Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Mail delivery failed: returning message to sender

Mail delivery failed: returning message to sender


Plagegeister aller Art und deren Bekämpfung: Mail delivery failed: returning message to sender

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 17.11.2013, 13:34   #1
BlueAzure
 
Mail delivery failed: returning message to sender - Standard

Mail delivery failed: returning message to sender


Code:
ATTFilter
ComboFix 13-11-16.01 - Flavia 17.11.2013  13:08:24.1.4 - x86
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.49.1033.18.3565.1959 [GMT 1:00]
ausgeführt von:: c:\users\Flavia\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\DealPly
c:\program files\DealPly\uninst.exe
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dnijnnnpimenlljadnifkpancgoebmel_0
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dnijnnnpimenlljadnifkpancgoebmel_0\3
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\background.html
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\crossriderManifest.json
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\manifest.xml
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins.json
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\1_base.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\14_CrossriderUtils.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\17_jQuery.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\19_CHAppAPIWrapper.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\21_debug.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\22_resources.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\28_initializer.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\47_resources_background.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\64_appApiMessage.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\72_appApiValidation.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\78_CrossriderInfo.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\80_CHPopupAppAPI.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\plugins\97_resourceApiWrapper.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\userCode\background.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\extensionData\userCode\extension.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\icons\actions\1.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\icons\icon128.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\icons\icon16.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\icons\icon48.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\api\chrome.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\api\cookie.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\api\message.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\api\pageAction.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\api\pageActionBG.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\background.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\app_api.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\bg_app_api.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\consts.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\cookie_store.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\crossriderAPI.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\delegate.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\events.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\extensionDataStore.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\installer.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\logFile.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\logging.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\onBGDocumentLoad.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\popupResource\newPopup.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\popupResource\popup.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\reports.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\storageWrapper.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\updateManager.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\util.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\lib\xhr.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\js\main.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\manifest.json
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnijnnnpimenlljadnifkpancgoebmel\1.25.4_0\popup.html
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\background.html
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\crossriderManifest.json
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\manifest.xml
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins.json
