Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Firefox ist infiziert

Firefox ist infiziert


Plagegeister aller Art und deren Bekämpfung: Firefox ist infiziert

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 14.03.2014, 23:25   #1
hemmy
 
Firefox ist infiziert - Standard

Firefox ist infiziert


FRST:
Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2014
Ran by User at 2014-03-14 17:10:53 Run:1
Running from C:\Users\User\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF NewTab: chrome://quick_start/content/index.html
FF Extension: Quick Start - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\Extensions\quick_start@gmail.com [2014-03-09]
FF HKCU\...\Firefox\Extensions: [{cf798cb9-b0d9-4ec0-a967-4987b7bedcec}] - C:\Program Files (x86)\Re-markit-soft\157.xpi
FF Extension: Re-markit - C:\Program Files (x86)\Re-markit-soft\157.xpi [2014-03-09]
C:\Program Files (x86)\Re-markit-soft
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
C:\Users\User\AppData\Local\13333
C:\ProgramData\ntuser.pol
C:\Windows\system32\GroupPolicy
C:\Windows\SysWOW64\GroupPolicy
Task: {CC53C16E-6A44-4D9F-9458-8088D41C87B8} - \Re-markit Update No Task File
Task: {E7E948B7-3446-477D-8B1A-7D541ED501D3} - \AmiUpdXp No Task File
Reg: reg delete "HKEY_CURRENT_USER\Software\mozilla\Extends" /v appid /f
end
         
*****************

C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
Firefox newtab deleted successfully.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\Extensions\quick_start@gmail.com => Moved successfully.
HKCU\Software\Mozilla\Firefox\Extensions\\{cf798cb9-b0d9-4ec0-a967-4987b7bedcec} => Value deleted successfully.
C:\Program Files (x86)\Re-markit-soft\157.xpi => Moved successfully.
C:\Program Files (x86)\Re-markit-soft => Moved successfully.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
X6va015 => Service deleted successfully.
X6va017 => Service deleted successfully.
xhunter1 => Service deleted successfully.
C:\Users\User\AppData\Local\13333 => Moved successfully.
C:\ProgramData\ntuser.pol => Moved successfully.
C:\Windows\System32\GroupPolicy => Moved successfully.
C:\Windows\SysWOW64\GroupPolicy => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CC53C16E-6A44-4D9F-9458-8088D41C87B8} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC53C16E-6A44-4D9F-9458-8088D41C87B8} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Re-markit Update => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E7E948B7-3446-477D-8B1A-7D541ED501D3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E7E948B7-3446-477D-8B1A-7D541ED501D3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp => Key deleted successfully.

========= reg delete "HKEY_CURRENT_USER\Software\mozilla\Extends" /v appid /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========



The system needed a reboot. 

==== End of Fixlog ====
HitmanPro (bevor die funde gelöscht sind)
Code:
ATTFilter
HitmanPro 3.7.9.212
www.hitmanpro.com

   Computer name . . . . : USER-PC
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : User-PC\User
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2014-03-14 17:14:00
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 4m 31s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 2
   Traces  . . . . . . . : 64

   Objects scanned . . . : 1.614.360
   Files scanned . . . . : 18.794
   Remnants scanned  . . : 429.123 files / 1.166.443 keys

Malware _____________________________________________________________________

   C:\Users\User\AppData\Roaming\AffiliatedUpdate\UpdateProc\UpdateTask.exe
      Size . . . . . . . : 100.864 bytes
      Age  . . . . . . . : 336.1 days (2013-04-12 15:10:43)
      Entropy  . . . . . : 6.2
      SHA-256  . . . . . : B3DB2337A7EBB2AD25D430ED5B8FBEDE6FC598C24729FE5E03D319F3CED4E2E0
    > Bitdefender  . . . : Trojan.Generic.10250073
      Fuzzy  . . . . . . : 98.0

