 3316 iaStorV - ok
17:47:01.0519 3316 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:47:01.0588 3316 idsvc - ok
17:47:01.0698 3316 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:47:01.0766 3316 iirsp - ok
17:47:01.0805 3316 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:47:01.0908 3316 IKEEXT - ok
17:47:01.0938 3316 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:47:01.0965 3316 intelide - ok
17:47:02.0008 3316 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:47:02.0036 3316 intelppm - ok
17:47:02.0073 3316 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:47:02.0157 3316 IPBusEnum - ok
17:47:02.0188 3316 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:47:02.0279 3316 IpFilterDriver - ok
17:47:02.0330 3316 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:47:02.0415 3316 iphlpsvc - ok
17:47:02.0452 3316 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:47:02.0486 3316 IPMIDRV - ok
17:47:02.0513 3316 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:47:02.0585 3316 IPNAT - ok
17:47:02.0670 3316 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:47:02.0740 3316 iPod Service - ok
17:47:02.0774 3316 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:47:02.0847 3316 IRENUM - ok
17:47:02.0882 3316 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:47:02.0906 3316 isapnp - ok
17:47:02.0976 3316 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:47:03.0027 3316 iScsiPrt - ok
17:47:03.0064 3316 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:47:03.0089 3316 kbdclass - ok
17:47:03.0110 3316 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:47:03.0141 3316 kbdhid - ok
17:47:03.0173 3316 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:47:03.0188 3316 KeyIso - ok
17:47:03.0235 3316 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:47:03.0266 3316 KSecDD - ok
17:47:03.0297 3316 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:47:03.0313 3316 KSecPkg - ok
17:47:03.0344 3316 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:47:03.0407 3316 ksthunk - ok
17:47:03.0453 3316 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:47:03.0547 3316 KtmRm - ok
17:47:03.0594 3316 [ 0E154DA6CA9105354A07D0C576804037 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
17:47:03.0609 3316 L1C - ok
17:47:03.0641 3316 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:47:03.0734 3316 LanmanServer - ok
17:47:03.0765 3316 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:47:03.0843 3316 LanmanWorkstation - ok
17:47:03.0937 3316 [ 93B73DED2BC688F140C6AE2FBAD45789 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
17:47:03.0968 3316 Live Updater Service - ok
17:47:04.0015 3316 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:47:04.0077 3316 lltdio - ok
17:47:04.0124 3316 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:47:04.0218 3316 lltdsvc - ok
17:47:04.0249 3316 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:47:04.0327 3316 lmhosts - ok
17:47:04.0358 3316 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:47:04.0389 3316 LSI_FC - ok
17:47:04.0405 3316 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:47:04.0436 3316 LSI_SAS - ok
17:47:04.0467 3316 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:47:04.0483 3316 LSI_SAS2 - ok
17:47:04.0514 3316 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:47:04.0545 3316 LSI_SCSI - ok
17:47:04.0577 3316 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:47:04.0686 3316 luafv - ok
17:47:04.0733 3316 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:47:04.0779 3316 Mcx2Svc - ok
17:47:04.0795 3316 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:47:04.0842 3316 megasas - ok
17:47:04.0873 3316 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:47:04.0904 3316 MegaSR - ok
17:47:04.0935 3316 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:47:05.0029 3316 MMCSS - ok
17:47:05.0060 3316 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:47:05.0154 3316 Modem - ok
17:47:05.0169 3316 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:47:05.0216 3316 monitor - ok
17:47:05.0247 3316 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:47:05.0263 3316 mouclass - ok
17:47:05.0279 3316 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:47:05.0310 3316 mouhid - ok
17:47:05.0357 3316 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:47:05.0388 3316 mountmgr - ok
17:47:05.0435 3316 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:47:05.0466 3316 MozillaMaintenance - ok
17:47:05.0497 3316 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:47:05.0528 3316 mpio - ok
17:47:05.0559 3316 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:47:05.0637 3316 mpsdrv - ok
17:47:05.0684 3316 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:47:05.0778 3316 MpsSvc - ok
17:47:05.0809 3316 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:47:05.0871 3316 MRxDAV - ok
17:47:05.0903 3316 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:47:05.0949 3316 mrxsmb - ok
17:47:05.0981 3316 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:47:06.0027 3316 mrxsmb10 - ok
17:47:06.0074 3316 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:47:06.0121 3316 mrxsmb20 - ok
17:47:06.0152 3316 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:47:06.0183 3316 msahci - ok
17:47:06.0215 3316 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:47:06.0246 3316 msdsm - ok
17:47:06.0261 3316 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:47:06.0308 3316 MSDTC - ok
17:47:06.0355 3316 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:47:06.0433 3316 Msfs - ok
17:47:06.0449 3316 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:47:06.0527 3316 mshidkmdf - ok
17:47:06.0542 3316 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:47:06.0573 3316 msisadrv - ok
17:47:06.0605 3316 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:47:06.0698 3316 MSiSCSI - ok
17:47:06.0698 3316 msiserver - ok
17:47:06.0729 3316 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:47:06.0792 3316 MSKSSRV - ok
17:47:06.0839 3316 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:47:06.0917 3316 MSPCLOCK - ok
17:47:06.0917 3316 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:47:06.0995 3316 MSPQM - ok
17:47:07.0041 3316 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:47:07.0073 3316 MsRPC - ok
17:47:07.0104 3316 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:47:07.0135 3316 mssmbios - ok
17:47:07.0151 3316 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:47:07.0229 3316 MSTEE - ok
17:47:07.0260 3316 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:47:07.0275 3316 MTConfig - ok
17:47:07.0307 3316 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:47:07.0338 3316 Mup - ok
17:47:07.0385 3316 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:47:07.0463 3316 napagent - ok
17:47:07.0509 3316 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:47:07.0556 3316 NativeWifiP - ok
17:47:07.0634 3316 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:47:07.0697 3316 NDIS - ok
17:47:07.0728 3316 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:47:07.0806 3316 NdisCap - ok
17:47:07.0837 3316 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:47:07.0915 3316 NdisTapi - ok
17:47:07.0946 3316 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:47:08.0009 3316 Ndisuio - ok
17:47:08.0024 3316 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:47:08.0102 3316 NdisWan - ok
17:47:08.0149 3316 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:47:08.0243 3316 NDProxy - ok
17:47:08.0274 3316 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:47:08.0352 3316 NetBIOS - ok
17:47:08.0383 3316 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:47:08.0461 3316 NetBT - ok
17:47:08.0477 3316 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:47:08.0508 3316 Netlogon - ok
17:47:08.0555 3316 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:47:08.0633 3316 Netman - ok
17:47:08.0664 3316 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:47:08.0757 3316 netprofm - ok
17:47:08.0789 3316 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:47:08.0804 3316 NetTcpPortSharing - ok
17:47:08.0835 3316 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:47:08.0867 3316 nfrd960 - ok
17:47:08.0898 3316 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:47:08.0945 3316 NlaSvc - ok
17:47:08.0960 3316 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:47:09.0023 3316 Npfs - ok
17:47:09.0054 3316 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:47:09.0132 3316 nsi - ok
17:47:09.0132 3316 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:47:09.0225 3316 nsiproxy - ok
17:47:09.0303 3316 [ B8965FB53551B5455630A4B804D0791F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:47:09.0397 3316 Ntfs - ok
17:47:09.0459 3316 [ 8F59A2506AF43F96F5397B3C79938AE9 ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
17:47:09.0491 3316 NTI IScheduleSvc - ok
17:47:09.0522 3316 [ EE3BA1024594D5D09E314F206B94069E ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
17:47:09.0537 3316 NTIDrvr - ok
17:47:09.0537 3316 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:47:09.0615 3316 Null - ok
17:47:09.0662 3316 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:47:09.0678 3316 nvraid - ok
17:47:09.0709 3316 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:47:09.0725 3316 nvstor - ok
17:47:09.0756 3316 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:47:09.0787 3316 nv_agp - ok
17:47:09.0834 3316 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:47:09.0881 3316 ohci1394 - ok
17:47:09.0912 3316 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:47:09.0974 3316 p2pimsvc - ok
17:47:10.0021 3316 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:47:10.0052 3316 p2psvc - ok
17:47:10.0083 3316 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:47:10.0115 3316 Parport - ok
17:47:10.0146 3316 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:47:10.0177 3316 partmgr - ok
17:47:10.0177 3316 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:47:10.0224 3316 PcaSvc - ok
17:47:10.0271 3316 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:47:10.0286 3316 pci - ok
17:47:10.0317 3316 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:47:10.0349 3316 pciide - ok
17:47:10.0364 3316 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:47:10.0395 3316 pcmcia - ok
17:47:10.0411 3316 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:47:10.0442 3316 pcw - ok
17:47:10.0458 3316 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:47:10.0567 3316 PEAUTH - ok
17:47:10.0676 3316 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:47:10.0723 3316 PerfHost - ok
17:47:10.0801 3316 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:47:10.0926 3316 pla - ok
17:47:10.0973 3316 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:47:11.0066 3316 PlugPlay - ok
17:47:11.0082 3316 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:47:11.0113 3316 PNRPAutoReg - ok
17:47:11.0129 3316 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:47:11.0160 3316 PNRPsvc - ok
17:47:11.0207 3316 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:47:11.0285 3316 PolicyAgent - ok
17:47:11.0331 3316 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:47:11.0409 3316 Power - ok
17:47:11.0519 3316 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:47:11.0659 3316 PptpMiniport - ok
17:47:11.0675 3316 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:47:11.0721 3316 Processor - ok
17:47:11.0768 3316 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:47:11.0846 3316 ProfSvc - ok
17:47:11.0862 3316 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:47:11.0893 3316 ProtectedStorage - ok
17:47:11.0940 3316 [ 64E413BA0C529AA40C3924BBCC4153DB ] ProtexisLicensing C:\Windows\SysWOW64\PSIService.exe
17:47:11.0971 3316 ProtexisLicensing ( UnsignedFile.Multi.Generic ) - warning
17:47:11.0971 3316 ProtexisLicensing - detected UnsignedFile.Multi.Generic (1)
17:47:12.0002 3316 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:47:12.0096 3316 Psched - ok
17:47:12.0158 3316 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:47:12.0267 3316 ql2300 - ok
17:47:12.0299 3316 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:47:12.0314 3316 ql40xx - ok
17:47:12.0377 3316 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:47:12.0408 3316 QWAVE - ok
17:47:12.0423 3316 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:47:12.0486 3316 QWAVEdrv - ok
17:47:12.0501 3316 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:47:12.0595 3316 RasAcd - ok
17:47:12.0642 3316 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:47:12.0720 3316 RasAgileVpn - ok
17:47:12.0735 3316 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:47:12.0798 3316 RasAuto - ok
17:47:12.0829 3316 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:47:12.0907 3316 Rasl2tp - ok
17:47:12.0938 3316 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:47:13.0032 3316 RasMan - ok
17:47:13.0047 3316 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:47:13.0125 3316 RasPppoe - ok
17:47:13.0141 3316 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:47:13.0235 3316 RasSstp - ok