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\1_base.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\102_dealply_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\103_intext_5_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\104_jollywallet_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\105_corticas_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\108_icm_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\119_similar_web_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\120_luck_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\123_intext_adv_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\125_arcadi2_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\126_revizer_ws_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\127_revizer_p_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\135_arcadi3_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\138_getdeal_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\14_CrossriderUtils.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\142_intext_fa_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\155_ibario_pops_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\17_jQuery.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\175_coolmirage_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\19_CHAppAPIWrapper.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\21_debug.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\22_resources.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\28_initializer.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\47_resources_background.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\64_appApiMessage.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\7_hooks.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\72_appApiValidation.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\78_CrossriderInfo.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\80_CHPopupAppAPI.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\9_search_engine_hook.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\plugins\97_resourceApiWrapper.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\userCode\background.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\extensionData\userCode\extension.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\icons\actions\1.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\icons\icon128.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\icons\icon16.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\icons\icon48.png
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\api\chrome.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\api\cookie.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\api\message.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\api\pageAction.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\api\pageActionBG.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\background.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\app_api.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\bg_app_api.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\consts.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\cookie_store.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\crossriderAPI.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\delegate.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\events.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\extensionDataStore.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\installer.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\logFile.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\logging.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\onBGDocumentLoad.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\popupResource\newPopup.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\popupResource\popup.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\reports.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\storageWrapper.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\updateManager.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\util.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\lib\xhr.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\js\main.js
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\manifest.json
c:\users\Flavia\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.25.80_0\popup.html
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome.manifest
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\asyncDB.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\background.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\browserAction.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\contextMenu.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\dbManager.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\dom_bg.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\fileManager.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefox.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefoxNotifications.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefoxOmnibox.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\message.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\pageAction.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\request.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\tabs.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\webRequest.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\background.html
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\baseObject.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\browser.xul
