Trojaner-Board
Seite 2 von 4 1 2 34
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Weißer Bildschirm nach Start von Windows 7 (https://www.trojaner-board.de/137159-weisser-bildschirm-start-windows-7-a.html)

schrauber 26.06.2013 19:24
Welches Antivirenprogramm ist installiert?

breakz 26.06.2013 19:41
AVAST
&
Malwarebytes-Anti-Malware

schrauber 26.06.2013 19:46
Avast hat ein gelb-orangenes Symbol unten neben der Uhr, müsste sogar ein A drin sein. Rechtsklick, Schutz deaktivieren.

breakz 26.06.2013 19:47
ok danke :)

so,
Code:
ComboFix 13-06-25.01 - Duc Huy 26.06.2013  21:34:59.1.4 - x64
Microsoft Windows 7 Home Premium  6.1.7601.1.1252.49.1031.18.3767.2684 [GMT 2:00]
ausgeführt von:: c:\users\Duc Huy\Desktop\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\FullRemove.exe
.
.
(((((((((((((((((((((((((((((((((((((((  Treiber/Dienste  )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_DCService.exe
.
.
(((((((((((((((((((((((  Dateien erstellt von 2013-05-26 bis 2013-06-26  ))))))))))))))))))))))))))))))
.
.
2013-06-26 19:42 . 2013-06-26 19:42        --------        d-----w-        c:\users\UpdatusUser\AppData\Local\temp
2013-06-26 19:42 . 2013-06-26 19:42        --------        d-----w-        c:\users\Default\AppData\Local\temp
2013-06-25 13:23 . 2013-06-25 13:23        --------        d-----w-        C:\FRST
2013-06-25 10:45 . 2013-06-12 03:08        9552976        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{8D6B138E-E03C-466B-81EA-8D664DB54C6D}\mpengine.dll
2013-06-25 07:06 . 2013-06-25 07:06        --------        d-----w-        c:\users\Duc Huy\AppData\Roaming\Malwarebytes
2013-06-25 07:06 . 2013-06-25 07:06        --------        d-----w-        c:\programdata\Malwarebytes
2013-06-25 07:06 . 2013-06-25 07:06        --------        d-----w-        c:\program files (x86)\Malwarebytes' Anti-Malware
2013-06-25 07:06 . 2013-04-04 12:50        25928        ----a-w-        c:\windows\system32\drivers\mbam.sys
2013-06-22 21:34 . 2013-05-09 08:59        33400        ----a-w-        c:\windows\system32\drivers\aswFsBlk.sys
2013-06-22 21:34 . 2013-05-09 08:59        378432        ----a-w-        c:\windows\system32\drivers\aswSP.sys
2013-06-22 21:34 . 2013-05-09 08:59        72016        ----a-w-        c:\windows\system32\drivers\aswRdr2.sys
2013-06-22 21:34 . 2013-05-09 08:59        64288        ----a-w-        c:\windows\system32\drivers\aswTdi.sys
2013-06-22 21:34 . 2013-05-09 08:59        189936        ----a-w-        c:\windows\system32\drivers\aswVmm.sys
2013-06-22 21:34 . 2013-05-09 08:59        1025808        ----a-w-        c:\windows\system32\drivers\aswSnx.sys
2013-06-22 21:34 . 2013-05-09 08:59        65336        ----a-w-        c:\windows\system32\drivers\aswRvrt.sys
2013-06-22 21:34 . 2013-05-09 08:59        80816        ----a-w-        c:\windows\system32\drivers\aswMonFlt.sys
2013-06-22 21:34 . 2013-05-09 08:58        287840        ----a-w-        c:\windows\system32\aswBoot.exe
2013-06-22 21:33 . 2013-05-09 08:58        41664        ----a-w-        c:\windows\avastSS.scr
2013-06-22 21:33 . 2013-06-22 21:33        --------        d-----w-        c:\program files\AVAST Software
2013-06-22 21:32 . 2013-06-22 21:33        --------        d-----w-        c:\programdata\AVAST Software
2013-06-17 18:51 . 2013-06-17 18:51        --------        d-----w-        c:\users\Gast
2013-06-13 14:55 . 2013-05-17 01:25        257536        ----a-w-        c:\program files (x86)\Internet Explorer\ieproxy.dll
2013-06-13 14:37 . 2013-04-26 05:51        751104        ----a-w-        c:\windows\system32\win32spl.dll
2013-06-05 19:09 . 2013-06-05 19:09        --------        d-----w-        c:\program files\McAfee
2013-05-30 20:31 . 2013-06-04 00:30        --------        d-----w-        c:\users\DefaultAppPool
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-26 19:43 . 2013-05-18 16:54        4194304        ----a-w-        c:\windows\ServiceProfiles\NetworkService\msmqlog.bin
2013-06-13 17:50 . 2011-06-13 18:34        75825640        ----a-w-        c:\windows\system32\MRT.exe
2013-06-13 14:43 . 2013-03-07 15:51        692104        ----a-w-        c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-13 14:43 . 2011-09-27 17:52        71048        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-12 15:36 . 2012-08-18 15:44        22240        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-02 00:06 . 2011-10-09 11:16        278800        ------w-        c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-17 11:51        135168        ----a-w-        c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-17 11:51        350208        ----a-w-        c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-17 11:51        308736        ----a-w-        c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-17 11:51        111104        ----a-w-        c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-17 11:51        474624        ----a-w-        c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-17 11:51        2176512        ----a-w-        c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 15:03        1656680        ----a-w-        c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-17 11:51        265064        ----a-w-        c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-17 11:51        983400        ----a-w-        c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-17 11:51        3153920        ----a-w-        c:\windows\system32\win32k.sys
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:40        120176        ----a-w-        c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-04-13 284696]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-05-27 337264]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-08-10 975952]
"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2010-03-11 201584]
"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2010-03-11 407920]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-06-28 265984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ew_mbbusbdev;MBB USB PNP Device;c:\windows\system32\DRIVERS\ew_mbbusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_mbbusbdev.sys [x]
R3 mbbdatacard;MBB DataCard USB Modem and USB Serial;c:\windows\system32\DRIVERS\ewusbmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbmdm.sys [x]
R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [x]
R3 netr7364;RT73 USB-Drahtlos-LAN-Kartentreiber für Vista;c:\windows\system32\DRIVERS\netr7364.sys;c:\windows\SYSNATIVE\DRIVERS\netr7364.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/12/20 11:15];c:\program files (x86)\CyberLink\PowerDVD9\000.fcl;c:\program files (x86)\CyberLink\PowerDVD9\000.fcl [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs        REG_MULTI_SZ          w3svc was
apphost        REG_MULTI_SZ          apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-21 18:20        1173456        ----a-w-        c:\program files (x86)\Google\Chrome\Application\28.0.1500.52\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-07 14:43]
.
2013-06-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-26 18:07]
.
2013-06-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-26 18:07]
.
2013-06-26 c:\windows\Tasks\Updater.job
- c:\programdata\WombatUpdater\WombatUpdater.exe [2010-12-30 09:26]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58        133840        ----a-w-        c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:42        137584        ----a-w-        c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-06-22 10920552]
"MsmqIntCert"="mqrt.dll" [2010-11-20 247808]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-06-11 861216]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-23 415256]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-23 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-23 386584]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-05-27 349552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://isearch.babylon.com/?babsrc=HP_ss&mntrId=F66302F46A68CAB9
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
HKLM-Run-ETDWare - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD9\000.fcl"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-1449787110-2859673565-2760000832-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-1449787110-2859673565-2760000832-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Wondershare\Wondershare Helper Compact\1937331036\tem32\WindowsPowerShell\v1.0;c:\program files (x86)\EgisTec MyWinLocker\x86;c:\program files (x86)\EgisTec MyWinLocker\x64;c:\program files (x86)\Windows Live\Shared;*PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC*PROCESSOR_ARCHITECTURE=x86*]
"JoinUserExperience"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Wondershare\Wondershare Helper Compact\1985768556\1.0;c:\program files (x86)\EgisTec MyWinLocker\x86;c:\program files (x86)\EgisTec MyWinLocker\x64;c:\program files (x86)\Windows Live\Shared;*PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC*PROCESSOR_ARCHITECTURE=x86*PROCESSOR_ARCHITEW6432=AM]
"JoinUserExperience"=dword:00000001
DUMPHIVE0.003 (REGF)
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-06-26  21:50:45 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2013-06-26 19:50
.
Vor Suchlauf: 11 Verzeichnis(se), 428.607.942.656 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 428.151.902.208 Bytes frei
.
- - End Of File - - 5B74FF46DBC19A8E92A24157FF589FB3
D41D8CD98F00B204E9800998ECF8427E
kann ich jzt die virenprogramme wieder aktivieren?

schrauber 27.06.2013 07:20
Zitat:
kann ich jzt die virenprogramme wieder aktivieren?
zwischen den Scans ja :)

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.



ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST Log bitte. Noch Probleme?

breakz 27.06.2013 09:31
also 4 programme installieren und scannen..
ganz schön viel arbeit :/
mach ich aber.. :)

lg

schrauber 27.06.2013 09:41
Jap :)

breakz 27.06.2013 12:33
hi,
hier ist die logdatei v. adwcleaner

Code:
# AdwCleaner v2.303 - Datei am 27/06/2013 um 13:27:12 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : Duc Huy - HUY-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Duc Huy\Desktop\Downloads\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Ordner Gelöscht : C:\Program Files (x86)\Common Files\Wondershare
Ordner Gelöscht : C:\Program Files (x86)\Iminent
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\Users\Duc Huy\AppData\Local\Wondershare
Ordner Gelöscht : C:\Users\Duc Huy\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\Duc Huy\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Duc Huy\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
Ordner Gelöscht : C:\Users\Duc Huy\AppData\Roaming\file scout
Ordner Gelöscht : C:\Users\Duc Huy\AppData\Roaming\PerformerSoft
Ordner Gelöscht : C:\Users\Duc Huy\AppData\Roaming\SpeedAnalysis2

***** [Registrierungsdatenbank] *****

Schlüssel Gelöscht : HKCU\Software\BabylonToolbar
Schlüssel Gelöscht : HKCU\Software\filescout
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar

***** [Internet Browser] *****

-\\ Internet Explorer v10.0.9200.16611

Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://isearch.babylon.com/?babsrc=HP_ss&mntrId=F66302F46A68CAB9 --> hxxp://www.google.com

-\\ Google Chrome v28.0.1500.52

Datei : C:\Users\Duc Huy\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Die Datei ist sauber.

-\\ Opera v [Version kann nicht ermittelt werden]

Datei : C:\Users\Duc Huy\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Die Datei ist sauber.

*************************

AdwCleaner[S1].txt - [12445 octets] - [27/06/2013 13:27:12]

########## EOF - C:\AdwCleaner[S1].txt - [12506 octets] ##########
der rest folgt heute abned, weil ich jzt erstmal zur arbeit muss ;)

lg

schrauber 27.06.2013 13:49
ok :)

breakz 27.06.2013 20:05
junkware:

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Duc Huy on 27.06.2013 at 20:57:38,64
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\performersoft llc