17:47:13.0250 3316 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:47:13.0313 3316 rdbss - ok
17:47:13.0328 3316 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:47:13.0359 3316 rdpbus - ok
17:47:13.0391 3316 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:47:13.0453 3316 RDPCDD - ok
17:47:13.0484 3316 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:47:13.0562 3316 RDPENCDD - ok
17:47:13.0578 3316 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:47:13.0656 3316 RDPREFMP - ok
17:47:13.0718 3316 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:47:13.0796 3316 RDPWD - ok
17:47:13.0827 3316 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:47:13.0859 3316 rdyboost - ok
17:47:13.0890 3316 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:47:13.0968 3316 RemoteAccess - ok
17:47:13.0999 3316 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:47:14.0077 3316 RemoteRegistry - ok
17:47:14.0124 3316 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:47:14.0202 3316 RpcEptMapper - ok
17:47:14.0233 3316 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:47:14.0280 3316 RpcLocator - ok
17:47:14.0342 3316 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:47:14.0420 3316 RpcSs - ok
17:47:14.0436 3316 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:47:14.0529 3316 rspndr - ok
17:47:14.0592 3316 [ 763AE0C6D9DF4C24B7E2C26036A8188A ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:47:14.0607 3316 RSUSBSTOR - ok
17:47:14.0639 3316 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:47:14.0654 3316 SamSs - ok
17:47:14.0685 3316 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:47:14.0717 3316 sbp2port - ok
17:47:14.0732 3316 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:47:14.0826 3316 SCardSvr - ok
17:47:14.0841 3316 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:47:14.0919 3316 scfilter - ok
17:47:14.0966 3316 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:47:15.0091 3316 Schedule - ok
17:47:15.0122 3316 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:47:15.0200 3316 SCPolicySvc - ok
17:47:15.0216 3316 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:47:15.0263 3316 SDRSVC - ok
17:47:15.0419 3316 [ 206387AB881E93A1A6EB89966C8651F1 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
17:47:15.0497 3316 SDScannerService - ok
17:47:15.0575 3316 [ A529CFE32565C0B145578FFB2B32C9A5 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
17:47:15.0668 3316 SDUpdateService - ok
17:47:15.0699 3316 [ CB63BDB77BB86549FC3303C2F11EDC18 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
17:47:15.0731 3316 SDWSCService - ok
17:47:15.0777 3316 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:47:15.0855 3316 secdrv - ok
17:47:15.0887 3316 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:47:15.0965 3316 seclogon - ok
17:47:16.0011 3316 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:47:16.0089 3316 SENS - ok
17:47:16.0121 3316 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:47:16.0199 3316 SensrSvc - ok
17:47:16.0214 3316 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:47:16.0245 3316 Serenum - ok
17:47:16.0277 3316 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:47:16.0323 3316 Serial - ok
17:47:16.0339 3316 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:47:16.0386 3316 sermouse - ok
17:47:16.0433 3316 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:47:16.0511 3316 SessionEnv - ok
17:47:16.0526 3316 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:47:16.0573 3316 sffdisk - ok
17:47:16.0589 3316 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:47:16.0635 3316 sffp_mmc - ok
17:47:16.0651 3316 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:47:16.0698 3316 sffp_sd - ok
17:47:16.0713 3316 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:47:16.0760 3316 sfloppy - ok
17:47:16.0807 3316 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:47:16.0916 3316 SharedAccess - ok
17:47:16.0963 3316 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:47:17.0057 3316 ShellHWDetection - ok
17:47:17.0088 3316 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:47:17.0119 3316 SiSRaid2 - ok
17:47:17.0135 3316 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:47:17.0166 3316 SiSRaid4 - ok
17:47:17.0244 3316 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:47:17.0259 3316 SkypeUpdate - ok
17:47:17.0306 3316 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:47:17.0400 3316 Smb - ok
17:47:17.0447 3316 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:47:17.0509 3316 SNMPTRAP - ok
17:47:17.0525 3316 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:47:17.0556 3316 spldr - ok
17:47:17.0603 3316 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:47:17.0696 3316 Spooler - ok
17:47:17.0790 3316 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:47:17.0977 3316 sppsvc - ok
17:47:18.0008 3316 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:47:18.0086 3316 sppuinotify - ok
17:47:18.0133 3316 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:47:18.0211 3316 srv - ok
17:47:18.0242 3316 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:47:18.0289 3316 srv2 - ok
17:47:18.0320 3316 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:47:18.0367 3316 srvnet - ok
17:47:18.0398 3316 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:47:18.0476 3316 SSDPSRV - ok
17:47:18.0492 3316 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:47:18.0554 3316 SstpSvc - ok
17:47:18.0585 3316 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:47:18.0601 3316 stexstor - ok
17:47:18.0663 3316 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:47:18.0710 3316 stisvc - ok
17:47:18.0741 3316 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:47:18.0773 3316 swenum - ok
17:47:18.0804 3316 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:47:18.0897 3316 swprv - ok
17:47:18.0975 3316 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:47:19.0085 3316 SysMain - ok
17:47:19.0100 3316 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:47:19.0147 3316 TabletInputService - ok
17:47:19.0178 3316 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:47:19.0272 3316 TapiSrv - ok
17:47:19.0287 3316 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:47:19.0365 3316 TBS - ok
17:47:19.0443 3316 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:47:19.0568 3316 Tcpip - ok
17:47:19.0631 3316 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:47:19.0693 3316 TCPIP6 - ok
17:47:19.0740 3316 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:47:19.0771 3316 tcpipreg - ok
17:47:19.0802 3316 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:47:19.0849 3316 TDPIPE - ok
17:47:19.0896 3316 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:47:19.0943 3316 TDTCP - ok
17:47:19.0974 3316 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:47:20.0036 3316 tdx - ok
17:47:20.0333 3316 [ 6B1B2F8D62D606B200C2072564090104 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
17:47:20.0473 3316 TeamViewer8 - ok
17:47:20.0504 3316 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:47:20.0535 3316 TermDD - ok
17:47:20.0582 3316 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:47:20.0707 3316 TermService - ok
17:47:20.0754 3316 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:47:20.0785 3316 Themes - ok
17:47:20.0801 3316 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:47:20.0879 3316 THREADORDER - ok
17:47:20.0894 3316 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:47:20.0988 3316 TrkWks - ok
17:47:21.0050 3316 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:47:21.0144 3316 TrustedInstaller - ok
17:47:21.0175 3316 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:47:21.0237 3316 tssecsrv - ok
17:47:21.0269 3316 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:47:21.0315 3316 TsUsbFlt - ok
17:47:21.0347 3316 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:47:21.0440 3316 tunnel - ok
17:47:21.0471 3316 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:47:21.0503 3316 uagp35 - ok
17:47:21.0534 3316 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
17:47:21.0549 3316 UBHelper - ok
17:47:21.0565 3316 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:47:21.0643 3316 udfs - ok
17:47:21.0674 3316 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:47:21.0705 3316 UI0Detect - ok
17:47:21.0737 3316 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:47:21.0768 3316 uliagpkx - ok
17:47:21.0799 3316 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:47:21.0830 3316 umbus - ok
17:47:21.0846 3316 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:47:21.0893 3316 UmPass - ok
17:47:21.0924 3316 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:47:22.0002 3316 upnphost - ok
17:47:22.0064 3316 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:47:22.0127 3316 USBAAPL64 - ok
17:47:22.0173 3316 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:47:22.0205 3316 usbccgp - ok
17:47:22.0236 3316 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:47:22.0283 3316 usbcir - ok
17:47:22.0329 3316 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:47:22.0376 3316 usbehci - ok
17:47:22.0423 3316 [ DC2B306861F42EEEB92EF525F4119F08 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
17:47:22.0439 3316 usbfilter - ok
17:47:22.0485 3316 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:47:22.0532 3316 usbhub - ok
17:47:22.0532 3316 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:47:22.0610 3316 usbohci - ok
17:47:22.0657 3316 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:47:22.0688 3316 usbprint - ok
17:47:22.0719 3316 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:47:22.0766 3316 usbscan - ok
17:47:22.0797 3316 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:47:22.0860 3316 USBSTOR - ok
17:47:22.0860 3316 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:47:22.0922 3316 usbuhci - ok
17:47:22.0953 3316 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:47:23.0000 3316 usbvideo - ok
17:47:23.0031 3316 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:47:23.0109 3316 UxSms - ok
17:47:23.0125 3316 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:47:23.0141 3316 VaultSvc - ok
17:47:23.0187 3316 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:47:23.0219 3316 vdrvroot - ok
17:47:23.0250 3316 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:47:23.0343 3316 vds - ok
17:47:23.0390 3316 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:47:23.0421 3316 vga - ok
17:47:23.0437 3316 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:47:23.0499 3316 VgaSave - ok
17:47:23.0546 3316 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:47:23.0577 3316 vhdmp - ok
17:47:23.0593 3316 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:47:23.0624 3316 viaide - ok
17:47:23.0640 3316 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:47:23.0671 3316 volmgr - ok
17:47:23.0687 3316 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:47:23.0718 3316 volmgrx - ok
17:47:23.0765 3316 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:47:23.0796 3316 volsnap - ok
17:47:23.0827 3316 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:47:23.0858 3316 vsmraid - ok
17:47:23.0921 3316 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:47:24.0061 3316 VSS - ok
17:47:24.0077 3316 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:47:24.0123 3316 vwifibus - ok
17:47:24.0139 3316 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:47:24.0186 3316 vwififlt - ok
17:47:24.0217 3316 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:47:24.0311 3316 W32Time - ok
17:47:24.0326 3316 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:47:24.0357 3316 WacomPen - ok
17:47:24.0389 3316 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:47:24.0467 3316 WANARP - ok
17:47:24.0482 3316 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:47:24.0545 3316 Wanarpv6 - ok
17:47:24.0607 3316 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:47:24.0779 3316 wbengine - ok
17:47:24.0794 3316 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:47:24.0841 3316 WbioSrvc - ok
17:47:24.0872 3316 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:47:24.0919 3316 wcncsvc - ok
17:47:24.0935 3316 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:47:24.0981 3316 WcsPlugInService - ok
17:47:24.0997 3316 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:47:25.0028 3316 Wd - ok
17:47:25.0075 3316 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:47:25.0122 3316 Wdf01000 - ok
17:47:25.0153 3316 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:47:25.0262 3316 WdiServiceHost - ok
17:47:25.0278 3316 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:47:25.0309 3316 WdiSystemHost - ok
17:47:25.0340 3316 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:47:25.0387 3316 WebClient - ok
17:47:25.0403 3316 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:47:25.0496 3316 Wecsvc - ok
17:47:25.0512 3316 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:47:25.0605 3316 wercplsupport - ok