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\console.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\consts.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\delegate.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\extensionDataStore.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\folderIOWrapper.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\httpObserver.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\IDBWrapper.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\installer.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\logFile.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\prefs.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\progressListenerObserver.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\registry.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\reloadObserver.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\reports.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\requestObject.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\searchSettings.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\uninstallObserver.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\updateManager.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\utils.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\xhr.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\dialog.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\main.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\options.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\options.xul
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\search_dialog.xul
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\defaults\preferences\prefs.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\manifest.xml
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins.json
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\1_base.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\102_dealply_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\103_intext_5_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\105_corticas_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\108_icm_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\119_similar_web_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\120_luck_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\138_getdeal_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\155_ibario_pops_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\17_jQuery.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\180_bpo_serp_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\21_debug.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\22_resources.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\28_initializer.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\47_resources_background.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\64_appApiMessage.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\7_hooks.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\72_appApiValidation.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\98_omniCommands.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\userCode\background.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\userCode\extension.js
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\install.rdf
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\locale\en-US\translations.dtd
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button1.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button2.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button3.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button4.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button5.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\crossrider_statusbar.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon128.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon16.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon24.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon48.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\panelarrow-up.png
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\popup.html
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\skin.css
c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\update.css
c:\windows\system32\WPRO_41_2001woem.tmp
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-10-17 bis 2013-11-17  ))))))))))))))))))))))))))))))
.
.
2013-11-17 12:21 . 2013-11-17 12:24	--------	d-----w-	c:\users\Flavia\AppData\Local\temp
2013-11-17 12:21 . 2013-11-17 12:21	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2013-11-17 12:21 . 2013-11-17 12:21	--------	d-----w-	c:\users\Public\AppData\Local\temp
2013-11-17 12:21 . 2013-11-17 12:21	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-11-16 15:09 . 2013-11-16 15:09	--------	d-----w-	C:\FRST
2013-11-13 15:05 . 2013-10-01 23:45	32256	----a-w-	c:\windows\system32\TsUsbGDCoInstaller.dll
2013-11-13 15:05 . 2013-10-02 00:32	12800	----a-w-	c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-13 15:05 . 2013-10-02 00:42	49152	----a-w-	c:\windows\system32\drivers\TsUsbFlt.sys
2013-11-13 15:04 . 2013-10-02 00:30	14336	----a-w-	c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-13 15:04 . 2013-10-02 00:14	50176	----a-w-	c:\windows\system32\MsRdpWebAccess.dll
2013-11-13 15:04 . 2013-10-02 00:14	17920	----a-w-	c:\windows\system32\wksprtPS.dll
2013-11-13 15:04 . 2013-10-01 23:58	53248	----a-w-	c:\windows\system32\tsgqec.dll
2013-11-13 15:04 . 2013-10-01 23:08	855552	----a-w-	c:\windows\system32\rdvidcrl.dll
2013-11-13 15:04 . 2013-10-01 23:00	76288	----a-w-	c:\windows\system32\TSWbPrxy.exe
2013-11-13 15:04 . 2013-10-01 22:53	350208	----a-w-	c:\windows\system32\wksprt.exe
2013-11-13 15:04 . 2013-10-01 22:34	1068544	----a-w-	c:\windows\system32\mstsc.exe
2013-11-13 15:04 . 2013-10-01 20:55	5698048	----a-w-	c:\windows\system32\mstscax.dll
2013-11-13 14:58 . 2013-09-25 01:57	792576	----a-w-	c:\windows\system32\TSWorkspace.dll
2013-11-13 08:40 . 2013-10-05 19:57	1168384	----a-w-	c:\windows\system32\crypt32.dll
2013-11-11 17:07 . 2013-11-11 17:07	--------	d-----w-	c:\program files\Common Files\Java