~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{015EB3F9-6055-479F-9957-51565EE0A788}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0374ED22-F4AE-45E9-8B79-D95DDEA3EF3C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{03D6FD29-D6B4-4002-8B06-9A5A77E52531}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0400A1B9-0729-4AC6-8FC4-D782CBE6DD3A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0475BD39-FD42-4E89-B41D-FAF325FFCEC8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{04DEE057-692A-4328-8BA3-44036651BF9B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{05528AC7-9821-423B-B81B-DB3147617547}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{060983C9-C536-4CA2-B45D-35D8D78203F3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0691CA65-EC0E-4517-9DB2-20EA67E7435A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{072983C4-2409-4C7E-BDB3-CE51AE8F62D6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{07D4F60A-4E31-45F4-8512-7907588D6CE6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0803F8B3-E011-4170-93A1-DFE0A6D6FAD8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{086E8C98-6846-4860-B84F-239BC0FAE03F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{08D17AF4-7E28-4785-893D-0BB6B469E13B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{092C2B24-878F-4467-84B4-170F9E53ADAE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{094B017D-5DB4-43E7-A534-0AA47C510D41}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{097BA0A3-9A44-42B4-A39D-2FA73327AC25}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{09E38833-4746-4041-81D9-CF342CD0F3C1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0A19B613-3612-4F95-9551-27D4B71C06A6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0A2B278E-F179-4F8A-AF43-D840DF0436E2}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0CED3F69-00E7-4051-A8BB-43406AA5FD9F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0D598496-9D99-430C-A327-4A763522B477}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0D68C0D5-4227-43FF-B5FE-CA347D5B0ADF}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0DDC004D-CBD4-4AD3-A064-29245F064604}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{0F5B5EE2-71F2-409B-BDC4-5A53EC2A1B03}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{11DA784E-2A5A-4612-AD6B-5FA8080E8216}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{11E3ACF8-5FB1-4DED-A2E5-5F158FC0E294}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{12595F5B-4A4E-45E6-AA86-0D0B4358D2C5}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{12D41169-7E05-4B51-8824-EF967FB36E88}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{144AD1CC-AB4F-4C59-BB4F-17B607F2ADFE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{14CB3F0D-2086-4754-9B7F-FF9102CB0ED2}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{14D871EE-D1BC-4C8E-ABFE-E80859029858}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1568C21A-9F78-4412-8087-F95CEC221BB0}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{16109C76-552B-483F-B433-ED3A35DADFD1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{163B55AD-314D-4232-A5E0-10C8030D2D60}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{174F7830-A6A6-4D47-8131-CB09E4160FB3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{17ED50FD-A555-48C8-A65A-2E1F6A09C1D8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1ACD6A8D-54D8-44C1-A90A-5004A7411559}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1BF97E15-8846-416E-BCC2-CA8861E5398F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1C4951E2-9696-47BD-A9BC-FAC7F4C216AE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1C92D94C-3408-469C-B8DC-821ED4D0D970}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1D5E1C2D-E0B6-4810-AF0B-43B0ED910281}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1E25DFBA-A0F6-4031-98A2-65577F9B12A3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1E675613-27A4-4B3A-BB2C-FCECDC2F522C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1EB51308-2715-4051-9AE8-A7A96ABD0415}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1F8B4F59-1CED-4E90-96A4-D7173702DE7C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1FC3D929-2F96-4129-9751-2F19EB7CB884}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1FEF06E1-4117-4277-A0C8-B1A888AA0ACB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{1FF7DF76-1FE3-419F-A52B-89382C83FC0A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{20D81FD9-965B-4A25-B8BC-89253B4B6492}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{211AA36C-9A86-4177-A82B-18F3CADB1C1A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{218BA05E-CA38-4224-A43B-3C06424C79D4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{21C60519-FE3F-4C8F-8909-7A70712E401C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{21DA88AF-5C05-4E8C-9104-839754AAD6AA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2246DAF2-44DC-4B4F-AE4D-5B0F708B7F21}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{227BC9F7-C5EE-4316-BACA-8D7B7896BEA5}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{22DE32A3-7A4D-463D-B150-65D98596DC71}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{22EC5D4A-3376-4A2C-95B2-4B54EC4B4E42}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{231F9AE3-ED96-4C67-B455-B5FA9F303398}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{232D2C65-CB20-4F24-BFEA-0ABEFD2B7B88}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{24782591-7EB4-4268-8F95-5E9C1F618725}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{25B9A21B-EFC8-4316-A2FD-A1F927879878}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{26AE6DE2-C990-470B-891D-32868BE3AC1A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{26F62321-4180-4FAD-9C27-EAF9A7B01F7D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{27FE7949-16E2-4D50-8BF7-079A13FC4A13}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{283E01EE-749F-4967-8D91-8000A20BB490}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{28C20AB8-96EA-47C7-B3EA-0CE36837048E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{29946AD0-7CBB-4FE1-8F3D-418BC4AE8CFE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2A364D2D-E93A-46F4-A8ED-BAF3C6A9CF1B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2A593330-899A-4245-8EF4-596AEBA7D3F2}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2B0BBA1B-D740-4416-936D-71CAC7B1FFFC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2BC0832C-06F8-44A9-9DC5-ECF1ABF6CC53}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2C280257-7E63-40C4-BEAB-1700F37AC9B8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2C3E70B8-84C2-4813-B046-36788D989CF1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2C90BB6B-31BE-45FF-86DA-D27C6131A182}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2E7C5AAC-03A0-416D-B4E5-C6C024EFBDF4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2EA287E4-4456-46F7-9273-7D383A137E28}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2EFB4962-34B3-4146-B455-5D26B0923C98}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{2F55E3EE-4D3F-4CC0-8482-4726D7D13C35}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{30D5351C-A513-4341-B552-2907D1CBE67B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{324B9C6B-7AEF-40A8-A67D-7114AE7DC83E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{326E885E-2182-4A7B-812B-9082B74F12D4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{32AEE981-7D4C-466B-ADEB-D5C71D72CDE5}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{332D8592-8A5A-4786-A2DB-AC40413467E0}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{33BD9B5E-E506-4BA1-8A7C-05E3279C908A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{35B589BE-CE68-40E0-8E1D-4243173F4330}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{36024EB5-F41A-4AAC-BE88-DFC728A487CF}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3773FA59-019A-4817-BC11-59E950869CF5}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{37DC78B3-844D-4847-8C15-5161CC477579}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{392C9107-1882-4F93-A1FE-2D6DFF9841F5}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{39710DC2-013C-4246-8A66-A8ECACA21138}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3A1C1906-8727-40C4-BF8B-0D3433A2F85C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3B8A73A8-7A45-498A-A84D-8B1B56ABAB86}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3BBFCC05-CD49-4683-8780-586E543457FD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3C84B0CC-0E11-4E58-B86A-45D9427E3164}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3C91DC28-55C9-40B2-89CC-EA34950EE331}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3C9531EF-BA02-4A1D-ABBE-112A6215E3C7}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3CC8F322-FBD6-4432-86ED-625467984FCC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3E926529-E0FF-49A8-B699-17E865A051E8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{3F89BAD5-3672-4C42-BA7D-7E2D21DF68F9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{404A8804-62A0-4E38-A47B-E524640B446C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{404D1BD9-3FAC-4A11-AA3A-340430016852}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{408F5E0E-CE1C-43D4-BD52-75191058BACD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{40D812B1-A6BA-4D5B-8374-EFCA0FCCD665}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{40F04497-D976-42B3-BCCA-481A1151025E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4119AAF6-4CC8-4371-9CA8-E6B94722E84B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{42330FF8-0B20-4062-9255-1856D1AE2859}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4233FDCB-2D34-4C88-9238-4EF5DA7199F4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{431E9DD7-EE55-42CD-A777-440DC1AA311A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4367F4E0-F99E-4912-B237-6167E1FFF1B2}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{43D65979-F1FA-442A-87F0-E07374EF1683}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{44D7ADF4-B81B-44B5-8FB8-6A69A91EB3CF}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{460BAE77-5B88-4B2F-80F0-5D7948824347}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4695E4EA-D85B-4989-884D-F24BB7A78A6A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{47284873-BA9A-4339-8F8F-7D347BD19C5F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4790275F-A476-438C-9E2E-98A51334FA50}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{48F65839-353A-49C8-BF26-A7472EB8376A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{49A686F1-B994-4B47-BFF1-76D6ED085567}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{49C92327-C31C-4D56-9845-5BA0E173F9A1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4A2BA129-089C-42CE-A6A9-99567BB0A0D4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4B4CD4AF-65FF-4038-BEB2-FCB98A845A7B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4B5EE832-6D19-4D83-8443-58080792FD00}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4B88402E-E99A-4267-B7F9-46808594A63C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4BE9BFAE-22B6-4EC6-908C-95A57820CDF6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4CB92585-EC31-4000-B23F-DC4DC3C943D6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4D829603-CC0E-4C39-BC7E-C499B8D84F86}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4D8F971E-E928-4BE2-9D59-33B16784B789}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4E367A24-8841-443D-9628-340CF9052D82}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4E675B73-54B2-484A-897E-299B88E67ED4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{4EE506E3-740C-48B0-8509-3AE621AF289D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{501DD4C0-3665-4241-BF2B-72F6870F7308}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{50E4A6C6-81F1-417F-A841-506563CEA074}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{50FC24C5-8169-43DB-AC93-1A416B6DCAE3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{515FF211-DAD6-44D8-9E94-3DDE8009CA61}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{52699D70-2350-4346-9B0D-E4633937A763}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{52A99697-4564-42C6-830F-3CB4C551A970}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5322CEB3-454C-4565-8497-2B3D1030A830}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{548874FC-E1EC-4A83-B420-F8CA85B4AA1F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