   C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe
      Size . . . . . . . : 10.752 bytes
      Age  . . . . . . . : 1.9 days (2014-03-12 19:44:13)
      Entropy  . . . . . : 5.1
      SHA-256  . . . . . : 294587D993EC106B446DB2F5D9FDE320A9D39DE8188F02754CB2562A6D0FAD08
      Description  . . . : wupdte
      Version  . . . . . : 1.0.0.0
      Copyright  . . . . :  
    > Bitdefender  . . . : Trojan.Generic.9894453
      Fuzzy  . . . . . . : 105.0
      Forensic Cluster
         -4.8s C:\zoek_backup\restore.txt
         -4.8s C:\zoek_backup\C_Users_User_AppData_Roaming_Mozilla_Firefox_Profiles_3k5dhc3m.default_prefs__1944_.backup.vir
         -3.6s C:\zoek_backup\C_Users_User_.android\
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey.pub
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\atl100.dll
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\BrowserHelpersInstaller.exe
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVDVideoSoft.Resources.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSSysReport.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSUpdate.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns64.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\insthpr.exe
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfc100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfcm100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcp100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcr100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\Newtonsoft.Json.Net20.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\PrerequisiteCheck.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SettingsHelper.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SubscriptionOffer.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tier0-pinv-1.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ytgroovlc.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.AppFx.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.DialogForms.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVSSysReport.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\PrerequisiteCheck.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\SubscriptionOffer.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.AppFx.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.DialogForms.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVSSysReport.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\PrerequisiteCheck.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\SubscriptionOffer.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.AppFx.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.DialogForms.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.Resources.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\PrerequisiteCheck.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\SubscriptionOffer.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.AppFx.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.DialogForms.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.Resources.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.AppFx.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.DialogForms.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.Resources.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVSSysReport.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\SubscriptionOffer.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.AppFx.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.DialogForms.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.Resources.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVSSysReport.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\PrerequisiteCheck.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\SubscriptionOffer.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVSSysReport.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\PrerequisiteCheck.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\SubscriptionOffer.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.Resources.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVSSysReport.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\PrerequisiteCheck.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\SubscriptionOffer.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.AppFx.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.DialogForms.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVSSysReport.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\PrerequisiteCheck.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.AppFx.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\PrerequisiteCheck.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\SubscriptionOffer.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.AppFx.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\PrerequisiteCheck.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\SubscriptionOffer.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Readme.txt
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.dat
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.exe
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.ico
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\TsuDll.dll
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\_Setup.dll
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\avgp
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\24oojbk0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2db7f4hp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2kolj8xp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\3pff9xd0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\6gkpgkgp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\gmu8lpbp.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\p47yoy3p.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\26rb70ea.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\27x6egca.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\28cxfqoq.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2adeedza.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2htydrk1.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2y15i5dq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2zb6ym8q.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\39z7j3pq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\3bnv6vua.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\hdlcfcy1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\sciws5i1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\17ob3rb2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\1ozft862.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\20t318q2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2olqmat2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2yq5gv62.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\37mn60zr.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\3ptrm7s2.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\156pw8e3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1n2mgee3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1qcqfnlc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1x3hpzbs.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\2317x5kc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\285w2qg3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\dw94nbs3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\mhgoxr4c.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\q3x5mjuc.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1263cmxt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ccf72bt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ohtdc64.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1u4imsyt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2cwy0vkd.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2o7cstld.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\315volld.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\9o7d4kgt.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\lr7ii0r4.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\oz86eb0d.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\13ttpxq5.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\16p4qik5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1djsm1v5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1j44fvte.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1kan2dc5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1sr6fv2u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1wglxe85.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\26jk49bu.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\2ixunlf5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\31up9p35.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\352cxu0u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\35oydmeu.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3auxirle.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3fz0czm5.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3lft60je.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3u6nulou.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\nvc7qz1u.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\13vnsv66.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1ardrua6.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1khdo0j6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\29gpatcv.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\2v38v456.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\33qouog6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3d6clwif.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3ec1gm4v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fhrpk5v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fpjryaf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\c5qgqqcv.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\nzq8i4uf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1l5u41jg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1u255shg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\217mx137.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\26omvijg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\28j2eks7.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2bs28gjg.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2c1ig19w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2cy8w32w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2e9sygow.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2ub3xqhw.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\369vwf77.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\36i4ceo7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\3rju97o7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\1u3rukb8.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\20gvh6dx.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\2o00rkoh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\3lq7gqqh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\ll4pvn8h.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\z0nlbmhh.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1026jw4y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1az4s21y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1j681wxy.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2gbx2gti.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2n8kvku9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\9bolvw7i.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\dkcmnmsy.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\kj3na9ni.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\xwqu1rn9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\15yop5pz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1g164e4j.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1wsecsej.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2aoztfjz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2da25t2z.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2iduv9jz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\4tzhsucz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\tn96d5yz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\2683lelk.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\yfm0ur7k.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\c\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2kgrv1xm.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2rjwcz0m.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\372r0o1m.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\3hmmcnwm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\gp0j6bim.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\wv4memmm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\23jfwrpn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\2d5fujln.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\3ss3klxn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\9bnshwin.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\2f7qpkgo.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\39nrp0ao.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\3j18m0po.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\fj7qiq0o.d
         -0.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\prepared\
         -0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\
          0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe
          0.0s C:\zoek_backup\C_Users_User_daemonprocess.txt.vir
          0.0s C:\zoek_backup\C_Users_User_Downloads_FreeYouTubeToMP3Converter.exe.vir
          0.2s C:\zoek_backup\C_Windows_wininit.ini.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SET9C46.tmp.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SETB2D8.tmp.vir
          0.4s C:\zoek_backup\C_Windows_Syswow64_SETBCCE.tmp.vir
          0.5s C:\zoek_backup\C_Users_User_Downloads_wpsetup.exe.vir