2013-11-11 17:07 . 2013-11-11 17:07	94632	----a-w-	c:\windows\system32\WindowsAccessBridge.dll
2013-11-09 11:33 . 2013-11-09 11:33	--------	d-----w-	c:\program files\HD Video Plugin
2013-11-09 11:31 . 2013-11-09 11:32	--------	d-----w-	c:\program files\Plus-HD-2.5
2013-11-09 11:30 . 2013-11-09 11:30	--------	d-----w-	c:\users\Flavia\AppData\Local\VisualBeeClient
2013-11-09 11:30 . 2013-11-09 11:30	--------	d-----w-	c:\users\Flavia\AppData\Local\VisualBeeExe
2013-11-09 11:30 . 2013-11-09 11:30	--------	d-----w-	c:\programdata\VisualBee
2013-11-09 11:30 . 2013-11-09 11:30	--------	d-----w-	c:\users\Flavia\AppData\Local\emaze
2013-11-09 11:30 . 2013-11-09 11:39	--------	d-----w-	c:\program files\MyPC Backup
2013-11-09 11:29 . 2013-11-09 12:34	--------	d-----w-	c:\program files\DealPlyLive
2013-11-09 11:29 . 2013-11-09 11:29	--------	d-----w-	c:\users\Flavia\AppData\Local\DealPlyLive
2013-11-09 11:29 . 2013-11-09 11:29	--------	d-----w-	c:\programdata\DealPlyLive
2013-11-09 11:29 . 2013-11-09 11:29	--------	d-----w-	c:\users\Flavia\AppData\Roaming\Dealply
2013-11-09 11:16 . 2013-11-09 11:17	--------	d-----w-	c:\users\Flavia\AppData\Roaming\PerformerSoft
2013-11-09 11:16 . 2013-11-09 11:16	--------	d-----w-	c:\users\Flavia\AppData\Roaming\SeeSimilar02
2013-11-09 11:16 . 2013-06-19 13:58	17920	----a-w-	c:\windows\system32\roboot.exe
2013-11-09 11:16 . 2013-11-09 11:16	--------	d-----w-	c:\users\Flavia\AppData\Roaming\speedtest4354
2013-11-09 11:16 . 2013-11-09 11:16	--------	d-----w-	c:\programdata\IBUpdaterService
2013-10-30 13:24 . 2013-10-30 13:29	--------	d-----w-	c:\users\Flavia\Robert Betz
2013-10-24 08:16 . 2013-10-24 08:16	--------	d-----w-	c:\program files\iPod
2013-10-24 08:16 . 2013-10-24 08:17	--------	d-----w-	c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-10-24 08:15 . 2013-10-24 08:15	--------	d-----w-	c:\users\Default\AppData\Local\Apple Computer
2013-10-24 08:15 . 2013-10-24 08:15	--------	d-----w-	c:\users\Default\AppData\Roaming\Apple Computer
2013-10-23 07:35 . 2013-10-23 07:37	--------	d-----w-	c:\program files\PDF24
2013-10-23 02:02 . 2013-10-23 02:02	589600	----a-w-	c:\windows\system32\nvStreaming.exe
2013-10-18 15:56 . 2013-11-11 17:07	--------	d-----w-	c:\programdata\Oracle
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-17 12:23 . 2012-11-09 17:08	31680	----a-w-	c:\windows\system32\drivers\WPRO_41_2001.sys
2013-11-17 12:16 . 2013-11-17 12:16	62576	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{696AF975-8BFF-458A-9740-62034C590AA8}\offreg.dll
2013-11-15 09:59 . 2012-03-31 12:51	692616	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2013-11-15 09:59 . 2011-07-28 09:28	71048	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2013-10-27 08:13 . 2013-04-08 18:08	15855568	----a-w-	c:\windows\system32\nvwgf2um.dll
2013-10-27 08:13 . 2013-04-08 18:08	1241376	----a-w-	c:\windows\system32\nvumdshim.dll
2013-10-27 08:13 . 2013-04-08 18:08	2695200	----a-w-	c:\windows\system32\nvapi.dll
2013-10-23 07:19 . 2010-04-03 16:27	4318496	----a-w-	c:\windows\system32\nvcpl.dll
2013-10-23 07:19 . 2010-04-03 16:27	3036448	----a-w-	c:\windows\system32\nvsvc.dll
2013-10-23 07:19 . 2010-04-03 16:27	664352	----a-w-	c:\windows\system32\nvvsvc.exe
2013-10-23 07:19 . 2010-04-03 16:27	2555168	----a-w-	c:\windows\system32\nvsvcr.dll
2013-10-23 07:19 . 2009-09-27 16:47	62752	----a-w-	c:\windows\system32\nvshext.dll
2013-10-23 07:19 . 2010-04-03 16:27	209184	----a-w-	c:\windows\system32\nvmctray.dll
2013-10-21 15:30 . 2013-10-21 15:30	163504	----a-w-	c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin
2013-10-14 06:39 . 2013-11-12 14:42	7796464	------w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{696AF975-8BFF-458A-9740-62034C590AA8}\mpengine.dll
2013-10-02 03:02 . 2013-11-13 15:05	3584	----a-w-	c:\windows\system32\drivers\es-ES\tsusbflt.sys.mui
2013-10-02 03:02 . 2013-11-13 15:05	3072	----a-w-	c:\windows\system32\drivers\ko-KR\tsusbflt.sys.mui
2013-10-02 03:01 . 2013-11-13 15:05	3584	----a-w-	c:\windows\system32\drivers\de-DE\tsusbflt.sys.mui
2013-10-02 03:01 . 2013-11-13 15:05	3072	----a-w-	c:\windows\system32\drivers\ja-JP\tsusbflt.sys.mui
2013-10-02 02:46 . 2013-11-13 15:05	3072	----a-w-	c:\windows\system32\drivers\en-US\tsusbflt.sys.mui
2013-09-14 00:48 . 2013-10-10 08:45	338944	----a-w-	c:\windows\system32\drivers\afd.sys
2013-09-08 02:07 . 2013-10-10 08:45	1294272	----a-w-	c:\windows\system32\drivers\tcpip.sys
2013-09-08 02:03 . 2013-10-10 08:45	231424	----a-w-	c:\windows\system32\mswsock.dll
2013-09-04 01:15 . 2013-10-11 09:27	258560	----a-w-	c:\windows\system32\drivers\usbhub.sys
2013-09-04 01:14 . 2013-10-11 09:27	76288	----a-w-	c:\windows\system32\drivers\usbccgp.sys
2013-09-04 01:14 . 2013-10-11 09:27	284672	----a-w-	c:\windows\system32\drivers\usbport.sys
2013-09-04 01:14 . 2013-10-11 09:27	43008	----a-w-	c:\windows\system32\drivers\usbehci.sys
2013-09-04 01:14 . 2013-10-11 09:27	20480	----a-w-	c:\windows\system32\drivers\usbohci.sys
2013-09-04 01:14 . 2013-10-11 09:27	24064	----a-w-	c:\windows\system32\drivers\usbuhci.sys
2013-09-04 01:14 . 2013-10-11 09:27	6016	----a-w-	c:\windows\system32\drivers\usbd.sys
2013-09-03 12:35 . 2009-12-27 15:02	238872	------w-	c:\windows\system32\MpSigStub.exe