5570463C-AFFF-4E15-AE8A-07E010EDD75C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5672A43D-3E22-4BEF-A7DE-29BC26E88DA9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{569FC1D3-1771-41C6-B1C1-B892B9CE83EA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{56AC59F3-C32C-4A86-B93D-06E3726211E4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{56C0B9AC-3665-4DB1-A842-83A1BD533839}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{588376FE-73CC-480E-BDCA-A16B70D5A98C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{58C4C53C-D5E6-4591-BC6A-F37CD83085D6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{591A1EDD-B7C7-4D0A-BB12-7391F81CDB8C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{598DE86E-0709-403B-BC0F-3218844A8EB0}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{59A069E7-DF29-4CA3-A927-6B8736731F23}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{59EE0215-764E-499E-BD55-A65756F76F7D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5A24AAC1-1337-4909-B4D0-159EE65CBB9E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5A953BF0-F15F-40A1-8A18-A612259A394D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5A9ACBAE-DD6C-41CD-8753-8743EC4045E6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5B85CE4F-CBC1-4A66-84F0-B736D0FD1265}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5BE0C210-9E3B-4F13-8967-D3820865629C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5D036189-6346-4B5A-BBCC-9E272AD639BB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5D24D954-BC2B-46C4-A9C7-77A7BFEB891D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5D8906E5-7E21-489D-BAD6-AD7CDAE0C723}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5D941515-3FEC-483A-A136-3B7C786412FA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5DBAE5AA-42D6-4593-83F5-8E23277B70DD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{5FE2D674-82C3-40D4-8ABB-E815E18EB8B9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{61B354E2-871C-4D53-A07B-13B6D5BB7499}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6218806D-C1B4-4F9D-93A0-D1A3341FDC1F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{631A050A-EA3F-4A55-B7F2-AB1BD8BBD1DA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{63BF5DDF-8F63-4815-845A-8B9CC37C98FD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{63E838B4-BCB2-4CAC-A0C5-EAD3308EF631}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{640C3B35-45AA-417C-B5AD-FFB811FDBE3A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{641FF911-CB92-440F-952F-FF0BFFDABB3C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{652D7D17-EFAE-4399-B0C8-4BD4ADFCF17F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6555819C-3DFB-4638-B35F-65E55B7FAAC9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{65693C39-F3C4-4BD4-B249-8B2EC5B50E44}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{661F6367-D61D-4C43-B7CD-BFB003999B75}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{671C6E13-9DD6-4C17-A340-DBD525E00155}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{676AE922-0E11-436A-854B-1D5819D8EDCF}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{68A38F49-EDB3-4BB0-B865-0E1F16DCEC7F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{68CFD91D-15D6-4DC7-8B42-A2557320D121}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6905315A-D9C8-44D1-B838-5329FE93B918}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{697C55FB-18CC-4312-9B8B-7562A5270AFA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{69FC3D51-8143-4053-912E-31CED78F4BBD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6B063F6F-8C15-430F-8A02-D44C49657ADC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6B4899FA-2CBF-4C3B-A824-30DB31B7A7C6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6BFAADEB-021C-4068-B55C-87FADC1EC69F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6C0327AC-35E8-49E7-B762-072510F1D673}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6D135B66-8C77-433A-A719-425DAFA0CB64}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6D5A1A59-FF0A-4495-8BE4-CDC05E9D28DB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6E3B36CB-A4E5-497C-AF95-D4FA911E1CA6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6ED1507B-D736-4673-BFF6-870AD828B53E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{6FBC2986-F7C3-4DDC-886D-382D7428A14F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7038E7A9-80AD-4E29-AB76-022F947A6322}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{70400316-2A78-41B5-B4AD-375A1B167B59}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7094B7CB-CD74-4118-8291-4F89AC06758F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{70D88CAF-524B-4197-AA04-9C51DDE4AB9B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{70F3DE76-73BD-4CD8-9B96-C0D1CBAC32A8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{711A898D-44D3-4DF2-B9F4-7CE8F73DDC5D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{71FD1DEC-2B28-40AA-AECB-52B3262A1166}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{720EFF33-9300-4A64-AF12-CCDD0E2F85B6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{72947D3D-C103-475A-81F2-9CDFF308E1D4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{72A3A46F-FD17-4BE4-843B-E309FC78A890}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{72BB3830-33B1-41C1-8154-6B48DA6023CE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{76FDC1AE-B951-4144-85BB-A8E279BE42A7}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7764AE78-47ED-43EB-AD58-0E578AE8C615}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{786434A6-D6BA-43AC-A44D-B0C327FCA37C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{78E212A4-A499-46BD-A51D-B67AA9BF5B4A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{796D9C26-00C8-410C-962A-CA4B034C2111}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{79F6B254-6311-4339-B976-E093D27310D0}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7A5C030C-33DF-4313-9C35-CAE4F4B7CB4E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7A739EC6-A536-47F2-AC5E-28AAA3146A33}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7AC7DC2D-A3CA-4204-A7A3-74AC70541F86}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7CFC6A44-59ED-4C5D-AC65-9DAEFEE337E9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7DAAFE9A-C9B6-4512-BD01-528EFD2907CE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7DC2D8F0-4036-4A8A-AE89-FC7080422E8D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7EAC1AA6-99C0-4435-9733-DE9B8985F66A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7F8F6B3B-8428-48BA-8F71-200BEFFCF47C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{7FA2F743-124F-4456-B2A9-E38E82EEF93D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{812D98B1-26FD-4192-9ADA-3FB10253B6DE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{82AA7B82-1267-41B1-9DE3-20F57F7D8836}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{831B3F19-010A-462C-AA6E-80CF464B6904}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8383EC52-DFD5-4588-AC1F-BAECB881AD9A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{841BD0DE-E0AB-4F2F-8528-05241145B8DF}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{843A2B5F-B1ED-454C-AF6A-78EF301DA9C7}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{849F0D29-045D-4666-AAA8-22515B67DCE8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{855FB5D9-F016-4A6E-AF37-1129C1DB6955}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{860A88CA-3C9C-48DE-8385-5D1BB8F59EC1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{86250AC2-E6AE-4562-A478-E52FA77AA80C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{86FEF2E6-C3D4-4CBE-977E-3ED5613A1641}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{87311566-4A66-4376-B801-B9C6FB3B2845}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{874C94EC-EC10-4FEA-BEAE-8682E6B9ECE7}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{881B26B1-A396-48EE-B758-EC5884BCCB4F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8854C8DC-525E-48A1-A28C-C4142E88B1FB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8A3A01B4-77D6-4767-B88B-47B6095ACA8E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8A81789D-72FE-405B-A956-D01A5A26F724}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8C649D21-CD64-4A78-906D-50F9445D24E9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8DDFA731-F01A-4A38-B721-9B81BF219271}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8E9715C0-707D-4B21-BD37-87B85429C7CA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8F091845-E339-4677-8E1E-D42C6B792786}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{8F74FCB2-37D3-4505-8492-F8EC36AD2B1B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{909AD939-DDA3-4442-AF50-FC7924F0D134}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{92A771E1-6D4B-472F-81F4-62DF7A278C14}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{92EF1AB1-C67D-4E47-9682-AAD2194093F2}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{93101624-0621-4393-9BF4-E9A3438A1F99}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{932D84FC-064D-49C6-A9F3-75AC564D27BC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{942DA24F-CB48-4C0A-A2C1-1EFC7F45CEC3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9438545C-FC8F-4511-BD28-C3E8B323881B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9445078C-FB39-4D5B-8BF3-0EABC0B4A5BD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9481005F-ED0E-47CE-AC54-9269C992CBF1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9525BDAD-DF24-4637-8CC3-33ED80FCED9C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{96398254-79CF-4EC3-933A-1C1FC9165B73}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{963A1091-704D-4231-995D-3F2E524FB4BB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{97A083E0-8197-4463-B3EF-D4AE25040E75}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{97BC6A42-EDFC-4243-94F4-94DF07A55AAB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{988F4FC6-7B5F-4F9A-A05B-02F2F06F5D3D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{98AD213C-70D8-4D23-9F6A-8AF4194F2277}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{98CA562C-AB52-4938-A1F2-C2ABF5806F5C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{98D59F24-C899-42B0-AC84-2B951D527392}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{995C8794-AC94-4F5F-83BA-1EA317F1322F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9985BF3A-9141-4B98-816C-C0E29E74A1B9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9995E6EF-8210-4F3D-863B-1A673742995A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9A01730F-D208-41CB-B86A-12AB7136B681}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9AC5A3C4-C8E5-4E7A-87F0-F81BA2BE26EC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9C8AF810-F191-44D5-8565-21EC2032356C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9D788053-52B9-4FE9-80CD-B950A50B5F71}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9DF852ED-7F8A-4DB5-894F-9E70CF375858}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{9FF874B8-DAA1-49B4-AE86-0004C413DBCD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A100DB5A-300B-42AC-8777-CDC9AA54AFA6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A192B716-DE56-4DC7-A773-DE43AD5F5E2F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A2200BAD-6885-4965-BAB2-053FD73E5038}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A453E06E-0DEA-4580-819B-38A08C30AFBD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A5C1AFC2-280A-43DA-B1B2-B686BB0EB8E6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A66D046E-0BDC-4E9A-A718-6257BA36A1EE}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A8684D9B-1C89-444C-ABB8-7F6BF42DD803}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{A89C0DC5-D523-4506-9D6C-0BD88C13557E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AACF72CC-9473-466D-93BB-4BD5D4317BE4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AAF9C35A-5137-4F85-985D-82A8BA76C6AD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AB15FE78-46D0-4C88-A126-17227633AA90}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AB4A13CD-E1B5-4D69-A116-1DEECD567C32}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AC4DD3E6-C504-4B49-8B2D-A5F7F5258F0F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{ADB37F83-6114-4040-9634-559759E2D494}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{ADC53206-13B5-476E-B8E7-5C96420F6DC3