17:47:25.0652 3316 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:47:25.0746 3316 WerSvc - ok
17:47:25.0777 3316 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:47:25.0839 3316 WfpLwf - ok
17:47:25.0871 3316 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:47:25.0902 3316 WIMMount - ok
17:47:25.0917 3316 WinDefend - ok
17:47:25.0933 3316 WinHttpAutoProxySvc - ok
17:47:25.0995 3316 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:47:26.0073 3316 Winmgmt - ok
17:47:26.0151 3316 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:47:26.0307 3316 WinRM - ok
17:47:26.0385 3316 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:47:26.0448 3316 WinUsb - ok
17:47:26.0495 3316 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:47:26.0588 3316 Wlansvc - ok
17:47:26.0619 3316 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:47:26.0635 3316 WmiAcpi - ok
17:47:26.0682 3316 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:47:26.0713 3316 wmiApSrv - ok
17:47:26.0729 3316 WMPNetworkSvc - ok
17:47:26.0744 3316 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:47:26.0807 3316 WPCSvc - ok
17:47:26.0822 3316 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:47:26.0885 3316 WPDBusEnum - ok
17:47:26.0931 3316 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:47:27.0009 3316 ws2ifsl - ok
17:47:27.0025 3316 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:47:27.0056 3316 wscsvc - ok
17:47:27.0072 3316 WSearch - ok
17:47:27.0165 3316 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:47:27.0275 3316 wuauserv - ok
17:47:27.0321 3316 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:47:27.0368 3316 WudfPf - ok
17:47:27.0399 3316 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:47:27.0446 3316 WUDFRd - ok
17:47:27.0493 3316 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:47:27.0540 3316 wudfsvc - ok
17:47:27.0571 3316 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:47:27.0680 3316 WwanSvc - ok
17:47:27.0696 3316 ================ Scan global ===============================
17:47:27.0727 3316 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:47:27.0774 3316 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:47:27.0805 3316 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:47:27.0836 3316 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:47:27.0883 3316 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:47:27.0883 3316 [Global] - ok
17:47:27.0883 3316 ================ Scan MBR ==================================
17:47:27.0914 3316 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:47:28.0320 3316 \Device\Harddisk0\DR0 - ok
17:47:28.0647 3316 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
17:47:28.0897 3316 \Device\Harddisk1\DR1 - ok
17:47:29.0084 3316 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
17:47:29.0630 3316 \Device\Harddisk2\DR2 - ok
17:47:29.0630 3316 ================ Scan VBR ==================================
17:47:29.0646 3316 [ 2FC8DF16608ED1BDDAAB55506804DDAA ] \Device\Harddisk0\DR0\Partition1
17:47:29.0646 3316 \Device\Harddisk0\DR0\Partition1 - ok
17:47:29.0693 3316 [ DD42B516FAC80DD655223B8528155FED ] \Device\Harddisk0\DR0\Partition2
17:47:29.0693 3316 \Device\Harddisk0\DR0\Partition2 - ok
17:47:29.0693 3316 [ 06DEF7C31E5C32D614D2F58E184CC3F7 ] \Device\Harddisk1\DR1\Partition1
17:47:29.0708 3316 \Device\Harddisk1\DR1\Partition1 - ok
17:47:29.0708 3316 [ 3C6221ADC5B88CAB61AE9AB48C6A5CE2 ] \Device\Harddisk2\DR2\Partition1
17:47:29.0724 3316 \Device\Harddisk2\DR2\Partition1 - ok
17:47:29.0724 3316 ============================================================
17:47:29.0724 3316 Scan finished
17:47:29.0724 3316 ============================================================
17:47:29.0739 4100 Detected object count: 1
17:47:29.0739 4100 Actual detected object count: 1
17:47:54.0327 4100 ProtexisLicensing ( UnsignedFile.Multi.Generic ) - skipped by user
17:47:54.0327 4100 ProtexisLicensing ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:01.0238 1880 Deinitialize success
|
|
24.04.2013, 20:49
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | CouponDropDown kommt immer wiederCode:
ATTFilter Database version: v2013.04.23.07
Bitte MBAR mit aktuellen Sigs wiederholen
__________________ --> CouponDropDown kommt immer wieder |
|
24.04.2013, 21:22
| #7 |
| | CouponDropDown kommt immer wieder Ja, dachte das wäre aktuell.. Hier neuer Log. Hat auch nix gefunden... Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.05.0.1001
www.malwarebytes.org
Database version: v2013.04.24.09
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16540
ACER 5253 :: ACER5253-PC [administrator]
24.04.2013 22:20:28
mbar-log-2013-04-24 (22-20-28).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 29956
Time elapsed: 14 minute(s), 50 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
|
|
24.04.2013, 23:00
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | CouponDropDown kommt immer wieder Dann bitte jetzt Combofix ausführen: Scan mit Combofix
__________________ Logfiles bitte immer in CODE-Tags posten |
|
25.04.2013, 15:00
| #9 |
| | CouponDropDown kommt immer wieder Hier der Log Code:
ATTFilter ComboFix 13-04-25.01 - ACER 5253 25.04.2013 15:10:02.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.2795.1520 [GMT 2:00]
ausgeführt von:: c:\users\ACER 5253\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
c:\users\ACER 5253\AppData\Roaming\.#
c:\users\ACER 5253\AppData\Roaming\.#\MBX@E44@2002968.###
c:\users\ACER 5253\AppData\Roaming\.#\MBX@E44@2002998.###
c:\users\ACER 5253\AppData\Roaming\.#\MBX@E44@20029C8.###
c:\windows\IsUn0407.exe
c:\windows\wininit.ini
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-03-25 bis 2013-04-25 ))))))))))))))))))))))))))))))
.
.
2013-04-25 13:24 . 2013-04-25 13:24 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-04-23 17:19 . 2013-04-25 13:03 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-04-23 17:18 . 2009-01-25 10:14 17272 ----a-w- c:\windows\system32\sdnclean64.exe
2013-04-23 17:18 . 2013-04-23 17:19 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2013-04-16 17:15 . 2013-04-16 17:12 198784 ------w- c:\windows\system32\CxAudMsg64.exe
2013-04-16 17:12 . 2013-04-16 17:12 498816 ----a-w- c:\windows\system32\UCI64A69.dll
2013-04-16 17:12 . 2013-04-16 17:12 1548416 ----a-w- c:\windows\system32\CX64AP40.dll
2013-04-16 17:12 . 2013-04-16 17:12 1495680 ----a-w- c:\windows\system32\drivers\CHDRT64.sys
2013-04-14 17:31 . 2012-08-21 11:01 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2013-04-14 17:31 . 2013-04-14 17:31 -------- d-----w- c:\program files\iPod
2013-04-14 17:31 . 2013-04-14 17:31 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-04-14 17:31 . 2013-04-14 17:31 -------- d-----w- c:\program files\iTunes
2013-04-14 17:31 . 2013-04-14 17:31 -------- d-----w- c:\program files (x86)\iTunes
2013-04-14 17:29 . 2013-04-14 17:29 -------- d-----w- c:\program files (x86)\Apple Software Update
2013-04-14 17:28 . 2013-04-14 17:28 -------- d-----w- c:\program files\Common Files\Apple
2013-04-14 17:28 . 2013-04-14 17:28 -------- d-----w- c:\program files\Bonjour
2013-04-14 17:28 . 2013-04-14 17:28 -------- d-----w- c:\program files (x86)\Bonjour
2013-04-09 17:08 . 2013-02-15 06:06 3717632 ----a-w- c:\windows\system32\mstscax.dll
2013-04-09 17:08 . 2013-02-15 04:37 3217408 ----a-w- c:\windows\SysWow64\mstscax.dll
2013-04-09 17:08 . 2013-02-15 06:02 158720 ----a-w- c:\windows\system32\aaclient.dll
2013-04-09 17:08 . 2013-02-15 04:34 131584 ----a-w- c:\windows\SysWow64\aaclient.dll
2013-04-09 17:08 . 2013-02-15 06:08 44032 ----a-w- c:\windows\system32\tsgqec.dll
2013-04-09 17:08 . 2013-02-15 03:25 36864 ----a-w- c:\windows\SysWow64\tsgqec.dll
2013-04-09 17:08 . 2013-03-01 03:36 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-04-09 17:08 . 2013-03-02 06:04 1655656 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-09 17:08 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-04-09 17:07 . 2013-03-19 06:04 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-04-09 17:07 . 2013-03-19 05:04 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-04-09 17:07 . 2013-03-19 05:04 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-04-09 17:07 . 2013-03-19 05:46 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-09 17:07 . 2013-03-19 04:47 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-04-09 17:07 . 2013-03-19 03:06 112640 ----a-w- c:\windows\system32\smss.exe
2013-04-09 17:06 . 2013-04-15 12:29 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2013-04-05 01:05 . 2013-04-05 01:05 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-29 17:46 . 2013-03-29 17:46 -------- d-----w- c:\users\Gast\AppData\Roaming\Avira
2013-03-27 21:04 . 2013-03-27 21:04 -------- d-----w- c:\users\ACER 5253\AppData\Local\PutLockerDownloader
2013-03-27 21:04 . 2013-03-27 21:04 -------- d-----w- c:\program files (x86)\SockshareDownloader
2013-03-27 19:49 . 2013-03-27 19:49 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-03-27 19:49 . 2013-03-27 19:49 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-03-27 19:49 . 2013-03-27 19:49 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-10 17:20 . 2011-11-25 19:29 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-04-04 20:56 . 2012-06-14 14:25 861088 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-04-04 20:56 . 2011-11-18 18:06 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-03-25 18:19 . 2012-04-08 13:14 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-25 18:19 . 2011-11-18 17:10 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-15 06:28 . 2013-03-22 17:52 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{61AEE474-2F44-4BDE-AAA2-78EB8D4E60BA}\mpengine.dll
2013-02-12 05:45 . 2013-03-13 20:24 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 20:24 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 20:24 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-13 20:24 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-13 20:24 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 20:24 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-12 04:12 . 2013-03-14 09:11 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-30 14:49 281760 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}]
2012-11-15 17:30 244328 ----a-w- c:\program files (x86)\SockshareDownloader\smarterdownloader.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Spybot-S&D Cleaning"="c:\program files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" [2012-11-13 3713032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-12-19 41208]
"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2010-11-12 296768]
"OOTag"="c:\program files (x86)\Acer\OOBEOffer\OOTag.exe" [2010-02-23 13856]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-12-09 1025616]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-18 336384]
"MDS_Menu"="c:\program files (x86)\Acer\clear.fi\MediaEspresso\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"ArcadeMovieService"="c:\program files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" [2010-11-26 177448]
"QuickFinder Scheduler"="c:\program files (x86)\WordPerfect Office X3\Programs\QFSCHD130.EXE" [2007-01-02 83568]
"BrMfcWnd"="c:\program files (x86)\Brother\Brmfcmon\BrMfcWnd.exe" [2007-03-12 663552]
"ControlCenter3"="c:\program files (x86)\Brother\ControlCenter3\brctrcen.exe" [2007-01-26 65536]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-03-27 345312]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-11-13 3825176]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Z1"="c:\users\ACER 5253\Desktop\mbar\mbar.exe" [2013-04-23 1398856]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2010-11-20 73216]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2010-11-18 354304]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-06-17 246376]
R3 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
R3 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
R3 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-12-13 54784]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2013-03-27 28600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-09 203776]
S2 AMD Reservation Manager;AMD Reservation Manager;c:\program files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 194496]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2013-03-27 86752]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe [2013-04-16 198784]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-12-09 311376]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-10-29 868224]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2012-04-05 255376]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2010-11-12 257344]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-03-06 3560288]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2010-11-16 115216]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-11-12 138024]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-09-27 76912]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2010-04-28 38528]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 68385544
*NewlyCreated* - ASWMBR
*Deregistered* - 68385544
*Deregistered* - aswMBR
.
Inhalt des "geplante Tasks" Ordners
.