2013-08-30 07:48 . 2013-03-17 16:59	177864	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2011-09-25 14:52	369584	----a-w-	c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2011-09-25 14:51	56080	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2013-03-17 16:59	49376	----a-w-	c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2012-02-24 13:33	61680	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2011-09-25 14:51	770344	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2011-09-25 14:52	29816	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2011-09-25 14:51	66336	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2011-09-25 14:51	41664	----a-w-	c:\windows\avastSS.scr
2013-08-30 07:47 . 2011-09-25 14:51	229648	----a-w-	c:\windows\system32\aswBoot.exe
2013-08-29 01:51 . 2013-10-10 08:45	3969472	----a-w-	c:\windows\system32\ntkrnlpa.exe
2013-08-29 01:51 . 2013-10-10 08:45	3914176	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-08-29 01:50 . 2013-10-10 08:45	1289096	----a-w-	c:\windows\system32\ntdll.dll
2013-08-29 01:50 . 2013-10-10 08:45	619520	----a-w-	c:\windows\system32\tdh.dll
2013-08-29 01:48 . 2013-10-10 08:45	640512	----a-w-	c:\windows\system32\advapi32.dll
2013-08-28 01:04 . 2013-10-10 08:45	2348544	----a-w-	c:\windows\system32\win32k.sys
2013-08-28 00:57 . 2013-10-10 08:45	434688	----a-w-	c:\windows\system32\scavengeui.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{11111111-1111-1111-1111-110411401120}]
2013-11-09 11:33	598528	----a-w-	c:\program files\HD Video Plugin\HD Video Plugin-bho.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47	121968	----a-w-	c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Flavia\AppData\Local\Akamai\netsession_win.exe" [2013-06-04 4489472]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2013-02-22 3093624]
"TBPanel"="c:\program files\EXPERTool\TBPanel.exe" [2012-10-11 2048368]
"Spotify Web Helper"="c:\users\Flavia\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-11-13 1168896]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"KPeerNexonEU"="c:\nexon\NEXON_EU_Downloader\nxEULauncher.exe" [2013-06-21 438272]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"DT LGE"="c:\program files\Common Files\Portrait Displays\Shared\DT_startup.exe" [2007-10-11 81920]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-06-09 10082920]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2013-05-01 421888]
"Aeria Ignite"="c:\program files\Aeria Games\Ignite\aeriaignite.exe" [2013-06-06 1925656]
"PDFPrint"="c:\program files\PDF24\pdf24.exe" [2013-07-22 162856]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-10-19 152392]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Secunia PSI Tray.lnk - c:\program files\Secunia\PSI\psi_tray.exe [2013-4-18 563224]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aeria Ignite]
2013-06-06 21:59	1925656	----a-w-	c:\program files\Aeria Games\Ignite\aeriaignite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2013-04-21 19:43	59720	----a-w-	c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2011-05-10 01:41	49208	----a-w-	c:\program files\HP\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2013-10-19 03:31	152392	----a-w-	c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 14:57	153136	----a-w-	c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2013-05-01 01:59	421888	----a-w-	c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Mirage]
2011-07-29 21:43	136488	----a-w-	c:\program files\CyberLink\YouCam\YCMMirage.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Tray]
2011-07-29 21:43	228448	----a-w-	c:\program files\CyberLink\YouCam\YouCam.exe
.
R2 Secunia Update Agent;Secunia Update Agent;c:\program files\Secunia\PSI\sua.exe [2013-04-18 659992]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-07-25 162672]
R3 1394hub;1394 Enabled Hub;c:\windows\System32\svchost.exe [2009-07-14 20992]
R3 apf003;apf003;c:\windows\system32\apf003.sys [2012-03-16 13232]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2013-11-13 108032]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2013-05-13 4573608]
R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files\Overwolf\OverwolfUpdater.exe [2012-06-21 18360]
R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2009-07-13 1311232]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 S6000KNT;S6000KNT_WebCam Driver;c:\windows\system32\Drivers\S6000KNT.sys [2011-07-28 3328472]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys [x]
R3 TelekomNM3;Telekom Netzmanager Packet Filter Driver;c:\program files\Netzmanager\NMInfraIS2\Driver\TelekomNM3.sys [2010-09-16 35040]
R3 TsUsbFlt;TsUsbFlt; [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys [2011-05-10 15656]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [2010-02-24 185472]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-08-30 66336]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336]
S2 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2012-02-09 116224]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\PSIA.exe [2013-04-18 1227800]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [2011-07-29 27760]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys [2012-02-09 21952]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys [2012-02-09 21952]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD.sys [2013-01-18 40936]
S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2011-11-09 46080]
S3 netr28u;RT2870 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr28u.sys [2009-05-25 734208]
S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf_x86.sys [2013-04-18 16024]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-08-23 414824]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai	REG_MULTI_SZ   	Akamai
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
Inhalt des "geplante Tasks" Ordners
.