Potential Unwanted Programs _________________________________________________

   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{4D2D3B0F-69BE-477A-90F5-FDDB05357975} (Claro)
   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{98889811-442D-49DD-99D7-DC866BE87DBC} (Claro)

Cookies _____________________________________________________________________

   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adk2.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\55SVN3K3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\8SJ1IXP1.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\9T04X25R.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\DFUHCJZP.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\G7G60O5E.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\GJW0DYBB.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H5DWRVEZ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H7QCRD6H.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\J13MFOAV.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\JOVXSGKL.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\KY5SL3W3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\L49V0S1U.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\MBOIOICM.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\O3MRHK01.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q3VJIJWQ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q9CY2RYR.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\T3GK0AXT.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\VQSVQXHC.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\W4LF1CME.txt
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.yieldmanager.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.zanox.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.glispa.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.trackitdown.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.yahoo.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adtech.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:apmebf.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:atdmt.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:burstnet.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:celebrityfake.xxx
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:de.sitestat.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:doubleclick.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:games.adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:hearstmagazines.112.2o7.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:revsci.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:serving-sys.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:statcounter.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:stats.paypal.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.adform.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.zalando.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:tradedoubler.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.etracker.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.freecamsexposed.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.googleadservices.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:xiti.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:yadro.ru
HitmanPro (nach dem löschen der Funde):
Code:
ATTFilter
HitmanPro 3.7.9.212
www.hitmanpro.com

   Computer name . . . . : USER-PC
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : User-PC\User
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Trial (30 days left)

   Scan date . . . . . . : 2014-03-14 17:14:00
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 4m 31s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 2
   Traces  . . . . . . . : 64

   Objects scanned . . . : 1.614.360
   Files scanned . . . . : 18.794
   Remnants scanned  . . : 429.123 files / 1.166.443 keys

Malware _____________________________________________________________________

   C:\Users\User\AppData\Roaming\AffiliatedUpdate\UpdateProc\UpdateTask.exe -> Quarantined
      Size . . . . . . . : 100.864 bytes
      Age  . . . . . . . : 336.1 days (2013-04-12 15:10:43)
      Entropy  . . . . . : 6.2
      SHA-256  . . . . . : B3DB2337A7EBB2AD25D430ED5B8FBEDE6FC598C24729FE5E03D319F3CED4E2E0
    > Bitdefender  . . . : Trojan.Generic.10250073
      Fuzzy  . . . . . . : 98.0

