splitterbox | 18.08.2015 12:54 | Hier der MbamLog: Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlaufdatum: 18.08.2015
Suchlaufzeit: 12:14
Protokolldatei: mbam.txt
Administrator: Ja
Version: 2.1.8.1057
Malware-Datenbank: v2015.08.18.03
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Susanne Ludewig
Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 380735
Abgelaufene Zeit: 23 Min., 14 Sek.
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 0
(keine bösartigen Elemente erkannt)
Module: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 10
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [1c2ffc0e6c1f1f17bd8a735dde241fe1],
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [1c2ffc0e6c1f1f17bd8a735dde241fe1],
PUP.Optional.Delta.ShrtCln, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [1c2ffc0e6c1f1f17bd8a735dde241fe1],
PUP.Optional.Softonic.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}, In Quarantäne, [d279b05a6427f54111e9a2f845bdfd03],
PUP.Optional.Softonic.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}, In Quarantäne, [d279b05a6427f54111e9a2f845bdfd03],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, In Quarantäne, [cc7fd337cfbc023401c428701de5be42],
PUP.Optional.Babylon.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}, In Quarantäne, [5fec50ba5c2fef478f100f89ec16d828],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\WOW6432NODE\DataMngr, In Quarantäne, [9caf7892464557df140e81d024df4cb4],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\DataMngr_Toolbar, In Quarantäne, [99b2af5ba5e6043208ac91e6f4107987],
PUP.Optional.Softonic.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C4764E4A-23D2-4910-8CB0-58F4F762F23F}, In Quarantäne, [87c4f317bfccf442d4fbb4642ed549b7],
Registrierungswerte: 6
PUP.Optional.Conduit.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|URL, hxxp://search.conduit.com/Results.aspx?ctid=CT3319434&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP3212F6EE-41F4-47C4-964D-B87B6B4ECC55&q={searchTerms}&SSPV=, In Quarantäne, [98b36f9beaa1280e557af92942c1dd23]
PUP.Optional.Conduit.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|SuggestionsURL_JSON, hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}, In Quarantäne, [98b316f490fb4de99c332af8cb3815eb]
PUP.Optional.Delta.ShrtCln, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}|URL, hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=DE00685D43BBB468&affID=121564&tsp=4945, In Quarantäne, [1d2e7793afdc78be53531d82956f6799]
PUP.Optional.Babylon.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}|FaviconURL, search.babylon.com/favicon.ico, In Quarantäne, [cc7fa664b4d721150683e33bf013da26]
PUP.Optional.Softonic.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C4764E4A-23D2-4910-8CB0-58F4F762F23F}|URL, hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=de00786b000000000000685d43bbb468&r=964, In Quarantäne, [87c4f317bfccf442d4fbb4642ed549b7]
PUP.Optional.Softonic.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{C4764E4A-23D2-4910-8CB0-58F4F762F23F}|FaviconURL, hxxp://search.softonic.com/favicon.ico, In Quarantäne, [5eed6c9e42495dd9fcd377a1b3505ba5]
Registrierungsdaten: 1
PUP.Optional.Conduit.A, HKU\S-1-5-21-2454520521-1313131367-1046456688-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://search.conduit.com/?ctid=CT3319434&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP3212F6EE-41F4-47C4-964D-B87B6B4ECC55&SSPV=, Gut: (www.google.com), Schlecht: (hxxp://search.conduit.com/?ctid=CT3319434&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP3212F6EE-41F4-47C4-964D-B87B6B4ECC55&SSPV=),Ersetzt,[74d7d733404b3ef8f7a69caec93cb14f]
Ordner: 8
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\329F07D55C594D4EAC9080CE97614B55, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\4908C17B2534404E8B751B53DA31D3DD, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\5BD9D63296F54CE7A2779FE4D168D58B, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\8B88565E43D741AB8ABF92A25990362E, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\A74B21FB14A74F20BE29C6BACE1A6B64, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
Dateien: 52
PUP.Optional.OpenCandy.A, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\4908C17B2534404E8B751B53DA31D3DD\Setupsft_chr_p1v7.exe, In Quarantäne, [ce7d5daddbb0989eb38d37de3ec753ad],
PUP.Optional.Babylon.A, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\5BD9D63296F54CE7A2779FE4D168D58B\DeltaTB.exe, In Quarantäne, [8cbfb951aae1b87e9f18c81e3bc52cd4],
PUP.Optional.Conduit.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\searchplugins\conduit-search.xml, In Quarantäne, [351668a29eedee486c93e25c9b683bc5],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\searchplugins\softonic.xml, In Quarantäne, [3e0dca40bdceca6cc63ffb60bf44fe02],