2013-11-16 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-31 09:59]
.
2013-11-17 c:\windows\Tasks\Plus-HD-2.5-chromeinstaller.job
- c:\program files\Plus-HD-2.5\Plus-HD-2.5-chromeinstaller.exe [2013-11-09 11:31]
.
2013-11-17 c:\windows\Tasks\Plus-HD-2.5-codedownloader.job
- c:\program files\Plus-HD-2.5\Plus-HD-2.5-codedownloader.exe [2013-11-09 11:31]
.
2013-11-17 c:\windows\Tasks\Plus-HD-2.5-enabler.job
- c:\program files\Plus-HD-2.5\Plus-HD-2.5-enabler.exe [2013-11-09 11:32]
.
2013-11-17 c:\windows\Tasks\Plus-HD-2.5-firefoxinstaller.job
- c:\program files\Plus-HD-2.5\Plus-HD-2.5-firefoxinstaller.exe [2013-11-09 11:31]
.
2013-11-17 c:\windows\Tasks\Plus-HD-2.5-updater.job
- c:\program files\Plus-HD-2.5\Plus-HD-2.5-updater.exe [2013-11-09 11:32]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=3957ffb4-e3aa-7fec-6c6a-3deff64086ec&searchtype=hp&installDate=09/11/2013
uInternet Settings,ProxyOverride = localhost;127.0.01;<local>
uInternet Settings,ProxyServer = http=localhost:8118;https=localhost:8118;ftp=localhost:8118;socks=localhost:9050
uSearchAssistant = hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=3957ffb4-e3aa-7fec-6c6a-3deff64086ec&searchtype=ds&q={searchTerms}&installDate=09/11/2013
IE: Free YouTube to MP3 Converter - c:\users\Flavia\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
Trusted Zone: aeriagames.com
TCP: DhcpNameServer = 192.168.2.1
DPF: {60F33B36-3E89-48EF-BE77-ACC23A366C2A} - hxxps://wstatic.plaync.co.kr/common/UniUpdate/NCLoader.8.cab
DPF: {640044E9-92A3-4B89-A615-1F65354D3A65} - hxxp://rfonline-full.gscdn.com/gscdn/ccr_downloader.cab
FF - ProfilePath - c:\users\Flavia\AppData\Roaming\Mozilla\Firefox\Profiles\ppf858wc.default\
FF - prefs.js: browser.search.selectedEngine - Web Search
FF - prefs.js: browser.startup.homepage - www.google.de
FF - prefs.js: keyword.URL - hxxp://feed.snapdo.com/?publisher=AdKnowledgeYB&dpid=AdKnowledgeYB&co=DE&userid=3957ffb4-e3aa-7fec-6c6a-3deff64086ec&searchtype=ds&installDate=09/11/2013&q=
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: !HIDDEN! 2010-03-21 12:24; smartwebprinting@hp.com; c:\program files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk - c:\program files\Audible\Bin\AudibleDownloadHelper.exe /Startup
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files\common files\akamai/netsession_win_8fa3539.dll"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\xsherlock]
"ImagePath"="c:\windows\system32\xsherlock.xem"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\S-1-5-21-4132011797-2711336362-2655832662-1000\Software\SecuROM\License information*]
"datasecu"=hex:c5,5f,4d,9e,76,6f,70,b9,46,7f,ad,16,c0,78,ed,ac,77,d1,c8,61,cf,
   fe,56,e1,18,27,12,cf,18,1b,64,a1,e9,aa,0f,a0,b0,2c,38,6b,b9,f1,3a,b7,04,1d,\
"rkeysecu"=hex:bc,07,1c,af,72,e5,ca,0f,53,7c,95,3d,5e,e4,07,2a
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\Portrait Displays\Shared\DTSRVC.exe
c:\program files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\taskhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\DllHost.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\msfeedssync.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-11-17  13:31:37 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2013-11-17 12:31
.