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{ADEB3772-6220-4994-B0E6-CA93BD9FD1EA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AE310751-345E-489A-85D2-D45828E2E603}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AE4D02DC-C797-4B52-93EB-7C3289EB5DD7}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{AE5C9D17-E0EF-48B3-B08D-76260517D013}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B09400E7-F4D4-46A9-85E1-090645D4BB77}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B22BF3E0-FC10-48A1-B328-932867776AB0}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B284DE17-0759-4269-AD93-522B39A510D7}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B2D0F772-77D2-4265-BD22-E9847028C52B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B34031E8-0E21-47A0-8088-0B87F18E2A01}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B493F492-CC08-4754-B428-2891C2BBA325}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B52ECF79-50A0-4C02-8E81-BFAD7BAA1A85}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B6017BEE-259E-456B-AAF7-7C3AC3862469}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B626A6DF-6B75-4E33-ACB6-7E2160412A47}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B6719069-1395-4461-BC4B-4BDB464F2A48}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B6DC5B3C-0A4B-436B-ACD7-31841A054946}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B717DBD3-AE3D-460B-A40F-F1EBD063DCE9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B781D9AD-AB91-4E46-9E46-F292D8D7B5E2}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B857E687-E3FD-48F3-BC6B-DAB4552D0CF8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B8C558E3-0A53-40C8-A5A1-BE66889EF005}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B8D7C447-07EE-4A20-9A2E-39935DFE85D5}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B9519F41-AD63-4997-A795-BA7F2189171D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B995BA93-7B76-4082-8256-568BF28EDF98}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{B9C60361-935C-4423-A5C2-36104E98DA79}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{BBF59059-BE5D-4401-9EBC-70874181FD97}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{BD61CA36-360B-49CC-AE6A-87F46B204D28}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{BDA45C7F-F22A-40B1-B983-14516CFB8B42}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{BEC0144E-417F-4EF1-9CA0-5435D29ACA6E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{BEFE40FC-550F-47D6-8563-6BCC6A4E7938}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{BFA6F829-0E7A-4A5F-876C-A07AB64CA5A9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C0D0B4BE-BBFE-498C-B55C-081157402047}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C0E559C8-CDF6-480F-A55D-57903AA37890}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C11742C0-8765-4FBF-B0E9-91B4C63754C7}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C1489060-6BF3-4E72-A8DE-EE532A8C2178}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C1693419-2927-47B8-A23C-4985F5C05541}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C36F897A-6DA2-4452-87E9-82CDC66C4CA8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C3947312-4CD5-4B21-984B-431DD7DE93E6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C3A04176-92B3-4ADC-BD14-9455496A52EC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C3EE6685-6B27-4938-9116-7F39756D62DC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C437B07D-5C80-437F-8163-7F1F7387E0E1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C4AF0D7C-2B8E-4DFC-AD49-9F70117F44F3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C5EEA615-2CAB-417E-A346-8A6526E19041}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C7EEBB93-538F-451E-88E1-E74B90FBF261}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{C9215958-8FC2-45A9-894A-BB7A8F622957}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CA703F8F-9F5A-475F-BFA2-9156FF632E1F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CAF60C0F-0C19-40AD-A5FD-E2A13BCD29BD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CB13399C-792F-4DED-AA23-47031E333D45}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CB9A4169-1BE5-437B-A0AC-03C042A8DAF8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CBC49F04-8BED-447A-BEBF-99AF278A907B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CC30E5F5-EBEE-4C64-98CF-6142285D9090}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CC8A2B1F-66A1-4841-ACCB-9C1A86F74831}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CD60E2CB-FB83-4B1D-A299-39DEC512B857}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CECABB6B-44F1-41A1-AC9E-8AEAB6BEFBDB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CEE31569-13F4-45AA-AF1D-51A514FF6EDA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CF426DCF-D3B3-432D-8AF7-92A1C16F11AB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CF92524D-4BE2-4BD0-8B13-F099C927A51A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CFAB746A-CD7A-45AC-A55E-3ADDB080E79F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{CFD95EB2-0227-409F-8D52-3A39AB2A2D7A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D14B5DCF-DF28-4BD5-A2B2-A893C9BCFE45}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D14E5DF4-864E-42B6-9995-FFB69E5E471E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D1663DD9-D010-4DC5-A87E-A5771529345C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D18922F4-CE01-4526-B511-830E90004407}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D27CE40C-2184-4F79-BB8C-D1B8D3CCB456}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D2AB4ECF-3D71-4723-9720-7395F1588390}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D40B81C8-05C4-4311-8C3D-0E3F8DEE4E7E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D4A8CF7F-E80D-4FAF-B09B-5782DAF0B66F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D6202DDD-237F-46CC-938F-2EFBA5C9C75F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D662A00C-CCF9-46AF-B203-7F907FF9071E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D78F5245-5E87-4717-AC3F-4F3121F79C86}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D8D6D985-472A-4B7F-9726-D0C933CF5C03}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{D8EC83E0-9046-4EAC-8685-134FE9F1DC0A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DB42C242-8050-48D2-A811-B8CC4B0E2BE4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DC27DC29-F313-4861-A1ED-6075823C242C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DC9B7F25-B48D-44D7-AB48-71B13896FE28}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DCC7137E-3FDF-4A7B-856A-E30D68933B05}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DD3C3567-EAEA-45B6-BAB3-E59784ACD92F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DDF759F2-B330-4504-BD87-1C472CD534A9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DEA013D9-C62E-4394-871A-34AD429614E1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DF6313D9-EB52-40AA-8677-A65D9526B0A0}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{DFDA1A55-C598-4E1E-8147-E33EA7FB9DA9}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E05F8D07-BFEF-4D46-B4D5-F4250D010D1A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E146FCA2-BCB9-40B1-90BB-13C3F70D7313}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E172ABEA-8995-405A-8A98-93DE6A48D42B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E27C93CB-9991-43FD-B331-0242282628B4}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E2951EC4-BF90-4BEE-95F9-FBF6618AFC78}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E381D6C1-2621-4913-BFA7-4A5F9E98CE45}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E3959997-CC66-4D31-8A0F-926B93F932D6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E39AE754-FAAA-480F-8ACC-3DCA94B7617F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E48CA329-A665-459C-BB51-1E96E5013A0D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E4D118A7-FF3E-4FBE-B91A-1E038516A323}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E4E56959-ECB7-4FE7-8A94-DF8963BF71B0}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E5411D75-1D96-4DC2-BE47-100037DF7503}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E5516342-1988-4B8B-AA9A-F28AA8B9E345}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E55DB650-70E7-4824-96EE-C716EE67565D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E59C21B6-A336-4D92-9E99-7A850C1EEECF}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E5C5DDA0-7CD2-4B52-B7AE-4B5101B4A550}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E605D93E-0C37-4B3B-8005-9CCD36205F54}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E691BDE3-7F8E-41BF-931A-4C3FF4664284}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E70DD4EF-1E1C-49FE-82C0-D6E6C4CB1453}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E7234696-1BDC-4C07-ABAF-03B7B5FD0F8F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E7940B51-C8A5-47EB-8DED-3AB7124DA7BF}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E7CA48E0-96AC-4F0D-A33C-1531ACAA6691}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E89C904A-F680-4CB8-8F16-ECA5FA685698}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E8ED750C-D191-4D3C-8037-7A173D505B72}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E8F4225A-310C-4AB1-AD75-9E4B0C2B309A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E98D86D5-FF5C-40B2-A2CB-D960A61A4B2D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E9917560-91FE-41ED-8FCB-87BBA5E03E8D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E9D63EE5-4DE1-458F-AE98-67F7DE703257}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{E9DD5D97-8051-4BA7-890F-2396A978172B}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EA31BB03-B73C-4C8E-A9FF-762063DBB12A}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EAEA3AEC-FA1A-40DD-AD64-B495AD7A2E7E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EAFAD114-9988-4D4A-8D7A-C0768AB33369}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EB18BEFD-3895-404F-B876-23FF204C1E26}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EC44FFE9-FFF8-4E39-9EB2-FE9AB4A76DE3}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EDC837E8-1123-4EA1-832D-213038C27AF1}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EDCC6409-ADD2-4B31-A290-308C5E3157CC}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EE5EBE1C-56B2-434A-8596-E4E9375B631E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{EF72A40B-FB80-4F2A-A4A8-80FE140A9A52}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F09D1E2F-9C4E-4D09-B1A5-AE31673608FD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F123A488-9ECF-4DFB-821A-DD46A3CD312F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F1C509FD-2592-4E2D-8E3A-CD07F1D34739}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F21FED12-2E1C-48C8-8F1D-0015835E22CA}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F264DDD2-2E10-4F60-91F6-5526276A3B60}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F35776A5-7309-49B9-9E70-235694D37DBB}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F3DEA5B9-3C41-437E-A773-D922AAF68BF6}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F51C8732-C79D-43D2-BF69-BF5593C5C614}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F5D42235-CE25-405A-A210-52DF06121A6E}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F635C2D9-6690-40D8-9205-8973FE71D3D8}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F6594D14-C309-43F4-BE05-9105EFC7C7DD}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F6BE7823-9F51-4926-B82E-D62139896A00}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F80B3EA9-DFA7-4801-9B4A-8466285FFF2D}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F869C345-C229-4CF2-99BF-982D4AF24630}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F875E8E4-049E-44D0-AE50-666E58D3B288}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{F953CC43-E87F-4108-BA27-BB1CF7E3CF8C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{FBA52A25-BB26-48B9-B386-B127C2769E4F}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{FBB932A1-3060-4B1D-A678-42A16FAF043C}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{FEA2A4A6-7E87-45D1-B177-AB54640B5A58}
Successfully deleted: [Empty Folder] C:\Users\Duc Huy\appdata\local\{FF902436-6FC6-4209-B7D1-38FD2214FB06}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27.06.2013 at 21:02:04,40
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Der scan hat jzt aber lange gedauert.. über 1 stunde :/