2013-04-25 c:\windows\Tasks\FinalTorrent Update Checker.job
- c:\program files (x86)\FinalTorrent\FTCheckForUpdates.exe [2011-12-18 14:24]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-30 14:49 342176 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-10-29 860040]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.hiergehtslos.de
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: Öffnen mit WordPerfect - c:\program files (x86)\WordPerfect Office X3\Programs\WPLauncher.hta
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\ACER 5253\AppData\Roaming\Mozilla\Firefox\Profiles\y2pg6a1s.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
FF - ExtSQL: !HIDDEN! 2013-02-12 20:02; {ACAA314B-EEBA-48e4-AD47-84E31C44796C}; c:\program files (x86)\Common Files\DVDVideoSoft\plugins\ff
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
Notify-SDWinLogon - SDWinLogon.dll
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_265_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_265_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-04-25 15:30:08
ComboFix-quarantined-files.txt 2013-04-25 13:30
.
Vor Suchlauf: 8 Verzeichnis(se), 213.281.652.736 Bytes frei
Nach Suchlauf: 12 Verzeichnis(se), 215.326.801.920 Bytes frei
.
- - End Of File - - 5EA5E284D7C2C548BFE78F42F7319B3A
|
|
25.04.2013, 16:22
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | CouponDropDown kommt immer wieder JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Im Anschluss: adwCleaner - Toolbars und ungewollte Start-/Suchseiten entfernen Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Danach eine Kontrolle mit OTL bitte:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
25.04.2013, 17:29
| #11 |
| | CouponDropDown kommt immer wieder hier die Logfiles! Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.8.9 (04.22.2013:1)
OS: Windows 7 Home Premium x64
Ran by ACER 5253 on 25.04.2013 at 17:48:27,12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\bundlesweetimsetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\bundlesweetimsetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\tracing\sweetim_rasmancs
~~~ Files
~~~ Folders
Failed to delete: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\ACER 5253\AppData\Roaming\dvdvideosoftiehelpers"
Successfully deleted: [Folder] "C:\Users\ACER 5253\AppData\Roaming\yourfiledownloader"
Successfully deleted: [Folder] "C:\Program Files (x86)\yourfiledownloader"
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{00E481BE-C5D5-4349-AC03-27367DB7DFA8}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{012736DE-8199-409E-973D-A8F21E595B4B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{02FE9EBE-EEA4-4608-BD7E-145001B0637B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{03CA78D5-5439-4363-894C-BDB914B304F9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{082C0356-66CC-4689-88AE-EF1AE13A5734}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0903842B-C225-42EE-8BC1-3F591B2AF3FE}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{09AB06A6-06EE-4902-B4D5-B46304F3EE02}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0B4B4C7E-6E71-46E6-84F2-7143C872983B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0B509277-131E-41AA-ADEC-C774D64D4C67}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0C14BA76-1D22-4813-82F4-F92FF2AD2C99}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0D281077-2C27-41A5-823F-91E12E5C1FD2}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0E075977-04D2-44FA-8812-F22C3068BA2A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0F07B1B5-28BE-4BAD-A2D4-821649EF48AB}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{0F682E6A-2C58-46DB-BF0F-10232AA1CA52}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{126ED1EE-63AF-4744-9054-362D77A742D9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{1715D246-3A79-4E11-BECD-48605D1260F6}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{17357CCA-36F4-4588-8CD0-4EDFDDC4230B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{177402CE-0554-41AB-B9FC-021A0476502B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{17C0FDAF-C473-4306-A8A1-BDAA950687BA}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{18A591F8-0465-41E6-A9F2-4531CB70F71D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{1990310A-3408-4D3E-AE29-D5DFED1579A5}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{19AB74B6-1DF3-4B54-B4A9-B01BC6CB2EAD}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{1B90495A-F121-4922-9DEB-C574D22E7477}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{1E8DB32D-1A4E-4A78-9A00-8BE886BA2503}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{1FAE1ECC-94E6-444A-A050-97BC7850748B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{21A690F8-929D-4252-AA70-9D00CBC5FC61}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{22967AC8-E6A3-4797-AF8D-5036CA7DA17F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{22D2C129-8C0F-463F-B18C-6F1ACF160C17}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{23EBF220-ED6F-447E-B5FE-22AF41C09390}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{2483E360-7BE3-4E59-A199-BF671FFE1CF2}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{25098A1D-3D5F-4266-BE7D-1676F5CA7D38}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{266E18A3-CFFA-4849-982F-498679F47718}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{27173F00-3EFC-494F-B1A5-0E04A07AF5B3}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{2848FE90-BFCF-476B-B468-3762DFD83EF5}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{28E9EAF0-CD61-4383-A648-61535A8E4D82}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{294E1D2D-FCDB-42A2-89C8-DCA8E390EAAE}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{29C02CDB-C23F-42D7-B41F-BB8868EF7958}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{2B24DEE5-F059-4B15-8E08-EF0795F91D19}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{2BB872D9-AAC8-475D-A798-AC9F6DCC40D2}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{2C02E40B-CB1D-4E8F-8DD4-E88AF0CDBBB7}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{2C9CEDCA-78E7-4188-B7C4-0941C466E324}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{2EAABEA8-7C54-4B5E-870D-414A03AFF86D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{302C2E58-E80E-4BD3-8EF9-46B4075B6C82}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{33ADE81C-99C7-4547-986B-E0F887192B65}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{342BED1B-67D3-44EB-9922-7126A1EC7256}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{355CD84F-2691-4F15-B9FA-667805682E81}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{37E42E28-F25C-41F4-AC0F-FEB00E8EDB16}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{39B12485-C952-44B2-82A0-53C79566A64B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{3B418BA1-A913-489B-8F36-8454DCDAA922}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{3F10955F-9BF4-4962-B77A-214857CE6477}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{3F1D735D-A56C-4FD1-9F32-976C4EF40648}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{3F3DCEC9-BDF2-4B63-A072-2DD854FDA74C}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{3FF3A44C-0A58-49E1-ACCB-7140A5E75D36}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{4021137C-218C-4DAB-A3FF-702C12E8858C}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{425626CB-C2A0-4691-96F5-6BBDEE8CB63A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{44A506A1-85A6-4A89-914C-A54B09FF971F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{44B789D4-3A0C-42CA-B0B1-55D3E9E7A96D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{44D45B8A-550A-48C4-8868-7FF9193F02EC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{460E3807-BE89-45C5-8905-5A4BB0C565C9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{49D4A6AC-75A8-49B7-82B7-F1EA89016355}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{50AD23F9-82F5-4F94-AD58-DEC67E887B5E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{50B691A5-E9FE-4444-A581-6E90C47774E7}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{51FE24D7-295A-4C59-B313-787250FF8AAB}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5490B851-55F4-4984-9173-6524855A06F8}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{559CC8C9-8047-405A-BE52-DA07EBCDFE30}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5691AFF6-F52A-4B7E-AE6A-F260DCF5782F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5780DDE3-8F2C-4394-A137-39170A46FAF1}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{596B82B6-9F27-4F07-B87E-A4EEAF078AE6}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5A0D841F-A854-424D-BBFA-16CE2DE31A54}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5ADC8CF1-FF79-41EE-AEA4-1A12A8C3DB17}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5B7D2484-1FE7-48E0-93CB-2F7500337463}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5E69E783-9D80-4BDC-9925-6AB18BF1A6F4}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{5F109883-C381-4012-BAB7-088C75F98696}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6042E210-960F-41A1-9B99-5D0FB94E85A7}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{611960C8-4345-4D26-AA7F-BAE4D20E47E4}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6148BA04-6737-4290-A8BF-0B256CE6DA93}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6214A70C-2C9D-4544-8275-DB4254CD2890}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{63E7109D-1070-4AE5-9C30-35B5717D759A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{656E4507-D726-4B4D-979A-85C031C1C51A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6597110B-7E06-46E6-8B30-AE8C280C4886}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{666CCA36-EFCC-4188-AD2E-05417D3FBFFF}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{684966D4-CA8B-4272-991C-D450B0EB11B1}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{69D97EAA-AC52-40B8-A42C-3F4CFA60486B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6AFC8A81-93DD-4021-B709-2F8A683B98F7}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6D9BEDE1-E310-4F25-AC28-06995212C504}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6DB3A979-34B5-43B1-9E41-01780BA0D48D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6E38646E-5804-4306-980B-A1F2B062332F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6F122F3B-B957-4291-AF49-BF40F43AC52A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{6F5D1660-94F4-4293-A5B6-EE4933778E6B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{7050ABA9-2B01-419B-88A8-F4C30362692B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{7344D912-811A-4688-BE11-2B0F54922A14}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{74F3C538-9501-476F-8E00-C33FF1614FF4}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{74F4BD44-831E-437F-AAAF-72BC6692E961}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{75D875CA-B9CB-40FB-B916-58C9716C88DA}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{76712AAE-74FB-45A2-BFCA-308F517F720B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{774F9A0C-9A0E-44EE-8284-36C465F67697}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{781DDD38-4EA0-4F07-8943-4677D5D5E4C0}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{7B33B26C-89D3-4DB3-B948-450065D4919D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{7CB71202-0EE5-4627-850F-677B78FB5689}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{7DEB4A17-E9AE-440E-9BFD-58621098A7E3}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{7FB79897-C4D3-4D91-B7C9-E5657EE65395}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{7FF71E0E-F577-4947-A132-354D36C401E2}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{82326E5F-ACBA-4748-85B5-9E580C02D785}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{849FB453-CA5D-46F6-BCBD-0959162F46F3}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{84A839F6-0BF4-4515-AC1C-3433C7D6F5A1}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{856E36E4-C374-4A60-ACCD-4FBF3C1491C1}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{861C2731-B0B6-465E-BE03-7455806F2DF9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8661DB76-44DE-4EE9-B016-F72BA6D5BB95}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8765F27C-76F5-4F76-B11B-D01EA5F7A485}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{89594C88-5117-492D-B1A4-886224AEBD5A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8965BF34-5236-4A5D-94E3-668D5BF9AC95}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8982F4FC-CD5B-4DB0-9CD5-C16696954BFC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8A819420-A74D-4BEE-A181-3801DF23E709}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8C71A87E-7B8B-44A7-9DF3-779AB71521A2}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8E5FADD1-D9E5-47E1-B318-21D00B17BF75}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8E62F549-D78C-4E61-AD78-262701BAABBF}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{8FC9DB91-AD40-4BC6-957C-6ECC5B4F42EA}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{916DE822-E1BE-43F7-AD2A-D78160405996}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{919AA1F6-D252-403F-A450-4E25CD0CEBD9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{930131DD-D5BC-4068-924E-289A512851A9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{93DE7191-F858-41B7-8232-4C9AAF020CAF}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{94087B2A-5C81-40C8-ACE6-A925A0A5F209}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{94B401C9-612E-43F4-A242-57B1A47B2D90}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{95B94893-6F9F-47D2-9517-517621E6BC73}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{96F9F6C2-1D3B-4E45-83F5-0BF6DAA094EE}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{97A2A126-D3C0-44D5-902E-DD62133E0D77}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{98147E42-7F01-49B7-AD89-38628CED262D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{99202C80-4F31-4094-8082-ADB6A98D13FB}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{9B24DA3A-4EA7-4FA4-A1B2-DB1690E6576D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{9B4EA569-1CAE-42A7-9D70-06271020C201}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{9BD44638-B6B7-4C73-A88F-AD8A398D429A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{9C35E9E4-EA3E-4EAA-9367-00D66D480211}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{9D2402A1-78B1-46AF-8099-C64AD2565F38}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{9F74D870-E29B-4828-9E7C-EDF9B9FD0CDF}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{9F8FB2EB-1AB2-404E-AED7-6F9ECA503B8D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A00045F2-0E2C-4263-919A-6A5C58A4EECE}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A0D6F724-0D25-426B-B48E-939BE852550F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A17A1125-C518-415A-9D29-01CADEAD4912}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A2CCFC50-D159-41EA-A146-18CAA1372661}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A3E01BE3-D96B-44F4-990E-589A65A8D60F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A5920C04-DFC1-480B-8E69-D00198322106}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A5A02FC2-3C05-47E2-B686-B50EF6C537AC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A64A35E6-50B6-4D9B-B21C-DF67F1142034}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A7840259-CE68-4B7E-B117-052CA6D42117}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{A90BC38D-EABB-43FF-879C-3A2D5930A4DD}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{AB80230C-9B75-41F7-AF4C-473B272B3873}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{AC1624F7-1BBE-4368-87E0-A879F6D85FB0}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{ACAC4864-70D2-4385-BA12-B2490689AB10}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{AD0241B5-5B68-429D-A3E6-79AD2C6AD1F9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{ADB79F96-D49C-41A6-956F-46A69B226B1B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{AFC04821-39C1-41A8-9B21-288EC1449BCC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B40F0B05-14E2-48CA-A7FF-4D051095B05E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B67F0120-32F4-4B6C-9218-D622ACE9EC1E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B6A065B1-56A9-40C8-99E4-75C1D415F7C3}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B6A7A5D9-832A-43F4-B6F4-3C215E53CC28}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B742C7BE-8F71-4DA0-A0BD-0015726815DC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B8F25407-40D4-4606-8C4B-9128F127C0B2}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B94A666F-7B02-41BE-8664-C51A96D7B987}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{B9D0DD3A-B08A-40C2-9636-EB135C546F08}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BAD63A99-25C9-4D85-9FF7-98F46675F50C}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BAF5118E-C76B-4BCE-ADC3-57A8E27A05A3}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BB131200-2E29-4F08-8CD8-E0443C120391}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BCD4A30B-7F18-4810-B258-C799F0688944}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BE1EE091-9184-4B39-8DE3-0DAB786D6E7B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BE3BEBFF-0746-413E-BF5C-BE39B639A7FE}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BED192F6-F1AB-4DD8-8999-0190509E28C7}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{BF027C54-B735-4BA7-A787-23ED5B782876}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C0CC7569-BFA6-49BB-B42F-D6D170397472}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C34DC23B-BD67-4DD5-B632-03F32185CBFC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C3F27D56-69E5-42A0-9776-55502DFB1DE3}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C47325B6-4736-4E78-9F2B-B12703E8B6FF}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C5B1C434-0778-4316-BB31-562AB011F357}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C66EAB19-F381-4392-8FA6-7302F316127A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C73D1A6B-C646-4F2E-A8B8-A167192A08B5}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C7543E9C-B3F8-4006-BD9C-A4A936FE018A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C8465A8F-6FFD-407F-B379-1894E1B3FC87}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{C9A985C6-B43F-4C75-B05B-E962BE3DF4E0}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CA184172-2BD5-4668-B904-07DA218A8433}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CD02DE2A-DA60-4802-BFD4-FF091F635D1F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CD61665F-06BC-4C80-A3C2-D343C7ACF930}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CEC0248D-73D3-4886-99C4-E783AA54284A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CEEC8CB1-2355-45E7-A0CB-6C4AC53B06EC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CF08007B-CEF1-4F89-AE65-CD873ADD4598}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CF84BF30-EBC6-4E48-B6EF-1E3E9DAF2543}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CFD4608A-9830-4015-B162-11F6A614E73F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{CFEA563C-B46A-425C-9911-48A388945A9B}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{D2419BE1-8E62-4B64-A3AF-B49A43EE6326}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{D331B769-47B4-40C8-A60A-C4128B09A0BE}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{D46AC0AE-A2FE-42C5-AEFF-C607033E801E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{D514406B-BBD2-41C6-A1D6-30C91A226491}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{D6DFB141-B9FE-40BA-8A59-942E6C2DEAED}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{D79CB2A0-0D69-4B00-A87A-CE592791F4BA}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{D9888219-6D6C-4BDA-82DA-4E888B3E6098}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{DA44E844-906C-4131-B800-CD2DB80D7B36}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{DB259DC6-833D-44C6-8ECA-80DD4D28926E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{DEAE8BEA-339E-4E78-AEB8-524277F28163}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{DED1DEE4-115D-4300-B84D-3407448D155A}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{DF44C5BB-178B-4F9F-878E-3D571B203C26}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E1AF5301-F342-4D59-9EA9-B6249B762F32}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E282485A-C8ED-4149-A683-0744530EFC20}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E2A5F074-679D-401F-92F3-3A3CFC97E5C9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E32B0EDB-BD94-493B-A7D7-F9A95D185D5E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E3BD13BF-7BB8-4BA3-9A40-7A2451DD2168}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E6381B64-8308-456B-B653-CA28CD5A3CD5}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E6D4D45A-84BD-4103-BDF3-6A1EED83DACA}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E90C6BA1-F24C-4209-BC73-DC20F666565E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E92F9AB0-75B8-42DE-BF23-9E8182DF8EFA}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{E9A9F245-5AED-4F5B-A3C0-598873814BCB}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{EA9B2C24-FA1B-45D6-B799-591F0BBE2093}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{EABBD90B-FA44-4979-842A-42525B434261}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{EE7EBB46-B324-45D4-A12B-610B8687787D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{EEA8A449-73F7-4894-B7DE-FD8B63F3B45D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{EEC8CFD9-0D96-4F6B-B158-B07FDD7EA71C}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{EFBBA085-FB13-465A-8F35-D3D9AE969152}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F1E48090-6776-4004-9F71-CD9B1BEA216E}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F2BE2C04-4546-4A3C-933A-1F6F60FD0902}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F3C59EBA-62B7-4E9C-A841-10FFF072C471}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F4356AF8-DF3B-4550-9422-E6A37A55D491}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F487ED63-8E23-4A1C-8811-C66E50403AC1}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F5D28F29-F54D-48FE-8E00-C39515DCFEE9}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F5D92DEC-8153-422C-80DF-437E9E47FB04}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F5E74090-0F8E-4639-BE99-8367FCDB5408}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F6139FB9-3A26-405F-A2B5-D2E4231502A5}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F7A44BCF-EE09-4769-B799-CF839E7045A3}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F7FA8B91-F615-4F08-B258-85ABF1DD864F}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{F8757E94-B41A-48B4-B7CF-A6AED4F223AC}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{FD53216D-00F5-402B-A31D-BF67FD864986}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{FDA85549-74C9-4C1D-A18E-34BC3FDA92C4}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{FE06B73F-35CD-43E3-8B77-176BD80C726D}
Successfully deleted: [Empty Folder] C:\Users\ACER 5253\appdata\local\{FFC422E3-C3E7-4492-ACE9-8A52E237D708}
~~~ FireFox
Successfully deleted: [File] C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\searchplugins\sweetim search.xml
Successfully deleted: [Folder] C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\jetpack
Successfully deleted: [Registry Value] hkey_local_machine\software\mozilla\firefox\extensions\\{acaa314b-eeba-48e4-ad47-84e31c44796c}
Successfully deleted the following from C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\prefs.js
user_pref("browser.search.defaultenginename", "SweetIM Search");
Emptied folder: C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\minidumps [186 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 25.04.2013 at 17:56:40,45
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter # AdwCleaner v2.202 - Datei am 25/04/2013 um 17:58:01 erstellt
# Aktualisiert am 23/04/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : ACER 5253 - ACER5253-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\ACER 5253\Downloads\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\Users\ACER 5253\AppData\Local\PutLockerDownloader
Ordner Gelöscht : C:\Users\ACER 5253\AppData\Roaming\Mozilla\Firefox\Profiles\y2pg6a1s.default\jetpack
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{162E06EC-4E38-4809-AE76-BF2400D34334}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16537
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.hiergehtslos.de --> hxxp://www.google.com
-\\ Mozilla Firefox v20.0.1 (de)
Datei : C:\Users\ACER 5253\AppData\Roaming\Mozilla\Firefox\Profiles\y2pg6a1s.default\prefs.js
[OK] Die Datei ist sauber.
Datei : C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\mv99lqmn.default\prefs.js
[OK] Die Datei ist sauber.
*************************
AdwCleaner[S1].txt - [1865 octets] - [25/04/2013 17:58:01]
########## EOF - C:\AdwCleaner[S1].txt - [1925 octets] ##########
Code:
ATTFilter OTL logfile created on: 25.04.2013 18:04:27 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ACER 5253\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16540) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 2,73 Gb Total Physical Memory | 1,71 Gb Available Physical Memory | 62,57% Memory free 5,46 Gb Paging File | 4,09 Gb Available in Paging File | 74,96% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 282,99 Gb Total Space | 201,29 Gb Free Space | 71,13% Space Free | Partition Type: NTFS Computer Name: ACER5253-PC | User Name: ACER 5253 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\ACER 5253\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH) PRC - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.) PRC - C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated) PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe (CyberLink Corp.) PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe (CyberLink Corp.) PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe () PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation) PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation) PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.) PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated) PRC - C:\Windows\SysWOW64\PSIService.exe () ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll () MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll () MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl () MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl () MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl () MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl () MOD - C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl () MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll () MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe () MOD - C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll () ========== Services (SafeList) ========== SRV:64bit: - (CxAudMsg) -- C:\Windows\SysNative\CxAudMsg64.exe (Conexant Systems Inc.) SRV:64bit: - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.) SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (Live Updater Service) -- C:\Programme\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated) SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.) SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation) SRV - (ePowerSvc) -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated) SRV - (AMD Reservation Manager) -- C:\Programme\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe (Advanced Micro Devices) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.) SRV - (GREGService) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (ProtexisLicensing) -- C:\Windows\SysWOW64\PSIService.exe () ========== Driver Services (SafeList) ========== DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\drivers\CHDRT64.sys (Conexant Systems Inc.) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.) DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices) DRV:64bit: - (ETD) -- C:\Windows\SysNative\drivers\ETD.sys (ELAN Microelectronics Corp.) DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.) DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.) DRV:64bit: - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NTI Corporation) DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.) DRV:64bit: - (usbfilter) -- C:\Windows\SysNative\drivers\usbfilter.sys (Advanced Micro Devices) DRV:64bit: - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NTI Corporation) DRV:64bit: - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-661073328-3994563355-608488981-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com IE - HKU\S-1-5-21-661073328-3994563355-608488981-1000\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-661073328-3994563355-608488981-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-661073328-3994563355-608488981-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaulturl: "" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.update: false FF - prefs.js..browser.startup.homepage: "hxxp://www.google.de/" FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20130402 FF - prefs.js..extensions.enabledAddons: %7BACAA314B-EEBA-48e4-AD47-84E31C44796C%7D:4.2.1.9 FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0035-ABCDEFFEDCBA%7D:6.0.35 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1 FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre1.6.0_22\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101727.dll (Amazon.com, Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.04.13 14:02:31 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.04.13 14:02:31 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.11.05 08:43:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ACER 5253\AppData\Roaming\mozilla\Extensions [2013.04.04 20:49:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ACER 5253\AppData\Roaming\mozilla\Firefox\Profiles\y2pg6a1s.default\extensions [2013.04.04 20:49:03 | 000,000,000 | ---D | M] (WOT) -- C:\Users\ACER 5253\AppData\Roaming\mozilla\Firefox\Profiles\y2pg6a1s.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2012.11.15 19:30:12 | 000,214,020 | ---- | M] () (No name found) -- C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\extensions\socksharedownloader@socksharedownloader.com.xpi [2013.04.03 18:59:56 | 000,542,511 | ---- | M] () (No name found) -- C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\extensions\toolbar@web.de.xpi [2012.12.12 12:37:37 | 000,036,098 | ---- | M] () (No name found) -- C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2013.02.19 20:18:33 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\ACER 5253\AppData\Roaming\mozilla\firefox\profiles\y2pg6a1s.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013.04.13 14:02:22 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2013.04.13 14:02:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2013.04.13 14:02:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013.04.13 14:02:31 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2013.03.27 05:32:09 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml [2013.03.27 05:32:09 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2013.03.27 05:32:09 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml [2013.03.27 05:32:09 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml [2013.03.27 05:32:09 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml [2013.03.27 05:32:09 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2013.04.25 15:24:28 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2:64bit: - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_22\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.6.0_22\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated) O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Programme\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.) O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [ArcadeMovieService] C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe (CyberLink Corp.) O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation) O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) O4 - HKLM..\Run: [MDS_Menu] C:\Program Files (x86)\Acer\clear.fi\MediaEspresso\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [OOTag] C:\Program Files (x86)\Acer\OOBEOffer\OOTag.exe (Microsoft) O4 - HKLM..\Run: [QuickFinder Scheduler] C:\Program Files (x86)\WordPerfect Office X3\Programs\QFSCHD130.EXE (Corel Corporation) O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKU\S-1-5-21-661073328-3994563355-608488981-1000..\Run: [Spybot-S&D Cleaning] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe (Safer-Networking Ltd.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-661073328-3994563355-608488981-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-661073328-3994563355-608488981-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8:64bit: - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm () O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm () O8:64bit: - Extra context menu item: Öffnen mit WordPerfect - C:\Program Files (x86)\WordPerfect Office X3\Programs\WPLauncher.hta () O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm () O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm () O8 - Extra context menu item: Öffnen mit WordPerfect - C:\Program Files (x86)\WordPerfect Office X3\Programs\WPLauncher.hta () O9:64bit: - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.) O9:64bit: - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.) O9 - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.) O9 - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.17.2) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1A118C30-2CA8-4B2E-B4B4-C286496D948D}: DhcpNameServer = 192.168.1.250 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FC0146CB-D635-4396-9061-C318A621634F}: DhcpNameServer = 192.168.2.1 O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.04.25 18:00:29 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess [2013.04.25 17:48:22 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT [2013.04.25 17:47:24 | 000,000,000 | ---D | C] -- C:\JRT [2013.04.25 16:29:05 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN [2013.04.25 15:04:36 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe [2013.04.25 15:04:36 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe [2013.04.25 15:04:36 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe [2013.04.25 14:51:00 | 000,000,000 | ---D | C] -- C:\Users\ACER 5253\Documents\ProcAlyzer Dumps [2013.04.25 14:47:44 | 000,000,000 | ---D | C] -- C:\Qoobox [2013.04.25 14:47:10 | 000,000,000 | ---D | C] -- C:\Windows\erdnt [2013.04.23 21:38:33 | 000,000,000 | ---D | C] -- C:\Users\ACER 5253\Desktop\lalilu [2013.04.23 21:22:40 | 000,000,000 | ---D | C] -- C:\Users\ACER 5253\Desktop\mbar [2013.04.23 19:19:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy [2013.04.23 19:19:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 [2013.04.23 19:18:51 | 000,017,272 | ---- | C] (Safer Networking Limited) -- C:\Windows\SysNative\sdnclean64.exe [2013.04.23 19:18:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2 [2013.04.16 19:15:27 | 000,198,784 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CxAudMsg64.exe [2013.04.16 19:12:57 | 000,498,816 | ---- | C] (Conexant Systems, Inc.) -- C:\Windows\SysNative\UCI64A69.dll [2013.04.16 19:12:56 | 001,548,416 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64AP40.dll [2013.04.16 19:12:56 | 001,495,680 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\drivers\CHDRT64.sys [2013.04.15 19:56:39 | 000,000,000 | ---D | C] -- C:\Users\ACER 5253\Desktop\Lisl und Sascha [2013.04.14 19:31:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes [2013.04.14 19:31:30 | 000,033,240 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys [2013.04.14 19:31:05 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2013.04.14 19:31:03 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2013.04.14 19:31:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes [2013.04.14 19:31:03 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 [2013.04.14 19:29:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update [2013.04.14 19:28:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple [2013.04.14 19:28:39 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2013.04.14 19:28:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour [2013.04.13 14:02:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2013.04.10 19:17:40 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013.04.10 19:17:39 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013.04.10 19:17:38 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013.04.10 19:17:36 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe [2013.04.10 19:17:36 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013.04.10 19:17:36 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013.04.10 19:17:36 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013.04.10 19:17:36 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013.04.10 19:17:35 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013.04.10 19:17:35 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013.04.10 19:17:35 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe [2013.04.10 19:17:34 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013.04.10 19:17:30 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013.04.10 19:17:30 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013.04.10 19:17:29 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013.04.09 19:08:25 | 003,717,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll [2013.04.09 19:08:22 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll [2013.04.09 19:08:20 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll [2013.04.09 19:08:20 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll [2013.04.09 19:08:19 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll [2013.04.09 19:08:19 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll [2013.04.09 19:07:59 | 005,550,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013.04.09 19:07:58 | 003,968,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2013.04.09 19:07:58 | 003,913,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2013.04.09 19:07:57 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe [2013.04.09 19:07:57 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll [2013.04.09 19:07:57 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll [2013.04.09 19:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service [2013.04.05 03:07:39 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2013.04.05 03:07:39 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll [2013.04.05 03:07:39 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll [2013.04.05 03:07:38 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2013.04.05 03:07:38 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2013.04.05 03:07:38 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2013.04.05 03:07:38 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2013.04.05 03:07:38 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2013.04.05 03:07:38 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013.04.05 03:07:38 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2013.04.05 03:07:37 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013.04.05 03:07:37 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2013.04.05 03:07:37 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2013.04.05 03:07:37 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2013.04.05 03:07:37 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2013.04.05 03:07:37 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2013.04.05 03:07:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2013.04.05 03:07:36 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013.04.05 03:07:36 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2013.04.05 03:07:36 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013.04.05 03:07:36 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2013.04.05 03:07:36 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013.04.05 03:07:36 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2013.04.05 03:07:36 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2013.04.05 03:07:36 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2013.04.05 03:07:35 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2013.04.05 03:07:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2013.04.05 03:07:34 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013.04.05 03:07:34 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2013.04.05 03:07:34 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2013.04.05 03:07:34 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013.04.05 03:07:34 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2013.04.05 03:07:34 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2013.04.05 03:07:34 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2013.04.05 03:07:34 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013.04.05 03:07:34 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2013.04.05 03:07:34 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2013.04.05 03:07:34 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2013.04.05 03:07:34 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013.04.05 03:07:34 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2013.04.05 03:07:34 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2013.04.05 03:07:33 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013.04.05 03:07:33 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013.04.05 03:07:33 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2013.04.05 03:07:33 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2013.04.05 03:07:33 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2013.04.05 03:07:33 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2013.04.05 03:07:33 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2013.04.05 03:07:33 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2013.04.05 03:07:33 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll [2013.04.05 03:07:33 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2013.04.05 03:07:33 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2013.04.05 03:07:32 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2013.04.05 03:05:11 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll [2013.04.05 03:05:11 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll [2013.04.05 03:05:11 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll [2013.04.05 03:05:11 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll [2013.04.05 03:05:11 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll [2013.04.05 03:05:10 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll [2013.04.05 03:05:10 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll [2013.04.05 03:05:10 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll [2013.04.05 03:05:10 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll [2013.04.05 03:05:10 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll [2013.04.05 03:05:10 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll [2013.04.05 03:05:10 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll [2013.04.05 03:05:10 | 001,504,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll [2013.04.05 03:05:10 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013.04.05 03:05:10 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll [2013.04.05 03:05:10 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll [2013.04.05 03:05:10 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll [2013.04.05 03:05:10 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2013.04.05 03:05:10 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll [2013.04.05 03:05:10 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll [2013.04.05 03:05:10 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2013.04.05 03:05:10 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll [2013.04.05 03:05:10 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll [2013.04.05 03:05:10 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll [2013.04.05 03:05:10 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll [2013.04.05 03:05:10 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll [2013.04.05 03:05:10 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll [2013.04.05 03:05:10 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll [2013.04.05 03:05:10 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll [2013.04.05 03:05:10 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll [2013.04.05 03:05:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll [2013.04.05 03:05:10 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll [2013.04.04 22:57:08 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2013.03.27 23:04:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SockshareDownloader [2013.03.27 23:04:12 | 000,000,000 | ---D | C] -- C:\Users\ACER 5253\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SockshareDownloader.com [2013.03.27 23:04:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SockshareDownloader.com [2013.03.27 21:49:49 | 000,130,016 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys [2013.03.27 21:49:49 | 000,100,712 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys [2013.03.27 21:49:49 | 000,028,600 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avkmgr.sys [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.04.25 18:07:39 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.04.25 18:07:39 | 000,009,696 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.04.25 18:00:13 | 000,000,400 | ---- | M] () -- C:\Windows\tasks\FinalTorrent Update Checker.job [2013.04.25 17:59:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.04.25 17:59:44 | 2197,999,616 | -HS- | M] () -- C:\hiberfil.sys [2013.04.25 17:13:51 | 000,014,444 | ---- | M] () -- C:\Users\ACER 5253\Desktop\lauftraining.odt [2013.04.25 17:11:01 | 001,498,742 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.04.25 17:11:01 | 000,654,400 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.04.25 17:11:01 | 000,616,242 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.04.25 17:11:01 | 000,130,240 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.04.25 17:11:01 | 000,106,622 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.04.25 15:24:28 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts [2013.04.24 22:51:45 | 000,036,145 | ---- | M] () -- C:\Users\ACER 5253\Desktop\023.jpg [2013.04.24 22:51:38 | 000,040,592 | ---- | M] () -- C:\Users\ACER 5253\Desktop\026.jpg [2013.04.24 22:51:30 | 000,007,549 | ---- | M] () -- C:\Users\ACER 5253\Desktop\Bild002.gif [2013.04.24 22:51:21 | 000,033,780 | ---- | M] () -- C:\Users\ACER 5253\Desktop\024.jpg [2013.04.24 22:51:09 | 000,032,842 | ---- | M] () -- C:\Users\ACER 5253\Desktop\Lieben045.jpg [2013.04.24 22:42:22 | 000,012,482 | ---- | M] () -- C:\Users\ACER 5253\Desktop\index.jpg [2013.04.24 22:41:53 | 000,009,263 | ---- | M] () -- C:\Users\ACER 5253\Desktop\images.jpg [2013.04.23 21:35:37 | 000,000,000 | ---- | M] () -- C:\Users\ACER 5253\defogger_reenable [2013.04.16 19:12:57 | 000,498,816 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysNative\UCI64A69.dll [2013.04.16 19:12:57 | 000,030,895 | ---- | M] () -- C:\Windows\SysNative\drivers\Mixer.ini [2013.04.16 19:12:56 | 001,548,416 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64AP40.dll [2013.04.16 19:12:56 | 001,495,680 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\drivers\CHDRT64.sys [2013.04.16 19:12:54 | 000,198,784 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CxAudMsg64.exe [2013.04.10 19:29:12 | 000,378,504 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013.04.09 19:06:44 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013.04.05 03:07:39 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2013.04.05 03:07:39 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll [2013.04.05 03:07:39 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll [2013.04.05 03:07:38 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2013.04.05 03:07:38 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2013.04.05 03:07:38 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2013.04.05 03:07:38 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2013.04.05 03:07:38 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2013.04.05 03:07:38 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013.04.05 03:07:38 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2013.04.05 03:07:37 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013.04.05 03:07:37 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2013.04.05 03:07:37 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2013.04.05 03:07:37 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2013.04.05 03:07:37 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2013.04.05 03:07:37 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2013.04.05 03:07:37 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2013.04.05 03:07:36 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013.04.05 03:07:36 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2013.04.05 03:07:36 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013.04.05 03:07:36 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2013.04.05 03:07:36 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013.04.05 03:07:36 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2013.04.05 03:07:36 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2013.04.05 03:07:36 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf [2013.04.05 03:07:36 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2013.04.05 03:07:35 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2013.04.05 03:07:35 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2013.04.05 03:07:34 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013.04.05 03:07:34 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2013.04.05 03:07:34 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2013.04.05 03:07:34 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013.04.05 03:07:34 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2013.04.05 03:07:34 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2013.04.05 03:07:34 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2013.04.05 03:07:34 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013.04.05 03:07:34 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2013.04.05 03:07:34 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2013.04.05 03:07:34 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2013.04.05 03:07:34 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013.04.05 03:07:34 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2013.04.05 03:07:34 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2013.04.05 03:07:34 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf [2013.04.05 03:07:33 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013.04.05 03:07:33 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013.04.05 03:07:33 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2013.04.05 03:07:33 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2013.04.05 03:07:33 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2013.04.05 03:07:33 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2013.04.05 03:07:33 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2013.04.05 03:07:33 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2013.04.05 03:07:33 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll [2013.04.05 03:07:33 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2013.04.05 03:07:33 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2013.04.05 03:07:32 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2013.04.05 03:05:11 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll [2013.04.05 03:05:11 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll [2013.04.05 03:05:11 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll [2013.04.05 03:05:11 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll [2013.04.05 03:05:11 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll [2013.04.05 03:05:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll [2013.04.05 03:05:11 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll [2013.04.05 03:05:10 | 003,928,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll [2013.04.05 03:05:10 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll [2013.04.05 03:05:10 | 002,565,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll [2013.04.05 03:05:10 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll [2013.04.05 03:05:10 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll [2013.04.05 03:05:10 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll [2013.04.05 03:05:10 | 001,643,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll [2013.04.05 03:05:10 | 001,504,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll [2013.04.05 03:05:10 | 001,424,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013.04.05 03:05:10 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll [2013.04.05 03:05:10 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll [2013.04.05 03:05:10 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll [2013.04.05 03:05:10 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll [2013.04.05 03:05:10 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll [2013.04.05 03:05:10 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll [2013.04.05 03:05:10 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll [2013.04.05 03:05:10 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll [2013.04.05 03:05:10 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll [2013.04.05 03:05:10 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll [2013.04.05 03:05:10 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll [2013.04.05 03:05:10 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll [2013.04.05 03:05:10 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll [2013.04.05 03:05:10 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll [2013.04.05 03:05:10 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll [2013.04.05 03:05:10 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll [2013.04.05 03:05:10 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll [2013.04.05 03:05:10 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll [2013.04.04 22:56:43 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll [2013.04.04 22:56:43 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll [2013.03.27 21:49:18 | 000,130,016 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys [2013.03.27 21:49:18 | 000,100,712 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys [2013.03.27 21:49:18 | 000,028,600 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avkmgr.sys [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.04.25 15:04:36 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe [2013.04.25 15:04:36 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe [2013.04.25 15:04:36 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2013.04.25 15:04:36 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe [2013.04.25 15:04:36 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2013.04.24 22:51:45 | 000,036,145 | ---- | C] () -- C:\Users\ACER 5253\Desktop\023.jpg [2013.04.24 22:51:37 | 000,040,592 | ---- | C] () -- C:\Users\ACER 5253\Desktop\026.jpg [2013.04.24 22:51:29 | 000,007,549 | ---- | C] () -- C:\Users\ACER 5253\Desktop\Bild002.gif [2013.04.24 22:51:20 | 000,033,780 | ---- | C] () -- C:\Users\ACER 5253\Desktop\024.jpg [2013.04.24 22:51:07 | 000,032,842 | ---- | C] () -- C:\Users\ACER 5253\Desktop\Lieben045.jpg [2013.04.24 22:42:22 | 000,012,482 | ---- | C] () -- C:\Users\ACER 5253\Desktop\index.jpg [2013.04.24 22:41:50 | 000,009,263 | ---- | C] () -- C:\Users\ACER 5253\Desktop\images.jpg [2013.04.23 21:35:37 | 000,000,000 | ---- | C] () -- C:\Users\ACER 5253\defogger_reenable [2013.04.23 19:19:01 | 000,002,189 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk [2013.04.16 19:12:57 | 000,030,895 | ---- | C] () -- C:\Windows\SysNative\drivers\Mixer.ini [2013.04.14 19:29:38 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk [2013.04.08 18:32:55 | 000,001,163 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2013.04.05 03:07:36 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf [2013.04.05 03:07:34 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf [2013.02.26 22:40:53 | 000,012,288 | -H-- | C] () -- C:\Users\ACER 5253\photothumb.db [2012.11.05 04:05:29 | 001,768,720 | ---- | C] () -- C:\Users\ACER 5253\IMG_0038.JPG [2012.11.05 04:05:29 | 001,614,327 | ---- | C] () -- C:\Users\ACER 5253\IMG_0040.JPG [2012.11.03 23:06:06 | 001,750,798 | ---- | C] () -- C:\Users\ACER 5253\IMG_0900.JPG [2012.11.03 23:06:06 | 001,740,119 | ---- | C] () -- C:\Users\ACER 5253\IMG_0899.JPG [2012.11.03 23:06:06 | 001,729,771 | ---- | C] () -- C:\Users\ACER 5253\IMG_0896.JPG [2012.11.03 23:06:06 | 001,721,021 | ---- | C] () -- C:\Users\ACER 5253\IMG_0898.JPG [2012.11.03 23:06:06 | 001,718,344 | ---- | C] () -- C:\Users\ACER 5253\IMG_0905.JPG [2012.11.03 23:06:06 | 001,717,199 | ---- | C] () -- C:\Users\ACER 5253\IMG_0904.JPG [2012.11.03 23:06:06 | 001,704,746 | ---- | C] () -- C:\Users\ACER 5253\IMG_0897.JPG [2012.11.03 23:06:06 | 001,697,340 | ---- | C] () -- C:\Users\ACER 5253\IMG_0902.JPG [2012.11.03 23:06:06 | 001,682,390 | ---- | C] () -- C:\Users\ACER 5253\IMG_0903.JPG [2012.11.03 23:06:06 | 001,653,794 | ---- | C] () -- C:\Users\ACER 5253\IMG_0901.JPG [2012.01.17 14:23:27 | 000,000,236 | ---- | C] () -- C:\Users\ACER 5253\AppData\Roaming\wklnhst.dat [2011.11.21 21:48:37 | 000,000,425 | ---- | C] () -- C:\Windows\BRWMARK.INI [2011.11.21 21:48:37 | 000,000,027 | ---- | C] () -- C:\Windows\BRPP2KA.INI [2011.11.21 21:42:42 | 000,000,302 | ---- | C] () -- C:\Windows\Brpfx04a.ini [2011.11.21 21:42:42 | 000,000,093 | ---- | C] () -- C:\Windows\brpcfx.ini [2011.11.21 21:40:01 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat [2011.11.18 19:52:20 | 000,000,952 | -HS- | C] () -- C:\Windows\SysWow64\KGyGaAvL.sys [2011.11.04 17:57:24 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin ========== ZeroAccess Check ========== [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 05:19:04 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:E36F5B57 < End of report > Code:
ATTFilter OTL Extras logfile created on: 25.04.2013 18:04:27 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ACER 5253\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
2,73 Gb Total Physical Memory | 1,71 Gb Available Physical Memory | 62,57% Memory free
5,46 Gb Paging File | 4,09 Gb Available in Paging File | 74,96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 282,99 Gb Total Space | 201,29 Gb Free Space | 71,13% Space Free | Partition Type: NTFS
Computer Name: ACER5253-PC | User Name: ACER 5253 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[HKEY_USERS\S-1-5-21-661073328-3994563355-608488981-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07C0B29B-5F31-48BE-BA60-7344E340B5B4}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{133DBA6E-38C2-4061-AAAD-00406D558BE0}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1509F1AF-59DF-4260-AF6B-99A3C8197ED0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{1CBE3BF4-64BF-4203-B44D-15A00E2F577A}" = rport=10243 | protocol=6 | dir=out | app=system |
"{1E90A8CF-7B79-48C7-BA51-36936D935E34}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2C477880-8C07-4677-A731-A8480B256A7F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4C3DC845-5A1F-45E2-92E1-8CA9DCE13385}" = lport=445 | protocol=6 | dir=in | app=system |
"{4EC3DF6A-06A8-4FF6-84E1-3D5F91DCDA36}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{55B5FDDD-7242-405F-A963-2FF1BDF10721}" = rport=445 | protocol=6 | dir=out | app=system |
"{5613D96F-27AB-4995-B379-90487AE616D5}" = lport=139 | protocol=6 | dir=in | app=system |
"{5AB39441-529B-4C99-881C-DE864CACBA27}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5B7677E5-CDDC-4671-B488-F809FE379CFD}" = rport=139 | protocol=6 | dir=out | app=system |
"{5DE62171-2FA5-4C00-BAFA-47F405A8776A}" = rport=138 | protocol=17 | dir=out | app=system |
"{85F4C852-3907-400A-A69E-1F71064BF90B}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9D59C4ED-893B-452A-B93A-B951E3654B22}" = lport=138 | protocol=17 | dir=in | app=system |
"{A86B845F-46F1-4A4C-8BBB-C635441221D7}" = lport=137 | protocol=17 | dir=in | app=system |
"{B46FE14B-A010-4A3A-852C-BF0F810A5E19}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D44EA264-4AD0-42FA-B227-EC62043A812C}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DBD88D76-7710-42F0-B948-A1F14B9CFA8A}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E70EB191-CBAE-433E-AC68-EE0173C51755}" = rport=137 | protocol=17 | dir=out | app=system |
"{FEC154A7-7B38-40C7-90DA-F70C19B9AB5E}" = lport=2869 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0201957F-22AF-4787-8314-D0F4939E7EE7}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{03EF4071-5674-4E91-AA64-D2B6381DAAB2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{03FC83C7-5F3E-42FE-94AA-7F2345077443}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\clear.fiagent.exe |
"{050ACF9A-C393-4012-9CA6-0DE858316012}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0702FE44-1AFC-482B-8191-F0E6A3A39AB5}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{09773290-DA77-4684-945E-C64E73C3ABA1}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{24958058-21DC-441F-B221-1A14D37B6FE5}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{28970A55-5E4F-478B-9212-AC736869A435}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\.\kernel\dmr\dmrengine.exe |
"{37512B6D-22BF-41C2-B77B-50EE70509526}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{454B48F3-0953-41A7-9F51-FBBCD53D64E3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{49F7F48B-0709-4337-9711-A613D261EF00}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{50061AC2-1332-4001-9DCC-14EAA2E94662}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{56295C30-A299-4251-A10C-4A888FFB1FE0}" = protocol=6 | dir=out | app=system |
"{56B83162-D760-4A46-8C83-D11D9F1DC7F0}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\clear.fi.exe |
"{5727F47C-43B4-404C-B4CE-4239EA461116}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6002A672-0EA9-46EB-8C3D-0489F8123312}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{69DE4B57-51A1-4804-B081-9DC4F55CC677}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\.\kernel\dmr\dmrengine.exe |
"{7C810439-DCCF-44B4-8E2D-1A9CAF80BCF8}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{855D22A1-E287-48C2-8200-270C464346F0}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{921C2B3F-D005-49DF-9663-348E0E58CB6F}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{93601BE4-4AD8-4405-8A6A-E3D0F0C5CD9E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{94FDD36E-BC92-4172-A4B4-BA9145E58420}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9D45C406-2947-461F-99AD-C370563BCAD1}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{9D7828C7-786F-4A7F-B870-3C1660C45B87}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A0C575F4-ED0B-428B-A2C4-BE84C768D930}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{A0D17912-09D6-471A-81AC-E2925F5E165E}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A5F7BAD3-D1EB-40DA-9A0A-A899D81F92A0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{BD8B6D26-D3A2-4596-A113-B2868C78B5BB}" = dir=in | app=c:\program files (x86)\finaltorrent\finaltorrent.exe |
"{CE939640-D9DF-4AB3-9BB2-89F810CC4FEC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CFD6525F-6169-4B45-A0A9-84219811B982}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D1E82436-5D98-4870-95AE-330AB2601F22}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\.\kernel\clml\clmlsvc.exe |
"{D39A445E-4639-45D6-8092-0D7B62CDE8B1}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{DCF714DE-01D6-4FD5-BE38-A045165369E1}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E65A60D4-8CA6-44EC-8332-FFC3BE43A6ED}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F048686C-1E7D-47B1-A9A3-6F7BD52001E8}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\.\kernel\dmr\dmrengine.exe |
"{F0839961-BE3B-48D5-B2D3-28A73930D016}" = dir=in | app=c:\program files (x86)\finaltorrent\ftcheckforupdates.exe |
"{F67F82A5-56D9-4759-9BA9-F45743C4985D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F9AC9E5D-0BE3-4C96-916B-26D260702BBC}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"TCP Query User{6107EAAA-3C63-4E33-86EC-C178A5ABDD69}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{6739B211-31E8-49AC-ABD8-F8D472182BC5}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{FE4315CB-ECE1-4532-AB2D-B649AFE60838}C:\program files (x86)\icq7.7\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"UDP Query User{935CC34D-5B91-44A3-8E0B-B1801A39ED0D}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{A50DD400-4011-4900-A419-2A9BFA9FFBB8}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{C986506E-759F-4F38-9E40-E862AA5EE2FC}C:\program files (x86)\icq7.7\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0225AD21-F3E2-4916-BFF3-65D3F9052582}" = iTunes
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4F125E8B-3B58-B80D-51E5-4FD110D1EF58}" = ATI Catalyst Install Manager
"{56D8EE9D-5411-4DEE-6CFB-C720A07FDCAB}" = ccc-utility64
"{5850E3A0-1096-5C2D-C296-D9C2B00E8855}" = AMD Fuel
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{EE24C28A-6BE1-5138-7CC7-854E9EB3757C}" = WMV9/VC-1 Video Playback
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Elantech" = ETDWare PS/2-X64 8.0.6.0_WHQL
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"TeamSpeak 3 Client" = TeamSpeak 3 Client
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{54DB13F1-0CE0-4BAB-BD5F-7DE150C043C8}" = WordPerfect Office X3
"{0959BCF5-05D5-9F2B-0965-1A27A533C492}" = CCC Help Polish
"{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}" = Backup Manager V3
"{1292DD8E-474E-7D7C-5FF9-B4A7639D435A}" = CCC Help Czech
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = clear.fi
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2D234FAE-7FE2-5002-2B63-8CDEA2BD0B60}" = CCC Help Hungarian
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{35168310-7EE6-AD4E-84F3-73960642561C}" = Catalyst Control Center Localization All
"{366234D5-16FC-9EA2-5881-08B8CC44D36D}" = CCC Help Greek
"{37AAE8BF-DC98-1937-CDE9-9CE61833A252}" = CCC Help Japanese
"{39D0E034-1042-4905-BECB-5502909FCB7C}" = Microsoft Works
"{3A915C0E-0168-0E43-B5A4-949136DF0C33}" = Catalyst Control Center Profiles Mobile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
"{43AAE145-83CF-4C96-9A5E-756CEFCE879F}" = clear.fi Client
"{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}" = Apple Application Support
"{45CBA375-6ECC-EA3C-5EC3-E06A16DFD9A8}" = CCC Help Thai
"{477878A3-24BC-98D5-B447-417E4FF30218}" = CCC Help Korean
"{4968622A-4D3F-489E-9ACE-5FEC4CC0BDE3}" = MediaEspresso
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{4EF87BA4-A1C8-818D-81B4-A211B8D817C7}" = CCC Help Portuguese
"{508457D2-6156-EE57-2F7D-8DCB90B2BCF2}" = CCC Help Russian
"{52D36E31-AE4A-8E99-8B6B-F04A306AC4E7}" = CCC Help Chinese Standard
"{54D986DF-0B7F-244D-9A36-A52CF36D8633}" = CCC Help Norwegian
"{54DB13F1-0CE0-4BAB-BD5F-7DE150C043C8}" = WordPerfect Office X3
"{58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1" = Acer GameZone Console
"{5A4D2D53-D233-4FAE-FB7D-9101B46C9F53}" = CCC Help Italian
"{5A8EBCAE-71F2-F101-E86E-8E128A47401C}" = CCC Help French
"{5D43581B-77CC-CA01-5D4F-34215870EBE8}" = CCC Help Swedish
"{624B8C52-419F-48BF-704F-0DE2BEC1E323}" = Catalyst Control Center InstallProxy
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{7FDDD338-24AD-E75E-E0A7-82CDAE803378}" = CCC Help Danish
"{823FB107-94F5-405C-8B3D-6F6E66C3A310}" = Catalyst Control Center - Branding
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{903E5724-3250-163F-017F-33030AAEA16B}" = CCC Help Spanish
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C0E3DA8-408A-39D3-855D-3440E38F3D83}" = ccc-core-static
"{9E9AED59-2E4B-C3BB-D036-9392A3898E20}" = CCC Help English
"{9EC9754D-CA34-4293-B5DB-3BD245A88A43}" = ArcSoft MediaImpression
"{A0382E3C-7384-429A-9BFA-AF5888E5A193}" = Acer Crystal Eye Webcam
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}" = Brother MFL-Pro Suite
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.5.4 MUI
"{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy
"{B906C11A-D193-4143-9FA7-E2EE8A5A8F21}" = clear.fi
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{CABA6C97-8680-D8C4-7DAA-A8D1CC230370}" = Catalyst Control Center Graphics Previews Common
"{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"{DB9AA311-9119-5466-BE82-6CD37304FE42}" = CCC Help Dutch
"{E15555E9-386B-B748-7C94-4F2591ADCB63}" = CCC Help Chinese Traditional
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F5FCABF0-E2AF-6A70-3971-67C8B1310480}" = CCC Help Finnish
"{FEE720F0-7A20-A61E-D56B-90DB02655B78}" = CCC Help German
"Acer Registration" = Acer Registration
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Amazon MP3-Downloader" = Amazon MP3-Downloader 1.0.17
"Avira AntiVir Desktop" = Avira Free Antivirus
"FinalTorrent_is1" = FinalTorrent 2011
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.12.0.128
"Identity Card" = Identity Card
"InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}" = Acer Backup Manager
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = clear.fi
"InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}" = Acer Crystal Eye Webcam
"InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.70.0.1100
"Minecraft Cracked" = Minecraft Cracked
"Mozilla Firefox 20.0.1 (x86 de)" = Mozilla Firefox 20.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PhotoScape" = PhotoScape
"TeamViewer 8" = TeamViewer 8
"Trusted Software Assistant_is1" = File Type Assistant
"VLC media player" = VLC media player 1.1.9
========== Last 20 Event Log Errors ==========
[ Spybot - Search and Destroy Events ]
Error - 23.04.2013 14:40:08 | Computer Name = ACER5253-PC | Source = SDCleaner | ID = 100
Description = LoadCleaningInstructions
[ System Events ]
Error - 25.04.2013 12:00:01 | Computer Name = ACER5253-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
AMD FUEL Service erreicht.
Error - 25.04.2013 12:00:01 | Computer Name = ACER5253-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "AMD FUEL Service" wurde aufgrund folgenden Fehlers nicht
gestartet: %%1053
< End of report >
|
|
25.04.2013, 22:06
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | CouponDropDown kommt immer wieder Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes - denk bitte vorher daran, Malwarebytes über den Updatebutton zu aktualisieren Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
26.04.2013, 17:26
| #13 |
| | CouponDropDown kommt immer wieder Hier die Logs. Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.04.25.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16540 ACER 5253 :: ACER5253-PC [Administrator] 25.04.2013 23:10:10 mbam-log-2013-04-25 (23-10-10).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 240575 Laufzeit: 6 Minute(n), 38 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=30166cd592d0c642b8af3b315a016e42
# engine=13697
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-04-26 04:17:41
# local_time=2013-04-26 06:17:41 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 96 77695 137660766 70449 0
# compatibility_mode=5893 16776574 100 94 3018334 118622911 0 0
# scanned=187126
# found=2
# cleaned=0
# scan_time=68160
sh=31E0683A4969DDE6FED786373CC60D974CD848F7 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.NVO trojan" ac=I fn="C:\Users\ACER 5253\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\588846f6-3f05464e"
sh=338654E9C29E1809D1D7838B9961FE193AD91DAC ft=1 fh=b66dbde0d68dccc1 vn="Win32/Adware.1ClickDownload.W application" ac=I fn="C:\Users\ACER 5253\Downloads\The.Cabin.In.The.Woods.German.2011.AC3.DVDRiP.XViD.iNTERNAL-CiA.exe"
|
|
26.04.2013, 22:48
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | CouponDropDown kommt immer wiederZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
26.04.2013, 23:10
| #15 |
| | CouponDropDown kommt immer wieder Das ist ein Film.. ein Horrorfilm.. Wieso?? |
|
| Themen zu CouponDropDown kommt immer wieder |
| .html, adware, besser, coupondropdown, falsches, fenster, immer wieder, kommt immer wieder, könntet, lieber, lästige, malware / spyware, schön, seite, seiten, thread, troja, trojaner-board, versuch, ähnlich |
Linear-Darstellung