Vor Suchlauf: 130897027072 Bytes frei
Nach Suchlauf: 133054156800 Bytes frei
.
- - End Of File - - 142F65E91F5A1D7E83D598BD953052DF
A36C5E4F47E84449FF07ED3517B43A31

Antwort

Themen zu Mail delivery failed: returning message to sender
absender, adware.installbrain, anderem, betreff, emails, empfangen, failed, gestern, gmx.de, landen, lösungen, mailer-daemon@gmx.de, message, nichts, posteingang, problem, pup.optional.crossrider.a, pup.optional.crossrider.m, pup.optional.dealply.a, pup.optional.pcperformer.a, pup.optional.plushd.a, pup.optional.snapdo, sende, sofort, verschickt, versenden


« Weißer Bildschirm...es hat mich auch erwischt | Mail-Programm versendet selbstständig Emails an Kontaktliste »


Ähnliche Themen: Mail delivery failed: returning message to sender


  1. bis zu 50 x am Tag: mail delivery failed: Returning message to sender
    Plagegeister aller Art und deren Bekämpfung - 23.11.2015 (25)
  2. mailer-daemon@gmx.de; Mail delivery failed: returning message to sender
    Plagegeister aller Art und deren Bekämpfung - 06.02.2015 (1)
  3. keineantwortadresse@web.de/Mail delivery failed: returning message to sender
    Plagegeister aller Art und deren Bekämpfung - 18.08.2014 (6)
  4. Mail delivery failed: returning message to sender (adressen stimmten)
    Log-Analyse und Auswertung - 17.08.2014 (5)
  5. Mail delivery failed: returning message to sender
    Überwachung, Datenschutz und Spam - 16.07.2014 (3)
  6. mail delivery failed: returning message to sender - web.de account
    Plagegeister aller Art und deren Bekämpfung - 23.03.2014 (9)
  7. Mail delivery failed: returning message to sender
    Log-Analyse und Auswertung - 06.12.2013 (7)
  8. Mail delivery failed: returning message to sender
    Plagegeister aller Art und deren Bekämpfung - 17.11.2013 (8)
  9. mail delivery failed: returning message to sender - web.de account
    Plagegeister aller Art und deren Bekämpfung - 18.07.2013 (9)
  10. mail delivery failed: returning message to sender im gmx account
    Log-Analyse und Auswertung - 12.07.2013 (5)
  11. Mail delivery failed returning message to sender
    Plagegeister aller Art und deren Bekämpfung - 14.06.2013 (7)
  12. Mail delivery failed: returning message to sender
    Plagegeister aller Art und deren Bekämpfung - 17.03.2013 (3)
  13. Seit ca. 7 Tagen: web.de - mail delivery failed returning message to sender
    Plagegeister aller Art und deren Bekämpfung - 16.12.2012 (13)
  14. mail delivery failed: returning message to sender bei web.de
    Plagegeister aller Art und deren Bekämpfung - 13.12.2012 (11)
  15. Mail delivery failed: returning message to sender bei web.de
    Plagegeister aller Art und deren Bekämpfung - 14.11.2012 (11)
  16. mail delivery failed: returning message to sender im web.de account
    Plagegeister aller Art und deren Bekämpfung - 24.10.2012 (3)
  17. Mail Delivery Failed: Returning Message to Sender
    Alles rund um Windows - 10.10.2012 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Mail delivery failed: returning message to sender - Code: Alles auswählen Aufklappen ATTFilter ComboFix 13-11-16.01 - Flavia 17.11.2013 13:08:24.1.4 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1033.18.3565.1959 [GMT 1:00] ausgeführt von:: c:\users\Flavia\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! - Mail delivery failed: returning message to sender...
Archiv
Du betrachtest: Mail delivery failed: returning message to sender auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131