Eset logfile

Code:
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=f1c46bbbbee1614099390272b18b1b98
# engine=14179
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-06-27 08:24:01
# local_time=2013-06-27 10:24:01 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 85 91 4399 149074513 0 0
# compatibility_mode=5893 16776573 100 94 4618 123994491 0 0
# scanned=155387
# found=0
# cleaned=0
# scan_time=4067
security

Code:
Results of screen317's Security Check version 0.99.68 
 Windows 7 Service Pack 1 x64 (UAC is enabled) 
 Internet Explorer 10 
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus 
 Antivirus up to date! 
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware Version 1.75.0.1300 
 Adobe Flash Player 11.7.700.224 
 Adobe Reader 9 Adobe Reader out of Date!
 Google Chrome 27.0.1453.116 
 Google Chrome 28.0.1500.52 
````````Process Check: objlist.exe by Laurent```````` 
 AVAST Software Avast AvastSvc.exe 
 AVAST Software Avast AvastUI.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 
````````````````````End of Log``````````````````````
FRST


FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-06-2013 02
Ran by Duc Huy (administrator) on 27-06-2013 22:41:05
Running from C:\Users\Duc Huy\Desktop\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Microsoft Corporation) C:\Windows\system32\inetsrv\inetinfo.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\system32\mqsvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\system32\mqtgsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [10920552 2010-06-22] (Realtek Semiconductor)
HKLM\...\Run: [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [MsmqIntCert] regsvr32 /s mqrt.dll [x]
HKLM\...\Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
HKLM-x32\...\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-04-13] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [337264 2010-05-27] (Egis Technology Inc.)
HKLM-x32\...\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k [265984 2010-06-29] (NewTech Infosystems, Inc.)
HKU\Default\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [154144 2010-01-15] ()
HKU\Default User\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [154144 2010-01-15] ()
HKU\DefaultAppPool\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [154144 2010-01-15] ()
HKU\DefaultAppPool.IIS APPPOOL\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [154144 2010-01-15] ()
HKU\DefaultAppPool.IIS APPPOOL.000\...\RunOnce: [ScrSav] C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default [154144 2010-01-15] ()
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [111720 2010-10-28] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\Windows\SysWOW64\nvinit.dll [100456 2010-10-28] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.52\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.52\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.52\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll No File
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll No File
CHR Extension: (Google Drive) - C:\Users\Duc Huy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Duc Huy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Duc Huy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Duc Huy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Gmail) - C:\Users\Duc Huy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [15872 2010-11-20] (Microsoft Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [9216 2009-07-14] (Microsoft Corporation)
R2 MSMQTriggers; C:\Windows\system32\mqtgsvc.exe [189440 2010-11-20] (Microsoft Corporation)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-27] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-27] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-27] ()
S3 ew_mbbusbdev; C:\Windows\System32\DRIVERS\ew_mbbusbdev.sys [115584 2010-09-27] (MBB Technologies Co., Ltd.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mbbdatacard; C:\Windows\System32\DRIVERS\ewusbmdm.sys [121600 2010-09-27] (MBB Technologies Co., Ltd.)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [189440 2009-07-14] (Microsoft Corporation)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
R2 {B154377D-700F-42cc-9474-23858FBDF4BD}; C:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl [146928 2010-08-16] (CyberLink Corp.)
R2 {B154377D-700F-42cc-9474-23858FBDF4BD}; C:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl [146928 2010-08-16] (CyberLink Corp.)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-06-27 21:10 - 2013-06-27 21:10 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum
2013-06-27 21:02 - 2013-06-27 21:02 - 00046290 ____A C:\Users\Duc Huy\Desktop\JRT.txt
2013-06-27 20:57 - 2013-06-27 20:57 - 00000000 ____D C:\Windows\ERUNT
2013-06-27 20:57 - 2013-06-27 20:57 - 00000000 ____D C:\JRT
2013-06-27 13:27 - 2013-06-27 13:27 - 00012486 ____A C:\Users\Duc Huy\Desktop\AdwCleaner[S1].txt
2013-06-26 21:50 - 2013-06-26 21:50 - 00023192 ____A C:\Users\Duc Huy\Desktop\ComboFix.txt
2013-06-26 21:46 - 2013-06-27 21:10 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum
2013-06-26 21:46 - 2013-06-27 21:10 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum
2013-06-26 21:43 - 2013-06-26 21:43 - 00000546 ____A C:\Windows\PFRO.log
2013-06-26 21:32 - 2013-06-26 21:50 - 00000000 ____D C:\Qoobox
2013-06-26 21:32 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-06-26 21:32 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-06-26 21:32 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-06-26 21:32 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-06-26 21:32 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-06-26 21:32 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-06-26 21:32 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-06-26 21:32 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-06-26 21:31 - 2013-06-26 21:48 - 00000000 ____D C:\Windows\erdnt
2013-06-25 22:28 - 2013-06-25 22:28 - 00117352 ____A C:\Users\Duc Huy\AppData\Local\GDIPFONTCACHEV1.DAT
2013-06-25 22:26 - 2013-06-27 21:07 - 00000931 ____A C:\Windows\DtcInstall.log
2013-06-25 22:26 - 2013-06-27 21:07 - 00000392 ____A C:\Windows\setupact.log
2013-06-25 22:26 - 2013-06-25 22:26 - 04994208 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-25 22:26 - 2013-06-25 22:26 - 00000000 ____A C:\Windows\setuperr.log
2013-06-25 17:20 - 2013-06-27 21:11 - 00065330 ____A C:\Windows\WindowsUpdate.log
2013-06-25 15:39 - 2013-06-25 15:39 - 00000402 ____A C:\Users\Duc Huy\Documents\cc_20130625_153942.reg
2013-06-25 15:23 - 2013-06-25 15:23 - 00000000 ____D C:\FRST
2013-06-25 12:58 - 2013-06-25 12:58 - 00007930 ____A C:\Users\Duc Huy\Documents\cc_20130625_125800.reg
2013-06-25 09:06 - 2013-06-25 09:06 - 00001117 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-06-25 09:06 - 2013-06-25 09:06 - 00000000 ____D C:\Users\Duc Huy\AppData\Roaming\Malwarebytes
2013-06-25 09:06 - 2013-06-25 09:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-06-25 09:06 - 2013-06-25 09:06 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-06-25 09:06 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2013-06-23 22:15 - 2013-06-23 22:15 - 00001056 ____A C:\Users\Duc Huy\Documents\cc_20130623_221501.reg
2013-06-23 22:14 - 2013-06-23 22:14 - 00002074 ____A C:\Users\Duc Huy\Documents\cc_20130623_221446.reg
2013-06-23 16:24 - 2013-06-23 16:24 - 00006172 ____A C:\Users\Duc Huy\Documents\cc_20130623_162406.reg
2013-06-22 23:43 - 2013-06-22 23:43 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-06-22 23:43 - 2013-06-22 23:43 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-06-22 23:37 - 2013-06-22 23:37 - 00000000 ____D C:\Users\Duc Huy\AppData\LocalGoogle
2013-06-22 23:34 - 2013-06-27 21:10 - 01030952 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2013-06-22 23:34 - 2013-06-27 21:10 - 00378944 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2013-06-22 23:34 - 2013-06-27 21:10 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys
2013-06-22 23:34 - 2013-06-22 23:34 - 00001926 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-06-22 23:34 - 2013-06-22 23:34 - 00000000 ____A C:\Windows\SysWOW64\config.nt
2013-06-22 23:34 - 2013-05-09 10:59 - 00080816 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2013-06-22 23:34 - 2013-05-09 10:59 - 00072016 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2013-06-22 23:34 - 2013-05-09 10:59 - 00065336 ____A C:\Windows\System32\Drivers\aswRvrt.sys
2013-06-22 23:34 - 2013-05-09 10:59 - 00064288 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys
2013-06-22 23:34 - 2013-05-09 10:59 - 00033400 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys
2013-06-22 23:34 - 2013-05-09 10:58 - 00287840 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe
2013-06-22 23:33 - 2013-06-22 23:33 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-22 23:33 - 2013-05-09 10:58 - 00041664 ____A (AVAST Software) C:\Windows\avastSS.scr
2013-06-22 23:32 - 2013-06-22 23:33 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-18 14:29 - 2013-06-18 14:30 - 00003124 ____A C:\Users\Duc Huy\Documents\cc_20130618_142956.reg
2013-06-17 20:52 - 2013-06-17 20:52 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Intel Corporation
2013-06-17 20:52 - 2013-06-17 20:52 - 00000000 ____D C:\Users\Gast\AppData\Local\EgisTec IPS
2013-06-17 20:52 - 2013-06-17 20:52 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-06-17 20:51 - 2013-06-17 20:51 - 00002259 ____A C:\Users\Gast\Desktop\Google Chrome.lnk
2013-06-17 20:51 - 2013-06-17 20:51 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Vorlagen
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Startmenü
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Netzwerkumgebung
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Lokale Einstellungen
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Eigene Dateien
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Druckumgebung
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Documents\Eigene Musik
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Documents\Eigene Bilder
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\AppData\Local\Verlauf
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\AppData\Local\Anwendungsdaten
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Anwendungsdaten
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 ____D C:\users\Gast
2013-06-17 20:51 - 2013-06-04 14:55 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-06-17 20:51 - 2012-09-10 21:02 - 00000000 ____D C:\Users\Gast\AppData\Local\Microsoft Help
2013-06-16 18:40 - 2013-06-16 18:40 - 00000188 ____A C:\Users\Duc Huy\Documents\cc_20130616_184028.reg
2013-06-15 20:51 - 2013-06-15 20:51 - 00000020 ___SH C:\Users\DefaultAppPool.IIS APPPOOL.000\ntuser.ini
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Vorlagen
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Startmenü
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Netzwerkumgebung
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Lokale Einstellungen
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Eigene Dateien
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Druckumgebung
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Documents\Eigene Musik
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Documents\Eigene Bilder
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\AppData\Local\Verlauf
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\AppData\Local\Anwendungsdaten
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Anwendungsdaten
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 ____D C:\users\DefaultAppPool.IIS APPPOOL.000
2013-06-15 20:51 - 2013-06-04 14:55 - 00000000 ____D C:\Users\DefaultAppPool.IIS APPPOOL.000\AppData\Roaming\Macromedia
2013-06-15 20:51 - 2012-09-10 21:02 - 00000000 ____D C:\Users\DefaultAppPool.IIS APPPOOL.000\AppData\Local\Microsoft Help
2013-06-15 14:21 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-15 14:21 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-15 14:21 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-15 14:21 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-15 14:21 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-15 14:21 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-15 14:21 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-15 14:21 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-15 14:21 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-15 14:21 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-15 14:21 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-15 14:21 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-13 21:16 - 2013-06-13 21:16 - 00001172 ____A C:\Users\Duc Huy\Documents\cc_20130613_211639.reg
2013-06-13 16:55 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-13 16:55 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-13 16:55 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-13 16:55 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-13 16:55 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-13 16:55 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-13 16:55 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-13 16:55 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-13 16:55 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-13 16:55 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-13 16:55 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-13 16:55 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-13 16:55 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-13 16:55 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-13 16:55 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-13 16:55 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-13 16:55 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-13 16:55 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-13 16:55 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-13 16:37 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-13 16:37 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-13 16:37 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-13 16:37 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-13 16:37 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-13 16:37 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-13 16:37 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-13 16:37 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-13 16:37 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-13 16:37 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-13 16:37 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-13 16:37 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-13 16:37 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-13 16:37 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-13 16:37 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-13 16:37 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-13 16:37 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-13 16:37 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-13 16:37 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-08 23:27 - 2013-06-08 23:27 - 00000000 ____D C:\Users\Duc Huy\Desktop\Office
2013-06-06 22:00 - 2013-06-06 22:00 - 00002500 ____A C:\Users\Duc Huy\Documents\cc_20130606_220003.reg
2013-06-05 21:09 - 2013-06-05 21:09 - 00000000 ____D C:\Program Files\McAfee
2013-06-05 15:34 - 2013-06-05 15:34 - 00007066 ____A C:\Users\Duc Huy\Documents\cc_20130605_153429.reg
2013-06-04 20:09 - 2013-06-08 23:28 - 00000000 ____D C:\Users\Duc Huy\Desktop\League of Legends
2013-06-03 20:50 - 2013-06-04 14:55 - 00000000 ____D C:\users\DefaultAppPool.IIS APPPOOL
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Vorlagen
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Startmenü
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Netzwerkumgebung
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Lokale Einstellungen
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Eigene Dateien
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Druckumgebung
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Documents\Eigene Musik
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Documents\Eigene Bilder
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\AppData\Local\Verlauf
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\AppData\Local\Anwendungsdaten
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Anwendungsdaten
2013-06-03 20:50 - 2012-09-10 21:02 - 00000000 ____D C:\Users\DefaultAppPool.IIS APPPOOL\AppData\Local\Microsoft Help
2013-05-30 22:31 - 2013-06-04 02:30 - 00000000 ____D C:\users\DefaultAppPool
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Vorlagen
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Startmenü
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Netzwerkumgebung
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Lokale Einstellungen
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Eigene Dateien
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Druckumgebung
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Documents\Eigene Musik
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Documents\Eigene Bilder
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\AppData\Local\Verlauf
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Anwendungsdaten
2013-05-30 22:31 - 2012-09-10 21:02 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2013-05-30 22:31 - 2012-04-23 19:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia

==================== One Month Modified Files and Folders =======

2013-06-27 22:18 - 2013-04-26 20:07 - 00001112 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-27 21:57 - 2011-08-21 12:08 - 00000298 ____A C:\Windows\Tasks\Updater.job
2013-06-27 21:43 - 2013-03-07 17:51 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-27 21:15 - 2009-07-14 06:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-27 21:15 - 2009-07-14 06:45 - 00009920 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-27 21:11 - 2013-06-25 17:20 - 00065330 ____A C:\Windows\WindowsUpdate.log
2013-06-27 21:10 - 2013-06-27 21:10 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum
2013-06-27 21:10 - 2013-06-26 21:46 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum
2013-06-27 21:10 - 2013-06-26 21:46 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum
2013-06-27 21:10 - 2013-06-22 23:34 - 01030952 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2013-06-27 21:10 - 2013-06-22 23:34 - 00378944 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2013-06-27 21:10 - 2013-06-22 23:34 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys
2013-06-27 21:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\inetsrv
2013-06-27 21:08 - 2013-04-26 20:07 - 00001108 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-27 21:07 - 2013-06-25 22:26 - 00000931 ____A C:\Windows\DtcInstall.log
2013-06-27 21:07 - 2013-06-25 22:26 - 00000392 ____A C:\Windows\setupact.log
2013-06-27 21:07 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-27 21:02 - 2013-06-27 21:02 - 00046290 ____A C:\Users\Duc Huy\Desktop\JRT.txt
2013-06-27 20:57 - 2013-06-27 20:57 - 00000000 ____D C:\Windows\ERUNT
2013-06-27 20:57 - 2013-06-27 20:57 - 00000000 ____D C:\JRT
2013-06-27 13:27 - 2013-06-27 13:27 - 00012486 ____A C:\Users\Duc Huy\Desktop\AdwCleaner[S1].txt
2013-06-27 13:27 - 2012-07-05 19:08 - 00000000 ____D C:\Users\Duc Huy\AppData\Roaming\CheckPoint
2013-06-26 21:50 - 2013-06-26 21:50 - 00023192 ____A C:\Users\Duc Huy\Desktop\ComboFix.txt
2013-06-26 21:50 - 2013-06-26 21:32 - 00000000 ____D C:\Qoobox
2013-06-26 21:48 - 2013-06-26 21:31 - 00000000 ____D C:\Windows\erdnt
2013-06-26 21:44 - 2009-07-14 04:34 - 00000215 ____A C:\Windows\system.ini
2013-06-26 21:43 - 2013-06-26 21:43 - 00000546 ____A C:\Windows\PFRO.log
2013-06-26 21:42 - 2009-07-14 04:34 - 71041024 ____A C:\Windows\System32\config\software.bak
2013-06-26 21:42 - 2009-07-14 04:34 - 22020096 ____A C:\Windows\System32\config\system.bak
2013-06-26 21:42 - 2009-07-14 04:34 - 01048576 ____A C:\Windows\System32\config\default.bak
2013-06-26 21:42 - 2009-07-14 04:34 - 00262144 ____A C:\Windows\System32\config\security.bak
2013-06-26 21:42 - 2009-07-14 04:34 - 00262144 ____A C:\Windows\System32\config\sam.bak
2013-06-26 21:32 - 2011-06-11 19:58 - 00000000 ____D C:\users\Duc Huy
2013-06-25 22:28 - 2013-06-25 22:28 - 00117352 ____A C:\Users\Duc Huy\AppData\Local\GDIPFONTCACHEV1.DAT
2013-06-25 22:26 - 2013-06-25 22:26 - 04994208 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-25 22:26 - 2013-06-25 22:26 - 00000000 ____A C:\Windows\setuperr.log
2013-06-25 20:25 - 2013-05-19 14:02 - 00000000 ____D C:\Users\Duc Huy\Desktop\Dokumente
2013-06-25 15:39 - 2013-06-25 15:39 - 00000402 ____A C:\Users\Duc Huy\Documents\cc_20130625_153942.reg
2013-06-25 15:23 - 2013-06-25 15:23 - 00000000 ____D C:\FRST
2013-06-25 15:20 - 2010-12-20 20:42 - 00766312 ____A C:\Windows\System32\perfh007.dat
2013-06-25 15:20 - 2010-12-20 20:42 - 00172548 ____A C:\Windows\System32\perfc007.dat
2013-06-25 15:20 - 2009-07-14 07:13 - 01785846 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-25 12:58 - 2013-06-25 12:58 - 00007930 ____A C:\Users\Duc Huy\Documents\cc_20130625_125800.reg
2013-06-25 12:53 - 2011-06-11 20:15 - 00000000 ____D C:\Users\Duc Huy\AppData\Roaming\Mozilla
2013-06-25 12:45 - 2013-02-11 15:10 - 00000000 ____D C:\Users\Duc Huy\AppData\Local\TeamSpeak 3 Client
2013-06-25 09:06 - 2013-06-25 09:06 - 00001117 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-06-25 09:06 - 2013-06-25 09:06 - 00000000 ____D C:\Users\Duc Huy\AppData\Roaming\Malwarebytes
2013-06-25 09:06 - 2013-06-25 09:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-06-25 09:06 - 2013-06-25 09:06 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-06-23 22:15 - 2013-06-23 22:15 - 00001056 ____A C:\Users\Duc Huy\Documents\cc_20130623_221501.reg
2013-06-23 22:14 - 2013-06-23 22:14 - 00002074 ____A C:\Users\Duc Huy\Documents\cc_20130623_221446.reg
2013-06-23 16:24 - 2013-06-23 16:24 - 00006172 ____A C:\Users\Duc Huy\Documents\cc_20130623_162406.reg
2013-06-22 23:48 - 2011-11-03 19:39 - 00000000 ____D C:\Users\Duc Huy\AppData\Roaming\Skype
2013-06-22 23:43 - 2013-06-22 23:43 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-06-22 23:43 - 2013-06-22 23:43 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-06-22 23:39 - 2012-01-27 20:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-06-22 23:39 - 2011-06-11 20:17 - 00000000 ____D C:\Users\Duc Huy\AppData\Local\Google
2013-06-22 23:37 - 2013-06-22 23:37 - 00000000 ____D C:\Users\Duc Huy\AppData\LocalGoogle
2013-06-22 23:34 - 2013-06-22 23:34 - 00001926 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-06-22 23:34 - 2013-06-22 23:34 - 00000000 ____A C:\Windows\SysWOW64\config.nt
2013-06-22 23:33 - 2013-06-22 23:33 - 00000000 ____D C:\Program Files\AVAST Software
2013-06-22 23:33 - 2013-06-22 23:32 - 00000000 ____D C:\ProgramData\AVAST Software
2013-06-18 14:30 - 2013-06-18 14:29 - 00003124 ____A C:\Users\Duc Huy\Documents\cc_20130618_142956.reg
2013-06-17 20:52 - 2013-06-17 20:52 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Intel Corporation
2013-06-17 20:52 - 2013-06-17 20:52 - 00000000 ____D C:\Users\Gast\AppData\Local\EgisTec IPS
2013-06-17 20:52 - 2013-06-17 20:52 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-06-17 20:51 - 2013-06-17 20:51 - 00002259 ____A C:\Users\Gast\Desktop\Google Chrome.lnk
2013-06-17 20:51 - 2013-06-17 20:51 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Vorlagen
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Startmenü
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Netzwerkumgebung
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Lokale Einstellungen
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Eigene Dateien
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Druckumgebung
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Documents\Eigene Musik
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Documents\Eigene Bilder
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\AppData\Local\Verlauf
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\AppData\Local\Anwendungsdaten
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 __SHD C:\Users\Gast\Anwendungsdaten
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-06-17 20:51 - 2013-06-17 20:51 - 00000000 ____D C:\users\Gast
2013-06-17 20:50 - 2011-06-12 09:48 - 00000000 ____D C:\users\Mom&Dad
2013-06-16 18:40 - 2013-06-16 18:40 - 00000188 ____A C:\Users\Duc Huy\Documents\cc_20130616_184028.reg
2013-06-15 20:51 - 2013-06-15 20:51 - 00000020 ___SH C:\Users\DefaultAppPool.IIS APPPOOL.000\ntuser.ini
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Vorlagen
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Startmenü