   C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe -> Quarantined
      Size . . . . . . . : 10.752 bytes
      Age  . . . . . . . : 1.9 days (2014-03-12 19:44:13)
      Entropy  . . . . . : 5.1
      SHA-256  . . . . . : 294587D993EC106B446DB2F5D9FDE320A9D39DE8188F02754CB2562A6D0FAD08
      Description  . . . : wupdte
      Version  . . . . . : 1.0.0.0
      Copyright  . . . . :  
    > Bitdefender  . . . : Trojan.Generic.9894453
      Fuzzy  . . . . . . : 105.0
      Forensic Cluster
         -4.8s C:\zoek_backup\restore.txt
         -4.8s C:\zoek_backup\C_Users_User_AppData_Roaming_Mozilla_Firefox_Profiles_3k5dhc3m.default_prefs__1944_.backup.vir
         -3.6s C:\zoek_backup\C_Users_User_.android\
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey
         -3.5s C:\zoek_backup\C_Users_User_.android\adbkey.pub
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\atl100.dll
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\BrowserHelpersInstaller.exe
         -3.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVDVideoSoft.Resources.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSSysReport.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\DVSUpdate.exe
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\IEDownloadMenuAndBtns64.dll
         -3.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\insthpr.exe
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfc100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\mfcm100u.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcp100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\msvcr100.dll
         -3.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\Newtonsoft.Json.Net20.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\PrerequisiteCheck.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SettingsHelper.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\SubscriptionOffer.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tier0-pinv-1.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ytgroovlc.exe
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.AppFx.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.DialogForms.resources.dll
         -3.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\DVSSysReport.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\PrerequisiteCheck.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\da-DK\SubscriptionOffer.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.AppFx.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.DialogForms.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVDVideoSoft.Resources.resources.dll
         -3.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\DVSSysReport.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\PrerequisiteCheck.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\de-DE\SubscriptionOffer.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.AppFx.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.DialogForms.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVDVideoSoft.Resources.resources.dll
         -3.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\PrerequisiteCheck.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\el-GR\SubscriptionOffer.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.AppFx.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.DialogForms.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVDVideoSoft.Resources.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\DVSSysReport.resources.dll
         -2.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\es-ES\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.AppFx.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.DialogForms.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVDVideoSoft.Resources.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\DVSSysReport.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\PrerequisiteCheck.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\fr-FR\SubscriptionOffer.resources.dll
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\
         -2.8s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\hu-HU\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.AppFx.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.DialogForms.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVDVideoSoft.Resources.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\DVSSysReport.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\PrerequisiteCheck.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\it-IT\SubscriptionOffer.resources.dll
         -2.7s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.AppFx.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.DialogForms.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVDVideoSoft.Resources.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\DVSSysReport.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\PrerequisiteCheck.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ja-JP\SubscriptionOffer.resources.dll
         -2.6s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\DVSSysReport.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\PrerequisiteCheck.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\nl-NL\SubscriptionOffer.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.AppFx.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.DialogForms.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVDVideoSoft.Resources.resources.dll
         -2.5s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pl-PL\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVDVideoSoft.Resources.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\DVSSysReport.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\PrerequisiteCheck.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-BR\SubscriptionOffer.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.AppFx.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.DialogForms.resources.dll
         -2.4s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\DVSSysReport.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\PrerequisiteCheck.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\pt-PT\SubscriptionOffer.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.AppFx.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.DialogForms.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVDVideoSoft.Resources.resources.dll
         -2.3s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\ru-RU\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\DVSSysReport.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\PrerequisiteCheck.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\sv-SE\SubscriptionOffer.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.AppFx.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.DialogForms.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVDVideoSoft.Resources.resources.dll
         -2.2s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\DVSSysReport.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\PrerequisiteCheck.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\tr-TR\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHS\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\DVDVideoSoft.Resources.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CHT\SubscriptionOffer.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.AppFx.resources.dll
         -2.1s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\PrerequisiteCheck.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-CN\SubscriptionOffer.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.AppFx.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.DialogForms.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVDVideoSoft.Resources.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\DVSSysReport.resources.dll
         -2.0s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\PrerequisiteCheck.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~2_COMMON~1_DVDVideoSoft_bin\zh-TW\SubscriptionOffer.resources.dll
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Readme.txt
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.dat
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.exe
         -1.9s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\Setup.ico
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\TsuDll.dll
         -1.8s C:\zoek_backup\C_PROGRA~3_InstallMate\{84481A87-2316-4923-8FAB-3BA8CA29323D}\_Setup.dll
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\
         -1.8s C:\zoek_backup\C_Users_User_AppData_Local_avgchrome\avgp
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\24oojbk0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2db7f4hp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\2kolj8xp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\3pff9xd0.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\6gkpgkgp.d
         -1.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\gmu8lpbp.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\0\p47yoy3p.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\26rb70ea.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\27x6egca.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\28cxfqoq.d
         -1.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2adeedza.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2htydrk1.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2y15i5dq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\2zb6ym8q.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\39z7j3pq.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\3bnv6vua.d
         -1.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\hdlcfcy1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\1\sciws5i1.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\17ob3rb2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\1ozft862.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\20t318q2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2olqmat2.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\2yq5gv62.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\37mn60zr.d
         -1.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\2\3ptrm7s2.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\156pw8e3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1n2mgee3.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1qcqfnlc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\1x3hpzbs.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\2317x5kc.d
         -1.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\285w2qg3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\dw94nbs3.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\mhgoxr4c.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\3\q3x5mjuc.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1263cmxt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ccf72bt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1ohtdc64.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\1u4imsyt.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2cwy0vkd.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\2o7cstld.d
         -1.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\315volld.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\9o7d4kgt.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\lr7ii0r4.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\4\oz86eb0d.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\13ttpxq5.d
         -1.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\16p4qik5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1djsm1v5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1j44fvte.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1kan2dc5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1sr6fv2u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\1wglxe85.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\26jk49bu.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\2ixunlf5.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\31up9p35.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\352cxu0u.d
         -1.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\35oydmeu.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3auxirle.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3fz0czm5.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3lft60je.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\3u6nulou.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\5\nvc7qz1u.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\13vnsv66.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1ardrua6.d
         -0.9s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\1khdo0j6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\29gpatcv.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\2v38v456.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\33qouog6.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3d6clwif.d
         -0.8s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3ec1gm4v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fhrpk5v.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\3fpjryaf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\c5qgqqcv.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\6\nzq8i4uf.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1l5u41jg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\1u255shg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\217mx137.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\26omvijg.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\28j2eks7.d
         -0.7s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2bs28gjg.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2c1ig19w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2cy8w32w.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2e9sygow.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\2ub3xqhw.d
         -0.6s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\369vwf77.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\36i4ceo7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\7\3rju97o7.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\1u3rukb8.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\20gvh6dx.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\2o00rkoh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\3lq7gqqh.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\ll4pvn8h.d
         -0.5s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\8\z0nlbmhh.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1026jw4y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1az4s21y.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\1j681wxy.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2gbx2gti.d
         -0.4s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\2n8kvku9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\9bolvw7i.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\dkcmnmsy.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\kj3na9ni.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\9\xwqu1rn9.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\15yop5pz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1g164e4j.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\1wsecsej.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2aoztfjz.d
         -0.3s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2da25t2z.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\2iduv9jz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\4tzhsucz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\a\tn96d5yz.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\2683lelk.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\b\yfm0ur7k.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\c\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2kgrv1xm.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\2rjwcz0m.d
         -0.2s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\372r0o1m.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\3hmmcnwm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\gp0j6bim.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\d\wv4memmm.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\23jfwrpn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\2d5fujln.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\3ss3klxn.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\e\9bnshwin.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\2f7qpkgo.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\39nrp0ao.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\3j18m0po.d
         -0.1s C:\zoek_backup\C_Users_User_AppData_Local_cache\data7\f\fj7qiq0o.d
         -0.0s C:\zoek_backup\C_Users_User_AppData_Local_cache\prepared\
         -0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\
          0.0s C:\zoek_backup\C_Users_User_AppData_Roaming_HPP\wupdte.exe
          0.0s C:\zoek_backup\C_Users_User_daemonprocess.txt.vir
          0.0s C:\zoek_backup\C_Users_User_Downloads_FreeYouTubeToMP3Converter.exe.vir
          0.2s C:\zoek_backup\C_Windows_wininit.ini.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SET9C46.tmp.vir
          0.2s C:\zoek_backup\C_Windows_Syswow64_SETB2D8.tmp.vir
          0.4s C:\zoek_backup\C_Windows_Syswow64_SETBCCE.tmp.vir
          0.5s C:\zoek_backup\C_Users_User_Downloads_wpsetup.exe.vir


Potential Unwanted Programs _________________________________________________

   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{4D2D3B0F-69BE-477A-90F5-FDDB05357975} (Claro) -> Deleted
   HKU\S-1-5-21-3295961374-3500667211-776711534-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{98889811-442D-49DD-99D7-DC866BE87DBC} (Claro) -> Deleted

Cookies _____________________________________________________________________

   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.adk2.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com
   C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\55SVN3K3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\8SJ1IXP1.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\9T04X25R.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\DFUHCJZP.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\G7G60O5E.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\GJW0DYBB.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H5DWRVEZ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\H7QCRD6H.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\J13MFOAV.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\JOVXSGKL.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\KY5SL3W3.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\L49V0S1U.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\MBOIOICM.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\O3MRHK01.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q3VJIJWQ.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\Q9CY2RYR.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\T3GK0AXT.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\VQSVQXHC.txt
   C:\Users\User\AppData\Roaming\Microsoft\Windows\Cookies\W4LF1CME.txt
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.yieldmanager.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ad.zanox.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.glispa.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.trackitdown.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:ads.yahoo.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adtech.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:apmebf.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:atdmt.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:burstnet.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:celebrityfake.xxx
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:de.sitestat.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:doubleclick.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:games.adultswim.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:hearstmagazines.112.2o7.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:revsci.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:serving-sys.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:statcounter.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:stats.paypal.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.adform.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:track.zalando.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:tradedoubler.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.etracker.de
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.freecamsexposed.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.googleadservices.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:www.pornpicsgirls.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:xiti.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\3k5dhc3m.default\cookies.sqlite:yadro.ru
Ich war mir nicht sicher welche benötigt wird, deshalb hab ich lieber mal beide gespeichert