PUP.Optional.Babylon.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\searchplugins\babylon.xml, In Quarantäne, [9fac50ba602b55e1082c70ed04ffc937],
PUP.Optional.Delta.ShrtCln, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\searchplugins\delta.xml, In Quarantäne, [f05b8c7e96f541f53b203e1f28dbbe42],
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\8B88565E43D741AB8ABF92A25990362E\SkypeSetupFulltrackable-6.16.0.105.exe, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.OpenCandy, C:\Users\Susanne Ludewig\AppData\Roaming\OpenCandy\A74B21FB14A74F20BE29C6BACE1A6B64\TuneUpUtilities2013-2200217_de-DE.exe, In Quarantäne, [9fac63a76625ae886b06994c8181827e],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\appCntrl.js, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\bg.html, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\bg.js, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\chMntz.dll, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\CrmAdpt.dll, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\ct.js, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\CTB.dll, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\dpk.js, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\hprtkMsg.htm, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\hprtkMsg.js, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\json2.min.js, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\logo.png, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\manifest.json, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Local\Google\Chrome\User Data\default\extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0_0\pref.json, In Quarantäne, [1c2f0efcf9929c9a87019b5032d036ca],
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.Softonic.admin", false);), Ersetzt,[b39874968407e35365ef236b41c4cc34]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ferences
/* Do not edit this file.
*
), Ersetzt,[6fdc6f9bccbffa3c4a0ac7c75da8e51b]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (references
/* Do not edit this file.
*
* If you make changes to this file ), Ersetzt,[a0abda30d9b2ed49f361ccc24db81be5]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (e.
*
* If you make changes to this file while t), Ersetzt,[85c6f6145b30e94d66eeafdf16ef8a76]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ces
/* Do not edit this file.
*
* If you), Ersetzt,[37140802315a4de9e66e6e206a9bc43c]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (erences
/* Do not edit this file.
*
* If ), Ersetzt,[fb5020ead3b83501db791d71bb4a20e0]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (rences
/* Do not edit this file.
*
* If), Ersetzt,[4ffcc8427318df57134190febd483fc1]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ferences
/* Do not edit this file.
*
* If), Ersetzt,[81cac149c2c9b87e2034f09e7194ff01]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (rences
/* Do not edit this file.
*
* If you m), Ersetzt,[a6a556b4e8a35adc351f3856dc2911ef]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (es
/* Do not edit this file.
*
* If y), Ersetzt,[3a11808a8cff092d3321c3cb3fc6cd33]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (references
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be ove), Ersetzt,[54f78189a0eb9d998cc80787ad58b64a]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (tion is running,
* the changes will be overwritten when the applicatio), Ersetzt,[2e1dbc4ef09bc96d65ef2767c441639d]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: ( this file.
*
* If you make changes to this fil), Ersetzt,[08431eec69225fd7ee662d6136cf5da3]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ces
/* Do not edit this file.
*
* If you make c), Ersetzt,[b59645c5d7b4191d460e236b84815ba5]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (
/* Do not edit this file.
*
* If you m), Ersetzt,[4a019179305ba294272d7618fc0951af]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ferences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwrit), Ersetzt,[e2699971d9b296a0460e6a2428ddbb45]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (n is running,
* the changes will be overwritten w), Ersetzt,[1338ac5e3b5001352430434bbf46ff01]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ces
/* Do not edit this file.
*
* If you make ), Ersetzt,[69e269a1d5b6bf77a5afb7d79b6af50b]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (s
/* Do not edit this file.
*
* If you m), Ersetzt,[b19a11f94d3e7fb799bb444a5fa6b14f]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (erences
/* Do not edit this file.
*
* If y), Ersetzt,[8ac1dc2e5635f3433321cbc39a6b6e92]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ences
/* Do not edit this file.
*
* If you make changes to this f), Ersetzt,[2a21b951a6e5cd698dc7642a6c99b14f]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: ( this file.