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Netzwerkumgebung
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Lokale Einstellungen
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Eigene Dateien
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Druckumgebung
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Documents\Eigene Musik
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Documents\Eigene Bilder
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\AppData\Local\Verlauf
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\AppData\Local\Anwendungsdaten
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL.000\Anwendungsdaten
2013-06-15 20:51 - 2013-06-15 20:51 - 00000000 ____D C:\users\DefaultAppPool.IIS APPPOOL.000
2013-06-13 21:23 - 2011-11-03 19:39 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-13 21:23 - 2011-11-03 19:39 - 00000000 ____D C:\ProgramData\Skype
2013-06-13 21:16 - 2013-06-13 21:16 - 00001172 ____A C:\Users\Duc Huy\Documents\cc_20130613_211639.reg
2013-06-13 21:15 - 2007-07-12 03:49 - 00000000 ____D C:\Windows\Panther
2013-06-13 19:53 - 2011-06-18 15:29 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-06-13 19:50 - 2011-06-13 20:34 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-13 16:43 - 2013-03-07 17:51 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-13 16:43 - 2011-09-27 19:52 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-08 23:28 - 2013-06-04 20:09 - 00000000 ____D C:\Users\Duc Huy\Desktop\League of Legends
2013-06-08 23:27 - 2013-06-08 23:27 - 00000000 ____D C:\Users\Duc Huy\Desktop\Office
2013-06-08 16:08 - 2013-06-15 14:21 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:07 - 2013-06-15 14:21 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 16:06 - 2013-06-15 14:21 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-15 14:21 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 16:06 - 2013-06-15 14:21 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 14:28 - 2013-06-15 14:21 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 13:42 - 2013-06-15 14:21 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-15 14:21 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-15 14:21 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-15 14:21 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-15 14:21 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-15 14:21 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-07 18:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-07 18:16 - 2013-04-26 20:08 - 00002187 ____A C:\Users\Duc Huy\Desktop\Google Chrome.lnk
2013-06-06 22:00 - 2013-06-06 22:00 - 00002500 ____A C:\Users\Duc Huy\Documents\cc_20130606_220003.reg
2013-06-06 18:14 - 2010-08-30 11:19 - 00000000 ____D C:\ProgramData\McAfee
2013-06-05 21:09 - 2013-06-05 21:09 - 00000000 ____D C:\Program Files\McAfee
2013-06-05 15:34 - 2013-06-05 15:34 - 00007066 ____A C:\Users\Duc Huy\Documents\cc_20130605_153429.reg
2013-06-04 19:58 - 2012-06-26 21:45 - 00000000 ____D C:\Users\Duc Huy\AppData\Local\PMB Files
2013-06-04 19:58 - 2012-06-26 21:45 - 00000000 ____D C:\ProgramData\PMB Files
2013-06-04 14:56 - 2013-05-18 18:53 - 00000000 ____D C:\Windows\System32\msmq
2013-06-04 14:56 - 2013-03-07 17:51 - 00000000 ____D C:\Windows\System32\Macromed
2013-06-04 14:56 - 2010-12-20 20:41 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2013-06-04 14:56 - 2010-08-30 11:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-06-04 14:55 - 2013-06-17 20:51 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-06-04 14:55 - 2013-06-15 20:51 - 00000000 ____D C:\Users\DefaultAppPool.IIS APPPOOL.000\AppData\Roaming\Macromedia
2013-06-04 14:55 - 2013-06-03 20:50 - 00000000 ____D C:\users\DefaultAppPool.IIS APPPOOL
2013-06-04 14:55 - 2012-07-07 17:47 - 00000000 ____D C:\Riot Games
2013-06-04 14:55 - 2012-02-11 19:11 - 00000000 ____D C:\Program Files (x86)\Opera
2013-06-04 14:55 - 2010-08-30 11:25 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-06-04 14:55 - 2010-08-30 11:03 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-06-04 14:55 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-06-04 14:55 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\MSBuild
2013-06-04 14:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-06-04 14:53 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-06-04 14:53 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-06-04 02:30 - 2013-05-30 22:31 - 00000000 ____D C:\users\DefaultAppPool
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Vorlagen
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Startmenü
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Netzwerkumgebung
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Lokale Einstellungen
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Eigene Dateien
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Druckumgebung
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Documents\Eigene Musik
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Documents\Eigene Bilder
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\AppData\Local\Verlauf
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\AppData\Local\Anwendungsdaten
2013-06-03 20:50 - 2013-06-03 20:50 - 00000000 __SHD C:\Users\DefaultAppPool.IIS APPPOOL\Anwendungsdaten
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Vorlagen
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Startmenü
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Netzwerkumgebung
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Lokale Einstellungen
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Eigene Dateien
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Druckumgebung
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Documents\Eigene Musik
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Documents\Eigene Bilder
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\AppData\Local\Verlauf
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2013-05-30 22:31 - 2013-05-30 22:31 - 00000000 __SHD C:\Users\DefaultAppPool\Anwendungsdaten

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2011-06-12 10:02] - [2011-02-25 08:19] - 2871808 ____A (Microsoft Corporation) 84F1CD612BB99F213E30864157CF2523

C:\Windows\SysWOW64\explorer.exe
[2011-06-12 10:02] - [2011-02-25 07:30] - 2616320 ____A (Microsoft Corporation) 697651F303443F98F7EC76D4DCAE6789

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-06-18 15:18

==================== End Of Log ============================
--- --- ---

--- --- ---


Und Gute Nacht ;)

breakz 27.06.2013 21:44
...

schrauber 28.06.2013 06:13
Adobe bitte updaten. Noch Probleme? :)

breakz 28.06.2013 09:20
Was meinen Sie mit 'noch Probleme'?

Wie kann ich das nochmal updaten? :/

schrauber 28.06.2013 09:36
Am besten Adobe deinstallieren und aktuelle Version installieren.

Ob der Rechner noch irgendwelche Probleme macht? :)

breakz 28.06.2013 09:40
weißer bildschirm erscheint immer noch :/
soll ich alle adobe dateien deinstallieren oder nur den reader?

Ich habe jetzt alles gemacht wie Sie gesagt haben.
Der weißer Bildschirm erscheint aber immer noch :/


Alle Zeitangaben in WEZ +1. Es ist jetzt 01:30 Uhr.
Seite 2 von 4 1 2 34
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19