ESET:
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=50e6d8a15b7e3541ab290444729477bf
# engine=17452
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-14 05:38:47
# local_time=2014-03-14 06:38:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 20822039 146448577 0 0
# scanned=152668
# found=0
# cleaned=0
# scan_time=4526
SecurityCheck:
Code:
ATTFilter
 Results of screen317's Security Check version 0.99.80  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Security Center service is not running! This report may not be accurate! 
Kaspersky Internet Security   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 SpywareBlaster 5.0    
 Secunia PSI (3.0.0.8013)   
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 Java 7 Update 51  
 Adobe Flash Player 12.0.0.77  
 Adobe Reader 10.1.2 Adobe Reader out of Date!  
 Mozilla Firefox (27.0.1) 
````````Process Check: objlist.exe by Laurent````````  
 WinPatrol winpatrol.exe 
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avp.exe  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avpui.exe  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 x64 wmi64.exe 
 BillP Studios WinPatrol WinPatrol.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
Wenn ich einen neuen Tab öffne ist Quick-Start nicht mehr da, sondern wieder der Standard von Firefox
Und die beiden Seiten die ich in Screenshots hier gepostet habe werden auch nicht mehr geöffnet!

Sieht soweit in den ganzen logs alles gut aus?

Alt 15.03.2014, 13:03   #2
M-K-D-B
/// TB-Ausbilder
 
Firefox ist infiziert - Standard

Firefox ist infiziert


Servus,



Zitat:
Zitat von hemmy Beitrag anzeigen
Sieht soweit in den ganzen logs alles gut aus?
es sieht schon viel besser aus, nur zeigt mir SecurityCheck an, dass dein Sicherheitscenter nicht mehr läuft, darum müssen wir uns noch kümmern.
Wir schauen uns das einmal an:




Downloade dir bitte Farbar Service Scanner Farbar Service Scanner
  • Starte das Tool mit Doppelklick auf die FSS.exe
  • Gehe sicher, dass folgende Optionen angehakt sind.
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Klicke auf Scan.
  • Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.


__________________
Antwort

Themen zu Firefox ist infiziert
browser, entfernen, firefox, gesucht, hintergrund, infiziert, installation, kaspersky, links, malwarebytes, neue, neuen, neuer, neues, nicht mehr, schließen, seite, software, startseite, suchmaschine, tab, testversion, version, öffnen, öffnet


« Es öffnen sich ständig neue Fenster und Tabs | Werbung im Browser; Unterstrichene Wörter mit Werbung; Taskleiste zeigt kurz ein Symbol »


Ähnliche Themen: Firefox ist infiziert


  1. Firefox spielt verrückt. Mit Adware infiziert. Lässt sich nicht entfernen.
    Plagegeister aller Art und deren Bekämpfung - 29.10.2015 (15)
  2. Windows 7: only-search-Virus. Firefox infiziert, CHIP.de wurde früher genutzt
    Log-Analyse und Auswertung - 31.05.2015 (12)
  3. Von Scareware/Trojaner infiziert - Firefox lässt ständig unerwünschte Werbung aufploppen!
    Log-Analyse und Auswertung - 12.04.2015 (13)
  4. win 7 laut Avast ist Firefox.exe infiziert
    Log-Analyse und Auswertung - 03.02.2015 (3)
  5. Win. 8.1: Website laut Avast bei Firefox infiziert
    Log-Analyse und Auswertung - 05.01.2015 (34)
  6. avast! meldet: URL Mal - https://54.186.138.97 - firefox.exe / Firefox addons unter anderem QueenaCouppoN
    Plagegeister aller Art und deren Bekämpfung - 31.12.2014 (4)
  7. Rechner eventuell infiziert Lavasoft Yahoo, Firefox Umleitung
    Plagegeister aller Art und deren Bekämpfung - 13.12.2014 (3)
  8. Probleme mit Firefox, es öffnet sich beim Öffnen von Firefox immer ein zusätzlicher Tab
    Plagegeister aller Art und deren Bekämpfung - 02.12.2014 (7)
  9. Probleme mit Firefox, es öffnet sich beim Öffnen von Firefox immer ein zusätzlicher Tab
    Mülltonne - 23.11.2014 (1)
  10. Tastatureingabe in Firefox verzögert, Probleme bei der Anwahl von Checkboxen in Firefox per Maus
    Log-Analyse und Auswertung - 12.11.2014 (11)
  11. Firefox öffnet Tab zu Kreditwerbung oder FIrefox startet auch selbsbt mit der Krditwerbung
    Log-Analyse und Auswertung - 18.01.2012 (1)
  12. System infiziert. USB-Stick und Datensicherung auch infiziert?
    Plagegeister aller Art und deren Bekämpfung - 05.07.2011 (2)
  13. Probleme mit Firefox: firefox.exe & svchost.exe laufen mehrfach im Hintergrund. PC befallen?
    Plagegeister aller Art und deren Bekämpfung - 09.04.2011 (20)
  14. Merkwürdige Vorgänge bei Firefox, PC infiziert?
    Log-Analyse und Auswertung - 11.11.2010 (25)
  15. Internetexplorer und Firefox funktionioeren nicht mehr, Fraudpack hatte System infiziert.
    Log-Analyse und Auswertung - 03.09.2010 (1)
  16. Angehen eines Problems bei Firefox | Firefox arbeitet nicht mehr ordnungsgemäß.
    Alles rund um Windows - 23.06.2010 (4)
  17. Firefox infiziert???
    Plagegeister aller Art und deren Bekämpfung - 06.12.2005 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Firefox ist infiziert - FRST: Code: Alles auswählen Aufklappen ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2014 Ran by User at 2014-03-14 17:10:53 Run:1 Running from C:\Users\User\Desktop Boot - Firefox ist infiziert...
Archiv
Du betrachtest: Firefox ist infiziert auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131