*
* If you make changes to this file whil), Ersetzt,[202bf2183a511f176aea4f3f02033ec2]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the a), Ersetzt,[69e20604cdbe2c0a9bb9b8d624e1c13f]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (s running,
* the changes will be overwritten when), Ersetzt,[fb508f7b573488aeed67c8c6f312f40c]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ces
/* Do not edit this file.
*
* If you make changes), Ersetzt,[252667a35a31a69075df731be91c20e0]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: ( Do not edit this file.
*
* If you make changes ), Ersetzt,[bf8c40ca2a617abc361eb7d7cb3a956b]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=de00786b000000000000685d43bbb468");), Ersetzt,[58f37f8bbccfcf67fa625b3325e09769]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (ity.browsewithcaret", true);
user_pref("accessibility.typeaheadfind.flashBar", 0);
user_pref("app.update.lastUpdateTime.addon-background-update), Ersetzt,[7ad19476ee9d9a9c6eeebcd2887da15f]
PUP.Optional.Softonic.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (UpdateTime.addon-background-update-timer", 1391591508);
user_pref("app.update.lastUpdateTime.background-update-timer", 1391591988);
user_pref("app), Ersetzt,[8bc0a36715769f975507107e8d7807f9]
PUP.Optional.Conduit.A, C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.newtab.url", "hxxp://search.conduit.com/?ctid=CT3319434&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=4&UP=SP3212F6EE-41F4-47C4-964D-B87B6B4ECC55");), Ersetzt,[14378882850644f28ed4f698c63f3fc1]
Physische Sektoren: 0
(keine bösartigen Elemente erkannt)
(end) AdwLog: Code:
# AdwCleaner v5.001 - Bericht erstellt 18/08/2015 um 13:24:13
# Aktualisiert 17/08/2015 von Xplode
# Datenbank : 2015-08-16.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Susanne Ludewig - SUSANNELUDEWIG
# Gestarted von : C:\Users\Susanne Ludewig\Desktop\AdwCleaner_5.001.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\ProgramData\Babylon
[-] Ordner Gelöscht : C:\ProgramData\Partner
[-] Ordner Gelöscht : C:\Users\Susanne Ludewig\AppData\LocalLow\Softonic
[-] Ordner Gelöscht : C:\Users\Susanne Ludewig\AppData\Roaming\Babylon
[-] Ordner Gelöscht : C:\Users\Susanne Ludewig\AppData\Roaming\dvdvideosoftiehelpers
[-] Ordner Gelöscht : C:\Windows\SysWOW64\SearchProtect
***** [ Dateien ] *****
[-] Datei Gelöscht : C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\foxydeal.sqlite
[-] Datei Gelöscht : C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\invalidprefs.js
[-] Datei Gelöscht : C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\user.js
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\f53ded9b334ea13
[-] Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : HKCU\Software\Myfree Codec
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Myfree Codec
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\Myfree Codec
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\OCS
***** [ Internetbrowser ] *****
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.aflt", "OC");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.autoRvrt", "false");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.dfltLng", "de");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.dfltSrch", true);
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.dnsErr", true);
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.excTlbr", false);
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.ffxUnstlRst", false);
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.hmpg", true);
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.id", "de00786b000000000000685d43bbb468");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.instlDay", "16049");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.instlRef", "MOY00621");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.newTab", true);
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=de00786b000000000000685d43bbb468");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.prdct", "Softonic");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.prtnrId", "softonic");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.rvrt", "false");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.smplGrp", "none");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.tlbrId", "opencandy2013");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=de00786b000000000000685d43bbb468&q=");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.vrsn", "1.8.21.14");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.vrsnTs", "1.8.21.148:51:36");
[-] [C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.Softonic.vrsni", "1.8.21.14");
*************************
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
*************************
C:\AdwCleaner[C1].txt - [7680 Bytes] - [18/08/2015 13:24:13]
C:\AdwCleaner[S1].txt - [7447 Bytes] - [18/08/2015 13:21:15]
########## EOF - C:\AdwCleaner[C1].txt - [7804 Bytes] ########## und noch ein zweiter: Code:
