Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Firefox ist infiziert

Firefox ist infiziert


Plagegeister aller Art und deren Bekämpfung: Firefox ist infiziert

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 14.03.2014, 23:25   #1
hemmy
 
Firefox ist infiziert - Standard

Firefox ist infiziert


FRST:
Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2014
Ran by User at 2014-03-14 17:10:53 Run:1
Running from C:\Users\User\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF NewTab: chrome://quick_start/content/index.html
FF Extension: Quick Start - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\Extensions\quick_start@gmail.com [2014-03-09]
FF HKCU\...\Firefox\Extensions: [{cf798cb9-b0d9-4ec0-a967-4987b7bedcec}] - C:\Program Files (x86)\Re-markit-soft\157.xpi
FF Extension: Re-markit - C:\Program Files (x86)\Re-markit-soft\157.xpi [2014-03-09]
C:\Program Files (x86)\Re-markit-soft
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
C:\Users\User\AppData\Local\13333
C:\ProgramData\ntuser.pol
C:\Windows\system32\GroupPolicy
C:\Windows\SysWOW64\GroupPolicy
Task: {CC53C16E-6A44-4D9F-9458-8088D41C87B8} - \Re-markit Update No Task File
Task: {E7E948B7-3446-477D-8B1A-7D541ED501D3} - \AmiUpdXp No Task File
Reg: reg delete "HKEY_CURRENT_USER\Software\mozilla\Extends" /v appid /f
end
         
*****************

C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
Firefox newtab deleted successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\Extensions\quick_start@gmail.com => Moved successfully.
HKCU\Software\Mozilla\Firefox\Extensions\\{cf798cb9-b0d9-4ec0-a967-4987b7bedcec} => Value deleted successfully.
C:\Program Files (x86)\Re-markit-soft\157.xpi => Moved successfully.
C:\Program Files (x86)\Re-markit-soft => Moved successfully.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
X6va015 => Service deleted successfully.
X6va017 => Service deleted successfully.
xhunter1 => Service deleted successfully.
C:\Users\User\AppData\Local\13333 => Moved successfully.
C:\ProgramData\ntuser.pol => Moved successfully.
C:\Windows\System32\GroupPolicy => Moved successfully.
C:\Windows\SysWOW64\GroupPolicy => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CC53C16E-6A44-4D9F-9458-8088D41C87B8} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC53C16E-6A44-4D9F-9458-8088D41C87B8} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Re-markit Update => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E7E948B7-3446-477D-8B1A-7D541ED501D3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E7E948B7-3446-477D-8B1A-7D541ED501D3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp => Key deleted successfully.

========= reg delete "HKEY_CURRENT_USER\Software\mozilla\Extends" /v appid /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========



The system needed a reboot. 

==== End of Fixlog ====
HitmanPro (bevor die funde gelöscht sind)
Code:
ATTFilter
HitmanPro 3.7.9.212
www.hitmanpro.com

   Computer name . . . . : USER-PC
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : User-PC\User
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2014-03-14 17:14:00
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 4m 31s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 2
   Traces  . . . . . . . : 64

   Objects scanned . . . : 1.614.360
   Files scanned . . . . : 18.794
   Remnants scanned  . . : 429.123 files / 1.166.443 keys

Malware _____________________________________________________________________

   C:\Users\User\AppData\Roaming\AffiliatedUpdate\UpdateProc\UpdateTask.exe
      Size . . . . . . . : 100.864 bytes
      Age  . . . . . . . : 336.1 days (2013-04-12 15:10:43)
      Entropy  . . . . . : 6.2
      SHA-256  . . . . . : B3DB2337A7EBB2AD25D430ED5B8FBEDE6FC598C24729FE5E03D319F3CED4E2E0
    > Bitdefender  . . . : Trojan.Generic.10250073
      Fuzzy  . . . . . . : 98.0

   C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe
      Size . . . . . . . : 10.752 bytes
      Age  . . . . . . . : 1.9 days (2014-03-12 19:44:13)
      Entropy  . . . . . : 5.1
      SHA-256  . . . . . : 294587D993EC106B446DB2F5D9FDE320A9D39DE8188F02754CB2562A6D0FAD08
      Description  . . . : wupdte
      Version  . . . . . : 1.0.0.0
      Copyright  . . . . :  
    > Bitdefender  . . . : Trojan.Generic.9894453
      Fuzzy  . . . . . . : 105.0
      Forensic Cluster
         -4.8s C:\zoek_backup\restore.txt
         -4.8s C:\zoek_backup\C_Users_User_AppData_Roaming_Mozilla_Firefox_Profiles_3k5dhc3m.default_prefs__1944_.backup.vir
         -3.6s C:\zoek_backup\C_Users_User_.android\
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey.pub
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\atl100.dll
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\BrowserHelpersInstaller.exe
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVDVideoSoft.Resources.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSSysReport.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSUpdate.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns64.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\insthpr.exe
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfc100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfcm100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcp100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcr100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\Newtonsoft.Json.Net20.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\PrerequisiteCheck.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SettingsHelper.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SubscriptionOffer.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tier0-pinv-1.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ytgroovlc.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.AppFx.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.DialogForms.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVSSysReport.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\PrerequisiteCheck.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\SubscriptionOffer.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.AppFx.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.DialogForms.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVSSysReport.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\PrerequisiteCheck.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\SubscriptionOffer.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.AppFx.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.DialogForms.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.Resources.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\PrerequisiteCheck.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\SubscriptionOffer.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.AppFx.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.DialogForms.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.Resources.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.AppFx.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.DialogForms.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.Resources.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVSSysReport.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\SubscriptionOffer.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.AppFx.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.DialogForms.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.Resources.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVSSysReport.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\PrerequisiteCheck.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\SubscriptionOffer.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVSSysReport.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\PrerequisiteCheck.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\SubscriptionOffer.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.Resources.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVSSysReport.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\PrerequisiteCheck.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\SubscriptionOffer.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.AppFx.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.DialogForms.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVSSysReport.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\PrerequisiteCheck.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.AppFx.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\PrerequisiteCheck.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\SubscriptionOffer.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.AppFx.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\PrerequisiteCheck.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\SubscriptionOffer.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Readme.txt
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.dat
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.exe
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.ico
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\TsuDll.dll
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\_Setup.dll
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\avgp
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\24oojbk0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2db7f4hp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2kolj8xp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\3pff9xd0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\6gkpgkgp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\gmu8lpbp.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\p47yoy3p.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\26rb70ea.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\27x6egca.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\28cxfqoq.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2adeedza.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2htydrk1.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2y15i5dq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2zb6ym8q.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\39z7j3pq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\3bnv6vua.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\hdlcfcy1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\sciws5i1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\17ob3rb2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\1ozft862.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\20t318q2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2olqmat2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2yq5gv62.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\37mn60zr.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\3ptrm7s2.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\156pw8e3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1n2mgee3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1qcqfnlc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1x3hpzbs.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\2317x5kc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\285w2qg3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\dw94nbs3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\mhgoxr4c.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\q3x5mjuc.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1263cmxt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ccf72bt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ohtdc64.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1u4imsyt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2cwy0vkd.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2o7cstld.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\315volld.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\9o7d4kgt.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\lr7ii0r4.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\oz86eb0d.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\13ttpxq5.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\16p4qik5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1djsm1v5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1j44fvte.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1kan2dc5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1sr6fv2u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1wglxe85.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\26jk49bu.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\2ixunlf5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\31up9p35.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\352cxu0u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\35oydmeu.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3auxirle.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3fz0czm5.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3lft60je.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3u6nulou.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\nvc7qz1u.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\13vnsv66.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1ardrua6.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1khdo0j6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\29gpatcv.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\2v38v456.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\33qouog6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3d6clwif.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3ec1gm4v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fhrpk5v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fpjryaf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\c5qgqqcv.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\nzq8i4uf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1l5u41jg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1u255shg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\217mx137.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\26omvijg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\28j2eks7.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2bs28gjg.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2c1ig19w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2cy8w32w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2e9sygow.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2ub3xqhw.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\369vwf77.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\36i4ceo7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\3rju97o7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\1u3rukb8.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\20gvh6dx.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\2o00rkoh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\3lq7gqqh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\ll4pvn8h.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\z0nlbmhh.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1026jw4y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1az4s21y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1j681wxy.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2gbx2gti.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2n8kvku9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\9bolvw7i.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\dkcmnmsy.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\kj3na9ni.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\xwqu1rn9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\15yop5pz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1g164e4j.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1wsecsej.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2aoztfjz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2da25t2z.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2iduv9jz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\4tzhsucz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\tn96d5yz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\2683lelk.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\yfm0ur7k.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\c\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2kgrv1xm.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2rjwcz0m.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\372r0o1m.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\3hmmcnwm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\gp0j6bim.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\wv4memmm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\23jfwrpn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\2d5fujln.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\3ss3klxn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\9bnshwin.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\2f7qpkgo.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\39nrp0ao.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\3j18m0po.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\fj7qiq0o.d
         -0.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\prepared\
         -0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\
          0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe
          0.0s C:\zoek_backup\C_Users_User_daemonprocess.txt.vir
          0.0s C:\zoek_backup\C_Users_User_Downloads_FreeYouTubeToMP3Converter.exe.vir
          0.2s C:\zoek_backup\C_Windows_wininit.ini.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SET9C46.tmp.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SETB2D8.tmp.vir
          0.4s C:\zoek_backup\C_Windows_Syswow64_SETBCCE.tmp.vir
          0.5s C:\zoek_backup\C_Users_User_Downloads_wpsetup.exe.vir


Potential Unwanted Programs _________________________________________________

   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{4D2D3B0F-69BE-477A-90F5-FDDB05357975} (Claro)
   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{98889811-442D-49DD-99D7-DC866BE87DBC} (Claro)

Cookies _____________________________________________________________________

   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adk2.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\55SVN3K3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\8SJ1IXP1.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\9T04X25R.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\DFUHCJZP.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\G7G60O5E.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\GJW0DYBB.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H5DWRVEZ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H7QCRD6H.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\J13MFOAV.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\JOVXSGKL.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\KY5SL3W3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\L49V0S1U.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\MBOIOICM.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\O3MRHK01.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q3VJIJWQ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q9CY2RYR.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\T3GK0AXT.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\VQSVQXHC.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\W4LF1CME.txt
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.yieldmanager.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.zanox.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.glispa.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.trackitdown.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.yahoo.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adtech.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:apmebf.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:atdmt.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:burstnet.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:celebrityfake.xxx
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:de.sitestat.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:doubleclick.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:games.adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:hearstmagazines.112.2o7.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:revsci.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:serving-sys.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:statcounter.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:stats.paypal.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.adform.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.zalando.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:tradedoubler.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.etracker.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.freecamsexposed.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.googleadservices.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:xiti.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:yadro.ru
HitmanPro (nach dem löschen der Funde):
Code:
ATTFilter
HitmanPro 3.7.9.212
www.hitmanpro.com

   Computer name . . . . : USER-PC
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : User-PC\User
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Trial (30 days left)

   Scan date . . . . . . : 2014-03-14 17:14:00
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 4m 31s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 2
   Traces  . . . . . . . : 64

   Objects scanned . . . : 1.614.360
   Files scanned . . . . : 18.794
   Remnants scanned  . . : 429.123 files / 1.166.443 keys

Malware _____________________________________________________________________

   C:\Users\User\AppData\Roaming\AffiliatedUpdate\UpdateProc\UpdateTask.exe -> Quarantined
      Size . . . . . . . : 100.864 bytes
      Age  . . . . . . . : 336.1 days (2013-04-12 15:10:43)
      Entropy  . . . . . : 6.2
      SHA-256  . . . . . : B3DB2337A7EBB2AD25D430ED5B8FBEDE6FC598C24729FE5E03D319F3CED4E2E0
    > Bitdefender  . . . : Trojan.Generic.10250073
      Fuzzy  . . . . . . : 98.0

   C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe -> Quarantined
      Size . . . . . . . : 10.752 bytes
      Age  . . . . . . . : 1.9 days (2014-03-12 19:44:13)
      Entropy  . . . . . : 5.1
      SHA-256  . . . . . : 294587D993EC106B446DB2F5D9FDE320A9D39DE8188F02754CB2562A6D0FAD08
      Description  . . . : wupdte
      Version  . . . . . : 1.0.0.0
      Copyright  . . . . :  
    > Bitdefender  . . . : Trojan.Generic.9894453
      Fuzzy  . . . . . . : 105.0
      Forensic Cluster
         -4.8s C:\zoek_backup\restore.txt
         -4.8s C:\zoek_backup\C_Users_User_AppData_Roaming_Mozilla_Firefox_Profiles_3k5dhc3m.default_prefs__1944_.backup.vir
         -3.6s C:\zoek_backup\C_Users_User_.android\
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey.pub
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\atl100.dll
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\BrowserHelpersInstaller.exe
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVDVideoSoft.Resources.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSSysReport.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSUpdate.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns64.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\insthpr.exe
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfc100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfcm100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcp100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcr100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\Newtonsoft.Json.Net20.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\PrerequisiteCheck.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SettingsHelper.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SubscriptionOffer.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tier0-pinv-1.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ytgroovlc.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.AppFx.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.DialogForms.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVSSysReport.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\PrerequisiteCheck.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\SubscriptionOffer.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.AppFx.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.DialogForms.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVSSysReport.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\PrerequisiteCheck.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\SubscriptionOffer.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.AppFx.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.DialogForms.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.Resources.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\PrerequisiteCheck.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\SubscriptionOffer.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.AppFx.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.DialogForms.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.Resources.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.AppFx.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.DialogForms.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.Resources.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVSSysReport.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\SubscriptionOffer.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.AppFx.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.DialogForms.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.Resources.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVSSysReport.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\PrerequisiteCheck.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\SubscriptionOffer.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVSSysReport.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\PrerequisiteCheck.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\SubscriptionOffer.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.Resources.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVSSysReport.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\PrerequisiteCheck.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\SubscriptionOffer.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.AppFx.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.DialogForms.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVSSysReport.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\PrerequisiteCheck.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.AppFx.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\PrerequisiteCheck.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\SubscriptionOffer.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.AppFx.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\PrerequisiteCheck.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\SubscriptionOffer.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Readme.txt
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.dat
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.exe
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.ico
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\TsuDll.dll
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\_Setup.dll
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\avgp
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\24oojbk0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2db7f4hp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2kolj8xp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\3pff9xd0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\6gkpgkgp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\gmu8lpbp.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\p47yoy3p.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\26rb70ea.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\27x6egca.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\28cxfqoq.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2adeedza.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2htydrk1.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2y15i5dq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2zb6ym8q.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\39z7j3pq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\3bnv6vua.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\hdlcfcy1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\sciws5i1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\17ob3rb2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\1ozft862.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\20t318q2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2olqmat2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2yq5gv62.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\37mn60zr.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\3ptrm7s2.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\156pw8e3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1n2mgee3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1qcqfnlc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1x3hpzbs.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\2317x5kc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\285w2qg3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\dw94nbs3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\mhgoxr4c.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\q3x5mjuc.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1263cmxt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ccf72bt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ohtdc64.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1u4imsyt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2cwy0vkd.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2o7cstld.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\315volld.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\9o7d4kgt.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\lr7ii0r4.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\oz86eb0d.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\13ttpxq5.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\16p4qik5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1djsm1v5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1j44fvte.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1kan2dc5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1sr6fv2u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1wglxe85.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\26jk49bu.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\2ixunlf5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\31up9p35.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\352cxu0u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\35oydmeu.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3auxirle.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3fz0czm5.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3lft60je.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3u6nulou.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\nvc7qz1u.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\13vnsv66.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1ardrua6.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1khdo0j6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\29gpatcv.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\2v38v456.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\33qouog6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3d6clwif.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3ec1gm4v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fhrpk5v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fpjryaf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\c5qgqqcv.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\nzq8i4uf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1l5u41jg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1u255shg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\217mx137.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\26omvijg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\28j2eks7.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2bs28gjg.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2c1ig19w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2cy8w32w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2e9sygow.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2ub3xqhw.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\369vwf77.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\36i4ceo7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\3rju97o7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\1u3rukb8.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\20gvh6dx.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\2o00rkoh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\3lq7gqqh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\ll4pvn8h.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\z0nlbmhh.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1026jw4y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1az4s21y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1j681wxy.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2gbx2gti.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2n8kvku9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\9bolvw7i.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\dkcmnmsy.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\kj3na9ni.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\xwqu1rn9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\15yop5pz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1g164e4j.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1wsecsej.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2aoztfjz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2da25t2z.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2iduv9jz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\4tzhsucz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\tn96d5yz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\2683lelk.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\yfm0ur7k.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\c\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2kgrv1xm.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2rjwcz0m.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\372r0o1m.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\3hmmcnwm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\gp0j6bim.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\wv4memmm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\23jfwrpn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\2d5fujln.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\3ss3klxn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\9bnshwin.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\2f7qpkgo.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\39nrp0ao.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\3j18m0po.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\fj7qiq0o.d
         -0.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\prepared\
         -0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\
          0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe
          0.0s C:\zoek_backup\C_Users_User_daemonprocess.txt.vir
          0.0s C:\zoek_backup\C_Users_User_Downloads_FreeYouTubeToMP3Converter.exe.vir
          0.2s C:\zoek_backup\C_Windows_wininit.ini.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SET9C46.tmp.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SETB2D8.tmp.vir
          0.4s C:\zoek_backup\C_Windows_Syswow64_SETBCCE.tmp.vir
          0.5s C:\zoek_backup\C_Users_User_Downloads_wpsetup.exe.vir


Potential Unwanted Programs _________________________________________________

   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{4D2D3B0F-69BE-477A-90F5-FDDB05357975} (Claro) -> Deleted
   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{98889811-442D-49DD-99D7-DC866BE87DBC} (Claro) -> Deleted

Cookies _____________________________________________________________________

   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adk2.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\55SVN3K3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\8SJ1IXP1.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\9T04X25R.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\DFUHCJZP.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\G7G60O5E.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\GJW0DYBB.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H5DWRVEZ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H7QCRD6H.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\J13MFOAV.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\JOVXSGKL.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\KY5SL3W3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\L49V0S1U.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\MBOIOICM.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\O3MRHK01.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q3VJIJWQ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q9CY2RYR.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\T3GK0AXT.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\VQSVQXHC.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\W4LF1CME.txt
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.yieldmanager.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.zanox.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.glispa.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.trackitdown.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.yahoo.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adtech.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:apmebf.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:atdmt.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:burstnet.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:celebrityfake.xxx
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:de.sitestat.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:doubleclick.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:games.adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:hearstmagazines.112.2o7.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:revsci.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:serving-sys.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:statcounter.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:stats.paypal.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.adform.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.zalando.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:tradedoubler.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.etracker.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.freecamsexposed.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.googleadservices.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:xiti.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:yadro.ru
Ich war mir nicht sicher welche benötigt wird, deshalb hab ich lieber mal beide gespeichert

ESET:
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=50e6d8a15b7e3541ab290444729477bf
# engine=17452
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-14 05:38:47
# local_time=2014-03-14 06:38:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 20822039 146448577 0 0
# scanned=152668
# found=0
# cleaned=0
# scan_time=4526
SecurityCheck:
Code:
ATTFilter
 Results of screen317's Security Check version 0.99.80  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Security Center service is not running! This report may not be accurate! 
Kaspersky Internet Security   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 SpywareBlaster 5.0    
 Secunia PSI (3.0.0.8013)   
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 Java 7 Update 51  
 Adobe Flash Player 12.0.0.77  
 Adobe Reader 10.1.2 Adobe Reader out of Date!  
 Mozilla Firefox (27.0.1) 
````````Process Check: objlist.exe by Laurent````````  
 WinPatrol winpatrol.exe 
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avp.exe  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avpui.exe  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 x64 wmi64.exe 
 BillP Studios WinPatrol WinPatrol.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
Wenn ich einen neuen Tab öffne ist Quick-Start nicht mehr da, sondern wieder der Standard von Firefox
Und die beiden Seiten die ich in Screenshots hier gepostet habe werden auch nicht mehr geöffnet!

Sieht soweit in den ganzen logs alles gut aus?

Alt 15.03.2014, 13:03   #2
M-K-D-B
/// TB-Ausbilder
 
Firefox ist infiziert - Standard

Firefox ist infiziert


Servus,



Zitat:
Zitat von hemmy Beitrag anzeigen
Sieht soweit in den ganzen logs alles gut aus?
es sieht schon viel besser aus, nur zeigt mir SecurityCheck an, dass dein Sicherheitscenter nicht mehr läuft, darum müssen wir uns noch kümmern.
Wir schauen uns das einmal an:




Downloade dir bitte Farbar Service Scanner Farbar Service Scanner
  • Starte das Tool mit Doppelklick auf die FSS.exe
  • Gehe sicher, dass folgende Optionen angehakt sind.
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Klicke auf Scan.
  • Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.


__________________
Antwort

Themen zu Firefox ist infiziert
browser, entfernen, firefox, gesucht, hintergrund, infiziert, installation, kaspersky, links, malwarebytes, neue, neuen, neuer, neues, nicht mehr, schließen, seite, software, startseite, suchmaschine, tab, testversion, version, öffnen, öffnet


« Es öffnen sich ständig neue Fenster und Tabs | Werbung im Browser; Unterstrichene Wörter mit Werbung; Taskleiste zeigt kurz ein Symbol »


Ähnliche Themen: Firefox ist infiziert


  1. Firefox spielt verrückt. Mit Adware infiziert. Lässt sich nicht entfernen.
    Plagegeister aller Art und deren Bekämpfung - 29.10.2015 (15)
  2. Windows 7: only-search-Virus. Firefox infiziert, CHIP.de wurde früher genutzt
    Log-Analyse und Auswertung - 31.05.2015 (12)
  3. Von Scareware/Trojaner infiziert - Firefox lässt ständig unerwünschte Werbung aufploppen!
    Log-Analyse und Auswertung - 12.04.2015 (13)
  4. win 7 laut Avast ist Firefox.exe infiziert
    Log-Analyse und Auswertung - 03.02.2015 (3)
  5. Win. 8.1: Website laut Avast bei Firefox infiziert
    Log-Analyse und Auswertung - 05.01.2015 (34)
  6. avast! meldet: URL Mal - https://54.186.138.97 - firefox.exe / Firefox addons unter anderem QueenaCouppoN
    Plagegeister aller Art und deren Bekämpfung - 31.12.2014 (4)
  7. Rechner eventuell infiziert Lavasoft Yahoo, Firefox Umleitung
    Plagegeister aller Art und deren Bekämpfung - 13.12.2014 (3)
  8. Probleme mit Firefox, es öffnet sich beim Öffnen von Firefox immer ein zusätzlicher Tab
    Plagegeister aller Art und deren Bekämpfung - 02.12.2014 (7)
  9. Probleme mit Firefox, es öffnet sich beim Öffnen von Firefox immer ein zusätzlicher Tab
    Mülltonne - 23.11.2014 (1)
  10. Tastatureingabe in Firefox verzögert, Probleme bei der Anwahl von Checkboxen in Firefox per Maus
    Log-Analyse und Auswertung - 12.11.2014 (11)
  11. Firefox öffnet Tab zu Kreditwerbung oder FIrefox startet auch selbsbt mit der Krditwerbung
    Log-Analyse und Auswertung - 18.01.2012 (1)
  12. System infiziert. USB-Stick und Datensicherung auch infiziert?
    Plagegeister aller Art und deren Bekämpfung - 05.07.2011 (2)
  13. Probleme mit Firefox: firefox.exe & svchost.exe laufen mehrfach im Hintergrund. PC befallen?
    Plagegeister aller Art und deren Bekämpfung - 09.04.2011 (20)
  14. Merkwürdige Vorgänge bei Firefox, PC infiziert?
    Log-Analyse und Auswertung - 11.11.2010 (25)
  15. Internetexplorer und Firefox funktionioeren nicht mehr, Fraudpack hatte System infiziert.
    Log-Analyse und Auswertung - 03.09.2010 (1)
  16. Angehen eines Problems bei Firefox | Firefox arbeitet nicht mehr ordnungsgemäß.
    Alles rund um Windows - 23.06.2010 (4)
  17. Firefox infiziert???
    Plagegeister aller Art und deren Bekämpfung - 06.12.2005 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Firefox ist infiziert - FRST: Code: Alles auswählen Aufklappen ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2014 Ran by User at 2014-03-14 17:10:53 Run:1 Running from C:\Users\User\Desktop Boot - Firefox ist infiziert...
Archiv
Du betrachtest: Firefox ist infiziert auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19