# AdwCleaner v5.001 - Bericht erstellt 18/08/2015 um 13:21:15
# Aktualisiert 17/08/2015 von Xplode
# Datenbank : 2015-08-16.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Susanne Ludewig - SUSANNELUDEWIG
# Gestarted von : C:\Users\Susanne Ludewig\Desktop\AdwCleaner_5.001.exe
# Option : Suchlauf
***** [ Dienste ] *****
***** [ Ordner ] *****
Ordner Gefunden : C:\ProgramData\Babylon
Ordner Gefunden : C:\ProgramData\Partner
Ordner Gefunden : C:\Users\Susanne Ludewig\AppData\LocalLow\Softonic
Ordner Gefunden : C:\Users\Susanne Ludewig\AppData\Roaming\Babylon
Ordner Gefunden : C:\Users\Susanne Ludewig\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gefunden : C:\Windows\SysWOW64\SearchProtect
***** [ Dateien ] *****
Datei Gefunden : C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\foxydeal.sqlite
Datei Gefunden : C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\invalidprefs.js
Datei Gefunden : C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\user.js
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\f53ded9b334ea13
Wert Gefunden : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gefunden : HKCU\Software\Myfree Codec
Schlüssel Gefunden : HKCU\Software\OCS
Schlüssel Gefunden : HKLM\SOFTWARE\Myfree Codec
Schlüssel Gefunden : [x64] HKCU\Software\Myfree Codec
Schlüssel Gefunden : [x64] HKCU\Software\OCS
***** [ Internetbrowser ] *****
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.aflt", "OC");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.autoRvrt", "false");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.dfltLng", "de");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.dfltSrch", true);
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.dnsErr", true);
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.excTlbr", false);
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.ffxUnstlRst", false);
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.hmpg", true);
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.id", "de00786b000000000000685d43bbb468");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.instlDay", "16049");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.instlRef", "MOY00621");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.newTab", true);
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=de00786b000000000000685d43bbb468");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.prdct", "Softonic");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.prtnrId", "softonic");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.rvrt", "false");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.smplGrp", "none");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.tlbrId", "opencandy2013");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=de00786b000000000000685d43bbb468&q=");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.vrsn", "1.8.21.14");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.vrsnTs", "1.8.21.148:51:36");
[C:\Users\Susanne Ludewig\AppData\Roaming\Mozilla\Firefox\Profiles\r5gk67rj.default\prefs.js] [Preference] Gefunden : user_pref("extensions.Softonic.vrsni", "1.8.21.14");
*************************
C:\AdwCleaner[S1].txt - [7301 Bytes] - [18/08/2015 13:21:15]
########## EOF - C:\AdwCleaner[S1].txt - [7363 Bytes] ########## JRT-Log: Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.6 (08.10.2015:1)
OS: Windows 7 Home Premium x64
Ran by Susanne Ludewig on 18.08.2015 at 13:28:55,43
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{20549133-13FD-43EA-90BE-42788FE251F6}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{37BBE699-0E82-49F6-94F9-470333F86277}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{450E5132-1F3B-455C-8ED9-BB0ECA91CC89}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{4993A35F-DD09-4F5F-91AC-8E2B7E5A3C22}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{512D0C65-DBD2-4813-A459-FB7ABE2E194E}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{8F94F2DF-7717-4DBC-955D-342DA929E389}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{97FA8FF1-9E3F-4A82-A680-A15748CB0353}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{A16D57E9-B8F6-41BF-9D24-606ECEA5C90E}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{D2B1C44F-5FA5-459D-B236-784A6F64D584}
Successfully deleted: [Empty Folder] C:\Users\Susanne Ludewig\Appdata\Local\{FDD30F09-5467-4B0F-ADB5-7048114C2A24}
Successfully deleted: [Folder] C:\Program Files (x86)\myfree codec
Successfully deleted: [Folder] C:\Users\Susanne Ludewig\Documents\add-in express
~~~ FireFox
Emptied folder: C:\Users\Susanne Ludewig\AppData\Roaming\mozilla\firefox\profiles\vdejzphz.default-1391699856713\minidumps [85 files]
~~~ Chrome
[C:\Users\Susanne Ludewig\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
[C:\Users\Susanne Ludewig\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
[C:\Users\Susanne Ludewig\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
[C:\Users\Susanne Ludewig\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 18.08.2015 at 13:31:48,67
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |