| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Troj/ Plus-HD-9.1 / lauter spam und pop ups bei FirefoxWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
20.04.2014, 16:39
| #1 |
| |  Troj/ Plus-HD-9.1 / lauter spam und pop ups bei Firefox Liebe Leute, Ich bin zum ersten Mal hier und brauche echt Hilfe, Ich habe ein Thema gelesen "Plus HD 3.8 Hängt " bei euch. und habe bereits schon mal ein malware programm installiert und lasse gerade einen suchlauf rennen, allerdings bin ich mir nicht sicher ob es genau der selbe weg ist wie bei dem problem damals. Also seit ein paar Tagen öffnen sich verschiedenen spams im Firefox und pop ups, mein Virusscan hat einige Viren gefunden gestern und vorgestern, damit hat sich das problem aber leider nicht erledigt. kann kaum noch im firefox arbeiten , da sich auch noch bis zu 6 Fenster öffnen dazu noch jede menge werbung. was ziemlich nervig ist.  Kann mir jemand helfen ?  Wäre sehr dankbar. LG |
|
20.04.2014, 17:41
| #2 |
| /// the machine /// TB-Ausbilder    | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei Firefox hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
20.04.2014, 20:03
| #3 |
| | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei FirefoxFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-04-2014 01 Ran by Lissyy (administrator) on LISSY on 20-04-2014 20:50:12 Running from C:\Users\Lissyy\Downloads Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe (AMD) C:\windows\system32\atiesrxx.exe (Microsoft Corporation) C:\windows\system32\WLANExt.exe (AMD) C:\windows\system32\atieclxx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Users\Lissyy\AppData\Roaming\BupSystem\bup.exe () C:\Windows\System32\DlProtectSvc.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe ( ) C:\windows\system32\lxeacoms.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe () C:\Program Files (x86)\ResultsAlpha\bin\utilResultsAlpha.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe () C:\Program Files (x86)\Lexmark S300-S400 Series\lxeamon.exe () C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe (Huawei Technologies Co., Ltd.) C:\Users\Lissyy\AppData\Roaming\T-Mobile Internet Manager\ouc.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe () C:\ProgramData\dlprotect.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe () C:\Program Files (x86)\ResultsAlpha\bin\FilterApp_C64.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe () C:\Program Files (x86)\ResultsAlpha\bin\ResultsAlpha.BrowserAdapter.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (Conduit) C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe (Conduit) C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe (Conduit) C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe (SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe (Adobe Systems, Inc.) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11046504 2010-07-14] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2149160 2010-05-21] (Synaptics Incorporated) HKLM\...\Run: [lxeamon.exe] => C:\Program Files (x86)\Lexmark S300-S400 Series\lxeamon.exe [770728 2011-01-24] () HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe [148280 2011-01-24] () HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [DataCardMonitor] => C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\DataCardMonitor.exe [253952 2011-05-22] (Huawei Technologies Co., Ltd.) HKLM-x32\...\Run: [DATAMNGR] => C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [Download Protect] => C:\ProgramData\dlprotect.exe [12800 2014-04-16] () HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5180432 2014-04-06] (AVG Technologies CZ, s.r.o.) HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\Run: [HW_OPENEYE_OUC_T-Mobile Internet Manager] => C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\UpdateDog\ouc.exe [110592 2009-12-31] (Huawei Technologies Co., Ltd.) HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\Run: [Facebook Update] => C:\Users\Lissyy\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-13] (Facebook Inc.) HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\Run: [Mobile Partner] => C:\Program Files (x86)\MobileWiFi\MobileWiFi HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation) HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\Run: [iLivid] => C:\Users\Lissyy\AppData\Local\iLivid\iLivid.exe [6827008 2013-09-09] (Bandoo Media Inc.) HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\Run: [AVG-Secure-Search-Update_1213b] => C:\Users\Lissyy\AppData\Roaming\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=e284fd70544b47d1a3299da498e0b84f-294d85d05b283260470fe6a9dd3e64d11876d733 /CMPID=1213b HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: F - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: G - G:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {01a757ba-469e-11e0-b47b-4cedde0451bc} - F:\LiteAuto.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {39245091-9064-11e1-9411-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {39f9ac83-430b-11e0-8718-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {39f9ac8d-430b-11e0-8718-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {3ec7054a-58ed-11e2-97c2-806e6f6e6963} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {41c72781-8f17-11e1-b6ab-4cedde0451bc} - G:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {451ae402-3ead-11e1-b2df-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {451ae418-3ead-11e1-b2df-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {65ac8b44-8c72-11e1-a14f-4cedde0451bc} - F:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {829be56b-9d2f-11e1-8192-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {829be56e-9d2f-11e1-8192-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {89375393-4134-11e0-a578-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {8937539a-4134-11e0-a578-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {8c01a31b-56a8-11e2-b895-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {8c01a354-56a8-11e2-b895-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {9e0a049b-4ab8-11e1-9ad0-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {bb75015d-8157-11e0-a086-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {bb75016b-8157-11e0-a086-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {bb750188-8157-11e0-a086-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {bb750192-8157-11e0-a086-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {bb750194-8157-11e0-a086-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {be7bc1a3-c89c-11e3-aefc-4cedde0451bc} - F:\AutoRun.exe HKU\S-1-5-21-76830181-1066914796-2057996457-1000\...\MountPoints2: {f232f868-9515-11e1-935d-806e6f6e6963} - F:\AutoRun.exe Startup: C:\Users\Lissyy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q= HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV= HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT3227982 HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=41460&home=true&tid=3228 HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q= HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q= HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q= HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q= HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=41460&home=true&tid=3228 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q= URLSearchHook: HKCU - (No Name) - {cdf97ee2-ded0-4369-835e-99dd08225fa5} - No File StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=394&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=4626264203344055&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=394&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=4626264203344055&q={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q={searchTerms} SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q={searchTerms} SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=394&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=4626264203344055&q={searchTerms} SearchScopes: HKCU - DefaultScope {3D7DF201-4DCF-4E51-A42E-B210F7B5DE11} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=protegere SearchScopes: HKCU - {2C0C97E8-A75E-4318-A386-3BDC14CCF47A} URL = hxxp://www.amazon.de/gp/search?search-alias=aps&field-keywords={searchTerms} SearchScopes: HKCU - {3D7DF201-4DCF-4E51-A42E-B210F7B5DE11} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=protegere SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {62DAAAB6-6153-4BB5-9536-D176132F5FB5} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7ADFA_deAT432 SearchScopes: HKCU - {731F498A-E846-4EBA-AD07-A368A67D9F53} URL = hxxp://de.wikipedia.org/wiki/Spezial:Search?search={searchTerms} SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q={searchTerms} SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=394&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=4626264203344055&q={searchTerms} SearchScopes: HKCU - {B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD} URL = hxxp://www.ask.com/web?l=dis&o=APN10020&gct=sb&qsrc=2869&apn_dtid=^YYYYYY^YY^US&apn_ptnrs=^A4G &apn_uid=9481831416074851&p2=^A4G ^YYYYYY^YY^US&q={searchTerms} BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll No File BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll No File BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} - C:\PROGRA~2\SEARCH~1\Datamngr\x64\BROWSE~1.DLL No File BHO-x32: Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files (x86)\Lexmark Toolbar\toolband.dll () BHO-x32: Savings Sidekick - {11111111-1111-1111-1111-110011501160} - C:\Program Files (x86)\Savings Sidekick\Savings Sidekick.dll No File BHO-x32: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll No File BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} - C:\PROGRA~2\SEARCH~1\Datamngr\BROWSE~1.DLL No File BHO-x32: ResultsAlpha - {cbab673a-a480-4050-bd2b-5de24a7a0282} - C:\Program Files (x86)\ResultsAlpha\ResultsAlphabho.dll No File BHO-x32: DVD Video Soft Toolbar - {cd8812d4-e5b8-41c6-94d4-59872a484bf1} - C:\Program Files (x86)\dvdvideosofttoolbar\dvdvideosofttoolbarX.dll No File BHO-x32: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll () BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Search-Results Toolbar - {f34c9277-6577-4dff-b2d7-7d58092f272f} - C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\searchresultsDx.dll (APN LLC) Toolbar: HKLM - No Name - !{1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File Toolbar: HKLM - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File Toolbar: HKLM - No Name - !{cdf97ee2-ded0-4369-835e-99dd08225fa5} - No File Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Toolbar: HKLM-x32 - DVD Video Soft Toolbar - {cd8812d4-e5b8-41c6-94d4-59872a484bf1} - C:\Program Files (x86)\dvdvideosofttoolbar\dvdvideosofttoolbarX.dll No File Toolbar: HKLM-x32 - No Name - !{1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File Toolbar: HKLM-x32 - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File Toolbar: HKLM-x32 - No Name - !{cdf97ee2-ded0-4369-835e-99dd08225fa5} - No File Toolbar: HKLM-x32 - Search-Results Toolbar - {f34c9277-6577-4dff-b2d7-7d58092f272f} - C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\searchresultsDx.dll (APN LLC) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Toolbar: HKCU - No Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File Toolbar: HKCU - No Name - {CDF97EE2-DED0-4369-835E-99DD08225FA5} - No File DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll No File Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation) Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation) Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{2E5BD958-A35D-460E-8A15-EF32914D9357}: [NameServer]194.48.139.254 194.48.124.200 Tcpip\..\Interfaces\{484142F6-3C34-49B3-B451-3D4B36D9F851}: [NameServer]194.48.139.254 194.48.128.199 Tcpip\..\Interfaces\{7A99E191-5437-47CE-A2BE-0852E19D1464}: [NameServer]194.48.139.254 194.48.124.200 FireFox: ======== FF ProfilePath: C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default FF user.js: detected! => C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\user.js FF NewTab: chrome://unitedtb/content/newtab/newtab-page.xhtml FF DefaultSearchEngine: Conduit Search FF SelectedSearchEngine: Conduit Search FF Homepage: hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV= FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Lissyy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF SearchPlugin: C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\bProtect.xml FF SearchPlugin: C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\conduit-search.xml FF SearchPlugin: C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\conduit.xml FF SearchPlugin: C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\Search_Results.xml FF SearchPlugin: C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\Web Search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Plus-HD-9.1 - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com [2014-04-16] FF Extension: Savings Sidekick - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\crossriderapp5060@crossrider.com [2012-11-20] FF Extension: Protegere - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\security@protegere.org [2014-04-16] FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2012-12-11] FF Extension: DVD Video Soft Toolbar - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{cd8812d4-e5b8-41c6-94d4-59872a484bf1} [2012-02-11] FF Extension: appbario2 - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{cdf97ee2-ded0-4369-835e-99dd08225fa5} [2014-04-03] FF Extension: Search-Results Toolbar - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{f34c9277-6577-4dff-b2d7-7d58092f272f} [2012-12-18] FF Extension: Customizable Shortcuts - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\customizable-shortcuts@timtaubert.de.xpi [2014-02-25] FF Extension: No Name - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\keyconfig@dorando.xpi [2014-02-25] FF Extension: GMX MailCheck - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\toolbar@gmx.net.xpi [2012-05-04] FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20] FF Extension: ResultsAlpha - C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{f727685b-ed90-4adc-8eec-8234574a91e6}.xpi [2014-04-15] FF Extension: Anti-Banner - C:\Program Files (x86)\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru [2011-03-02] FF Extension: Modul zur Link-Untersuchung - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2011-03-02] FF HKCU\...\Firefox\Extensions: [{b64982b1-d112-42b5-b1e4-d3867c4533f8}] - C:\ProgramData\Sidekick Manager\2.2.513.159\{16cdff19-861d-48e3-a751-d99a27784753}\FirefoxExtension Chrome: ======= CHR HomePage: homepage_is_newtabpage CHR RestoreOnStartup: "tabs" : { "use_vertical_tabs" CHR StartupUrls: "hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV=" CHR DefaultSearchKeyword: conduit.search CHR DefaultSearchProvider: Conduit Search CHR DefaultSearchURL: hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=58&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&q={searchTerms}&SSPV= CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\gcswf32.dll No File CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Chrome NaCl) - C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\pdf.dll No File CHR Plugin: (AVG Internet Security) - C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll (AVG Technologies CZ, s.r.o.) CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File CHR Plugin: (Bing Bar) - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2237.0\npwinext.dll No File CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Lissyy\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) CHR Plugin: (Default Plug-in) - default_plugin No File CHR Extension: (Plus-HD-9.1) - C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe [2014-04-16] CHR Extension: (DownTango Launcher) - C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhddbmbkpejbieanmilmgkgegklkgfdc [2012-12-29] CHR Extension: (No Name) - C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddkeieaieohnceanbhdeijclgemgjjkf [2014-04-16] CHR Extension: (Savings Sidekick) - C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo [2012-09-06] CHR Extension: (AVG Safe Search) - C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla [2012-04-08] CHR Extension: (AVG Do Not Track) - C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2012-09-06] CHR HKLM-x32\...\Chrome\Extension: [dhdepfaagokllfmhfbcfmocaeigmoebo] - C:\Users\Lissyy\AppData\Local\Savings Sidekick\Chrome\Savings Sidekick.crx [2012-06-15] CHR HKLM-x32\...\Chrome\Extension: [pgafcinpmmpklohkojmllohdhomoefph] - C:\ProgramData\Sidekick Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\sidemngr.crx [2013-01-31] ==================== Services (Whitelisted) ================= R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3655184 2014-04-01] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [291912 2014-03-27] (AVG Technologies CZ, s.r.o.) R2 bupService; C:\Users\Lissyy\AppData\Roaming\BupSystem\bup.exe [1005056 2014-04-16] () R2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2470688 2014-04-08] (Conduit) R2 DlProtectSvc; C:\Windows\System32\DlProtectSvc.exe [126976 2014-04-16] () R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] () S2 lxeaCATSCustConnectService; C:\windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe [45736 2010-04-14] (Lexmark International, Inc.) R2 lxea_device; C:\windows\system32\lxeacoms.exe [1052328 2010-04-14] ( ) R2 lxea_device; C:\windows\SysWOW64\lxeacoms.exe [598696 2010-04-14] ( ) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] () R2 Util ResultsAlpha; C:\Program Files (x86)\ResultsAlpha\bin\utilResultsAlpha.exe [350496 2014-04-18] () S2 Sidekick Manager; C:\ProgramData\Sidekick Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\sidemngr.exe [X] S2 Update ResultsAlpha; "C:\Program Files (x86)\ResultsAlpha\updateResultsAlpha.exe" [X] ==================== Drivers (Whitelisted) ==================== R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-03-27] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [236824 2014-04-01] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192792 2014-03-27] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [236824 2014-03-27] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [324376 2014-03-27] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [130840 2014-03-31] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [32536 2014-03-27] (AVG Technologies CZ, s.r.o.) R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [274200 2014-03-31] (AVG Technologies CZ, s.r.o.) R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-20] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation) S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2010-11-01] (Windows (R) 2003 DDK 3790 provider) R1 wStLibG64; C:\Windows\System32\drivers\wStLibG64.sys [61120 2014-04-16] (StdLib) S3 XUIF; C:\Windows\System32\Drivers\x10ufx2.sys [33048 2006-11-30] (X10 Wireless Technology, Inc.) R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] () S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X] S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-04-20 20:50 - 2014-04-20 20:50 - 00035514 _____ () C:\Users\Lissyy\Downloads\FRST.txt 2014-04-20 20:49 - 2014-04-20 20:50 - 00000000 ____D () C:\FRST 2014-04-20 20:49 - 2014-04-20 20:49 - 02056192 _____ (Farbar) C:\Users\Lissyy\Downloads\FRST64.exe 2014-04-20 17:12 - 2014-04-20 17:14 - 00119512 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys 2014-04-20 17:12 - 2014-04-20 17:12 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-04-20 17:12 - 2014-04-20 17:12 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-04-20 17:12 - 2014-04-20 17:12 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-04-20 17:12 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys 2014-04-20 17:12 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys 2014-04-20 17:12 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys 2014-04-20 17:11 - 2014-04-20 17:11 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Lissyy\Downloads\mbam-setup-2.0.1.1004.exe 2014-04-20 11:14 - 2014-04-20 16:58 - 00000000 ____D () C:\Users\Lissyy\AppData\Roaming\Nico Mak Computing 2014-04-20 11:14 - 2014-04-20 16:58 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector 2014-04-20 11:10 - 2014-04-20 11:10 - 04892480 _____ (WinZip International LLC ) C:\Users\Lissyy\Downloads\wzmp_8.exe 2014-04-20 09:59 - 2014-04-20 09:59 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-04-20 09:59 - 2014-04-20 09:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-04-20 09:57 - 2014-04-20 09:58 - 00283192 _____ (Mozilla) C:\Users\Lissyy\Downloads\Firefox Setup Stub 28.0 (1).exe 2014-04-19 22:58 - 2014-04-19 22:58 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2014.lnk 2014-04-19 22:37 - 2014-04-19 22:43 - 150392912 _____ (AVG Technologies) C:\Users\Lissyy\Downloads\avg_free_x86_all_2014_4569a7320.exe 2014-04-19 18:08 - 2014-04-19 18:08 - 00000000 ____D () C:\ProgramData\Avg_Update_0414b 2014-04-17 15:34 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll 2014-04-17 15:34 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe 2014-04-17 15:34 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe 2014-04-17 15:34 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe 2014-04-17 15:33 - 2014-04-17 15:34 - 00004253 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log 2014-04-17 15:31 - 2014-04-17 15:31 - 00921512 _____ (Oracle Corporation) C:\Users\Lissyy\Downloads\jxpiinstall(2).exe 2014-04-17 15:22 - 2014-04-17 15:22 - 00283192 _____ (Mozilla) C:\Users\Lissyy\Downloads\Firefox Setup Stub 28.0.exe 2014-04-17 14:02 - 2014-04-17 14:02 - 25418200 _____ (Mozilla) C:\Users\Lissyy\Downloads\GMX_Firefox_Setup(1).exe 2014-04-16 16:00 - 2014-04-16 16:00 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader(3).exe 2014-04-16 13:36 - 2014-04-16 13:36 - 00061120 _____ (StdLib) C:\windows\system32\Drivers\wStLibG64.sys 2014-04-16 13:27 - 2014-04-16 13:42 - 107249664 _____ () C:\Users\Lissyy\Downloads\ART(1).zip 2014-04-16 13:14 - 2014-04-16 13:26 - 00000000 ____D () C:\Users\Lissyy\AppData\Local\DownloadGuide 2014-04-16 13:13 - 2014-04-16 13:13 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader(2).exe 2014-04-16 13:09 - 2014-04-16 13:12 - 46694400 _____ () C:\Users\Lissyy\Downloads\ART.zip 2014-04-16 12:12 - 2014-04-16 12:12 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader(1).exe 2014-04-16 12:05 - 2014-04-16 12:05 - 00126976 _____ () C:\windows\system32\DlProtectSvc.exe 2014-04-16 12:05 - 2014-04-16 12:05 - 00012800 _____ () C:\ProgramData\dlprotect.exe 2014-04-16 12:04 - 2014-04-16 12:04 - 00097714 _____ () C:\Users\Lissyy\Desktop\Foto_09_03_2014_IMG_23059.JPEG.zip 2014-04-16 12:03 - 2014-04-20 18:03 - 00002768 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3.job 2014-04-16 12:03 - 2014-04-20 18:03 - 00002140 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4.job 2014-04-16 12:03 - 2014-04-20 18:03 - 00001436 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5.job 2014-04-16 12:03 - 2014-04-20 18:03 - 00001356 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-1.job 2014-04-16 12:03 - 2014-04-20 18:03 - 00000000 ____D () C:\Program Files (x86)\Plus-HD-9.1 2014-04-16 12:03 - 2014-04-16 12:03 - 00005798 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3 2014-04-16 12:03 - 2014-04-16 12:03 - 00005170 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4 2014-04-16 12:03 - 2014-04-16 12:03 - 00004466 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5 2014-04-16 12:03 - 2014-04-16 12:03 - 00004386 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-1 2014-04-16 12:02 - 2014-04-20 20:37 - 00000000 ____D () C:\Program Files (x86)\ResultsAlpha 2014-04-16 12:01 - 2014-04-16 12:01 - 00000000 ____D () C:\Users\Lissyy\AppData\Roaming\Security System 2 2014-04-16 12:01 - 2014-04-16 12:01 - 00000000 ____D () C:\Users\Lissyy\AppData\Roaming\BupSystem 2014-04-16 11:53 - 2014-04-16 11:53 - 00000000 ____D () C:\Users\Lissyy\AppData\Local\SearchProtect 2014-04-16 11:52 - 2014-04-16 11:53 - 00000000 ____D () C:\Program Files (x86)\SearchProtect 2014-04-16 11:40 - 2014-04-16 11:40 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader.exe 2014-04-09 21:59 - 2014-03-08 06:54 - 17848832 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll 2014-04-09 21:59 - 2014-03-08 06:06 - 10926592 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll 2014-04-09 21:59 - 2014-03-08 05:49 - 02334720 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll 2014-04-09 21:59 - 2014-03-08 05:41 - 01347072 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll 2014-04-09 21:59 - 2014-03-08 05:40 - 01392128 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll 2014-04-09 21:59 - 2014-03-08 05:39 - 01494528 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl 2014-04-09 21:59 - 2014-03-08 05:38 - 00237056 _____ (Microsoft Corporation) C:\windows\system32\url.dll 2014-04-09 21:59 - 2014-03-08 05:37 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll 2014-04-09 21:59 - 2014-03-08 05:34 - 00816640 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll 2014-04-09 21:59 - 2014-03-08 05:34 - 00173056 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe 2014-04-09 21:59 - 2014-03-08 05:33 - 00599040 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll 2014-04-09 21:59 - 2014-03-08 05:32 - 02147840 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll 2014-04-09 21:59 - 2014-03-08 05:32 - 00729088 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll 2014-04-09 21:59 - 2014-03-08 05:30 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll 2014-04-09 21:59 - 2014-03-08 05:29 - 02382848 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb 2014-04-09 21:59 - 2014-03-08 05:24 - 00248320 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll 2014-04-09 21:59 - 2014-03-08 01:51 - 12347904 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll 2014-04-09 21:59 - 2014-03-08 01:20 - 09739264 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll 2014-04-09 21:59 - 2014-03-08 01:12 - 01806848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll 2014-04-09 21:59 - 2014-03-08 01:03 - 01105408 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll 2014-04-09 21:59 - 2014-03-08 01:02 - 01427968 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl 2014-04-09 21:59 - 2014-03-08 01:02 - 01129472 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll 2014-04-09 21:59 - 2014-03-08 01:00 - 00231936 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll 2014-04-09 21:59 - 2014-03-08 00:59 - 00065024 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll 2014-04-09 21:59 - 2014-03-08 00:57 - 00717824 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll 2014-04-09 21:59 - 2014-03-08 00:57 - 00142848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe 2014-04-09 21:59 - 2014-03-08 00:56 - 00421376 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll 2014-04-09 21:59 - 2014-03-08 00:54 - 00607744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll 2014-04-09 21:59 - 2014-03-08 00:53 - 01796096 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll 2014-04-09 21:59 - 2014-03-08 00:52 - 02382848 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb 2014-04-09 21:59 - 2014-03-08 00:52 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll 2014-04-09 21:59 - 2014-03-08 00:47 - 00176640 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll 2014-04-09 19:43 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll 2014-04-09 19:43 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll 2014-04-09 19:43 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll 2014-04-09 19:43 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll 2014-04-09 19:43 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll 2014-04-09 19:43 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll 2014-04-09 19:43 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll 2014-04-09 19:43 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe 2014-04-09 19:43 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll 2014-04-09 19:43 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe 2014-04-09 19:43 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe 2014-04-09 19:43 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys 2014-04-09 19:43 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys 2014-04-09 19:43 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys 2014-04-09 19:43 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll 2014-04-09 19:43 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iologmsg.dll 2014-04-09 19:43 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys 2014-04-02 21:38 - 2014-04-02 21:38 - 00000000 ____D () C:\Users\Lissyy\Desktop\FOTOS 2014-04-01 21:03 - 2014-04-01 21:03 - 00236824 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsdrivera.sys 2014-03-31 16:20 - 2014-03-31 16:20 - 00274200 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgtdia.sys 2014-03-31 16:06 - 2014-03-31 16:06 - 00130840 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgmfx64.sys 2014-03-27 22:14 - 2014-03-27 22:14 - 00192792 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsha.sys 2014-03-27 22:14 - 2014-03-27 22:14 - 00153368 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgdiska.sys 2014-03-27 22:07 - 2014-03-27 22:07 - 00236824 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgldx64.sys 2014-03-27 22:05 - 2014-03-27 22:05 - 00324376 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgloga.sys 2014-03-27 22:03 - 2014-03-27 22:03 - 00032536 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgrkx64.sys ==================== One Month Modified Files and Folders ======= 2014-04-20 20:50 - 2014-04-20 20:50 - 00035514 _____ () C:\Users\Lissyy\Downloads\FRST.txt 2014-04-20 20:50 - 2014-04-20 20:49 - 00000000 ____D () C:\FRST 2014-04-20 20:49 - 2014-04-20 20:49 - 02056192 _____ (Farbar) C:\Users\Lissyy\Downloads\FRST64.exe 2014-04-20 20:49 - 2011-05-18 18:09 - 00001110 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-04-20 20:49 - 2011-05-18 18:09 - 00001106 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-04-20 20:39 - 2010-08-17 04:51 - 01991129 _____ () C:\windows\WindowsUpdate.log 2014-04-20 20:37 - 2014-04-16 12:02 - 00000000 ____D () C:\Program Files (x86)\ResultsAlpha 2014-04-20 20:31 - 2012-04-07 11:35 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job 2014-04-20 20:03 - 2011-11-08 20:46 - 00001142 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-76830181-1066914796-2057996457-1000UA.job 2014-04-20 20:03 - 2011-11-08 20:46 - 00001120 _____ () C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-76830181-1066914796-2057996457-1000Core.job 2014-04-20 19:47 - 2012-07-24 22:05 - 00000000 ____D () C:\Program Files (x86)\Savings Sidekick 2014-04-20 19:09 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\tracing 2014-04-20 18:38 - 2011-02-28 02:09 - 00000000 ____D () C:\Users\Lissyy\Documents\Outlook-Dateien 2014-04-20 18:15 - 2010-08-17 21:34 - 00699682 _____ () C:\windows\system32\perfh007.dat 2014-04-20 18:15 - 2010-08-17 21:34 - 00149790 _____ () C:\windows\system32\perfc007.dat 2014-04-20 18:15 - 2009-07-14 07:13 - 01620684 _____ () C:\windows\system32\PerfStringBackup.INI 2014-04-20 18:12 - 2014-01-21 22:01 - 00000000 ____D () C:\Users\Lissyy\Desktop\nachdenkn 2014-04-20 18:12 - 2009-07-14 06:51 - 00142077 _____ () C:\windows\setupact.log 2014-04-20 18:07 - 2012-02-28 20:09 - 00000000 ____D () C:\ProgramData\MFAData 2014-04-20 18:03 - 2014-04-16 12:03 - 00002768 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3.job 2014-04-20 18:03 - 2014-04-16 12:03 - 00002140 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4.job 2014-04-20 18:03 - 2014-04-16 12:03 - 00001436 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5.job 2014-04-20 18:03 - 2014-04-16 12:03 - 00001356 _____ () C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-1.job 2014-04-20 18:03 - 2014-04-16 12:03 - 00000000 ____D () C:\Program Files (x86)\Plus-HD-9.1 2014-04-20 17:14 - 2014-04-20 17:12 - 00119512 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys 2014-04-20 17:12 - 2014-04-20 17:12 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-04-20 17:12 - 2014-04-20 17:12 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-04-20 17:12 - 2014-04-20 17:12 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-04-20 17:11 - 2014-04-20 17:11 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Lissyy\Downloads\mbam-setup-2.0.1.1004.exe 2014-04-20 17:11 - 2009-07-14 06:45 - 00014144 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-04-20 17:11 - 2009-07-14 06:45 - 00014144 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-04-20 17:09 - 2011-02-26 01:38 - 00003922 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{8C5BC320-0E12-4C5E-A430-4F11F30B779E} 2014-04-20 17:08 - 2011-02-26 00:17 - 00000000 ____D () C:\Users\Lissyy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite 2014-04-20 17:05 - 2013-08-11 00:02 - 00000000 ____D () C:\Users\Lissyy\Tracing 2014-04-20 17:05 - 2013-06-05 21:00 - 00000350 _____ () C:\windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job 2014-04-20 17:05 - 2012-04-28 19:34 - 00132849 _____ () C:\ProgramData\lxeascan.log 2014-04-20 17:05 - 2009-07-14 04:34 - 00000580 _____ () C:\windows\win.ini 2014-04-20 17:03 - 2012-04-25 22:58 - 00065536 _____ () C:\windows\system32\Ikeext.etl 2014-04-20 17:03 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT 2014-04-20 17:02 - 2011-02-25 20:22 - 00799568 _____ () C:\windows\PFRO.log 2014-04-20 16:58 - 2014-04-20 11:14 - 00000000 ____D () C:\Users\Lissyy\AppData\Roaming\Nico Mak Computing 2014-04-20 16:58 - 2014-04-20 11:14 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector 2014-04-20 11:10 - 2014-04-20 11:10 - 04892480 _____ (WinZip International LLC ) C:\Users\Lissyy\Downloads\wzmp_8.exe 2014-04-20 09:59 - 2014-04-20 09:59 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-04-20 09:59 - 2014-04-20 09:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-04-20 09:59 - 2011-03-01 23:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-04-20 09:58 - 2014-04-20 09:57 - 00283192 _____ (Mozilla) C:\Users\Lissyy\Downloads\Firefox Setup Stub 28.0 (1).exe 2014-04-19 22:59 - 2013-09-25 19:34 - 00000000 ____D () C:\ProgramData\AVG2014 2014-04-19 22:58 - 2014-04-19 22:58 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2014.lnk 2014-04-19 22:57 - 2012-06-08 15:34 - 00000000 ___HD () C:\$AVG 2014-04-19 22:43 - 2014-04-19 22:37 - 150392912 _____ (AVG Technologies) C:\Users\Lissyy\Downloads\avg_free_x86_all_2014_4569a7320.exe 2014-04-19 18:08 - 2014-04-19 18:08 - 00000000 ____D () C:\ProgramData\Avg_Update_0414b 2014-04-18 16:09 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\system32\NDF 2014-04-17 15:36 - 2014-02-16 17:36 - 00000000 ____D () C:\ProgramData\Oracle 2014-04-17 15:34 - 2014-04-17 15:33 - 00004253 _____ () C:\windows\SysWOW64\jupdate-1.7.0_55-b14.log 2014-04-17 15:34 - 2013-06-23 11:12 - 00000000 ____D () C:\Program Files (x86)\Java 2014-04-17 15:31 - 2014-04-17 15:31 - 00921512 _____ (Oracle Corporation) C:\Users\Lissyy\Downloads\jxpiinstall(2).exe 2014-04-17 15:23 - 2012-12-18 22:17 - 00000000 ____D () C:\ProgramData\Wincert 2014-04-17 15:22 - 2014-04-17 15:22 - 00283192 _____ (Mozilla) C:\Users\Lissyy\Downloads\Firefox Setup Stub 28.0.exe 2014-04-17 14:02 - 2014-04-17 14:02 - 25418200 _____ (Mozilla) C:\Users\Lissyy\Downloads\GMX_Firefox_Setup(1).exe 2014-04-16 16:00 - 2014-04-16 16:00 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader(3).exe 2014-04-16 13:42 - 2014-04-16 13:27 - 107249664 _____ () C:\Users\Lissyy\Downloads\ART(1).zip 2014-04-16 13:36 - 2014-04-16 13:36 - 00061120 _____ (StdLib) C:\windows\system32\Drivers\wStLibG64.sys 2014-04-16 13:26 - 2014-04-16 13:14 - 00000000 ____D () C:\Users\Lissyy\AppData\Local\DownloadGuide 2014-04-16 13:13 - 2014-04-16 13:13 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader(2).exe 2014-04-16 13:12 - 2014-04-16 13:09 - 46694400 _____ () C:\Users\Lissyy\Downloads\ART.zip 2014-04-16 12:12 - 2014-04-16 12:12 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader(1).exe 2014-04-16 12:05 - 2014-04-16 12:05 - 00126976 _____ () C:\windows\system32\DlProtectSvc.exe 2014-04-16 12:05 - 2014-04-16 12:05 - 00012800 _____ () C:\ProgramData\dlprotect.exe 2014-04-16 12:04 - 2014-04-16 12:04 - 00097714 _____ () C:\Users\Lissyy\Desktop\Foto_09_03_2014_IMG_23059.JPEG.zip 2014-04-16 12:03 - 2014-04-16 12:03 - 00005798 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3 2014-04-16 12:03 - 2014-04-16 12:03 - 00005170 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4 2014-04-16 12:03 - 2014-04-16 12:03 - 00004466 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5 2014-04-16 12:03 - 2014-04-16 12:03 - 00004386 _____ () C:\windows\System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-1 2014-04-16 12:01 - 2014-04-16 12:01 - 00000000 ____D () C:\Users\Lissyy\AppData\Roaming\Security System 2 2014-04-16 12:01 - 2014-04-16 12:01 - 00000000 ____D () C:\Users\Lissyy\AppData\Roaming\BupSystem 2014-04-16 11:53 - 2014-04-16 11:53 - 00000000 ____D () C:\Users\Lissyy\AppData\Local\SearchProtect 2014-04-16 11:53 - 2014-04-16 11:52 - 00000000 ____D () C:\Program Files (x86)\SearchProtect 2014-04-16 11:43 - 2011-02-26 00:22 - 00000000 ____D () C:\Users\Lissyy\AppData\Local\Adobe 2014-04-16 11:42 - 2012-04-07 11:35 - 00692400 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe 2014-04-16 11:42 - 2012-04-07 11:35 - 00003822 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater 2014-04-16 11:42 - 2011-05-18 18:08 - 00070832 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-04-16 11:40 - 2014-04-16 11:40 - 00678200 _____ () C:\Users\Lissyy\Downloads\art-Downloader.exe 2014-04-14 20:13 - 2014-04-17 15:34 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll 2014-04-14 20:05 - 2014-04-17 15:34 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe 2014-04-14 20:05 - 2014-04-17 15:34 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe 2014-04-14 20:04 - 2014-04-17 15:34 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe 2014-04-09 22:08 - 2011-02-27 00:39 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-04-09 22:06 - 2013-07-22 17:20 - 00000000 ____D () C:\windows\system32\MRT 2014-04-09 22:01 - 2011-03-28 15:01 - 90655440 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe 2014-04-03 09:51 - 2014-04-20 17:12 - 00088280 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys 2014-04-03 09:51 - 2014-04-20 17:12 - 00063192 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys 2014-04-03 09:50 - 2014-04-20 17:12 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys 2014-04-02 21:38 - 2014-04-02 21:38 - 00000000 ____D () C:\Users\Lissyy\Desktop\FOTOS 2014-04-01 21:03 - 2014-04-01 21:03 - 00236824 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsdrivera.sys 2014-03-31 20:44 - 2011-05-18 18:09 - 00004106 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-03-31 20:44 - 2011-05-18 18:09 - 00003854 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-03-31 16:20 - 2014-03-31 16:20 - 00274200 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgtdia.sys 2014-03-31 16:06 - 2014-03-31 16:06 - 00130840 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgmfx64.sys 2014-03-31 09:35 - 2011-02-26 16:13 - 00270496 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe 2014-03-27 22:14 - 2014-03-27 22:14 - 00192792 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsha.sys 2014-03-27 22:14 - 2014-03-27 22:14 - 00153368 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgdiska.sys 2014-03-27 22:07 - 2014-03-27 22:07 - 00236824 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgldx64.sys 2014-03-27 22:05 - 2014-03-27 22:05 - 00324376 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgloga.sys 2014-03-27 22:03 - 2014-03-27 22:03 - 00032536 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgrkx64.sys Files to move or delete: ==================== C:\ProgramData\dlprotect.exe Some content of TEMP: ==================== C:\Users\Lissyy\AppData\Local\Temp\AskSLib.dll C:\Users\Lissyy\AppData\Local\Temp\avgnt.exe C:\Users\Lissyy\AppData\Local\Temp\avguidx.dll C:\Users\Lissyy\AppData\Local\Temp\BundleSweetIMSetup.exe C:\Users\Lissyy\AppData\Local\Temp\CommonInstaller.exe C:\Users\Lissyy\AppData\Local\Temp\DataCard_Setup64.exe C:\Users\Lissyy\AppData\Local\Temp\FlashPlayerUpdate.exe C:\Users\Lissyy\AppData\Local\Temp\iGearedHelper.dll C:\Users\Lissyy\AppData\Local\Temp\installhelper.dll C:\Users\Lissyy\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe C:\Users\Lissyy\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe C:\Users\Lissyy\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe C:\Users\Lissyy\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe C:\Users\Lissyy\AppData\Local\Temp\MachineIdCreator.exe C:\Users\Lissyy\AppData\Local\Temp\MSETUP4.EXE C:\Users\Lissyy\AppData\Local\Temp\MSN6D58.exe C:\Users\Lissyy\AppData\Local\Temp\MybabylonTB.exe C:\Users\Lissyy\AppData\Local\Temp\nsb2543.exe C:\Users\Lissyy\AppData\Local\Temp\nsb37DB.exe C:\Users\Lissyy\AppData\Local\Temp\nsb8371.exe C:\Users\Lissyy\AppData\Local\Temp\nsg2E39.exe C:\Users\Lissyy\AppData\Local\Temp\nsg70AA.exe C:\Users\Lissyy\AppData\Local\Temp\nsg7AB9.exe C:\Users\Lissyy\AppData\Local\Temp\oi_{44B17CA6-EA22-4981-AB82-AC2822F74E6F}.exe C:\Users\Lissyy\AppData\Local\Temp\propsys.dll C:\Users\Lissyy\AppData\Local\Temp\qvep-6-v.dll C:\Users\Lissyy\AppData\Local\Temp\ResetDevice.exe C:\Users\Lissyy\AppData\Local\Temp\setup.exe C:\Users\Lissyy\AppData\Local\Temp\soxdec.exe C:\Users\Lissyy\AppData\Local\Temp\SRAssetsHelper.dll C:\Users\Lissyy\AppData\Local\Temp\tbappb.dll C:\Users\Lissyy\AppData\Local\Temp\Toolbarge.exe C:\Users\Lissyy\AppData\Local\Temp\ToolbarInstaller.exe C:\Users\Lissyy\AppData\Local\Temp\uninst.exe C:\Users\Lissyy\AppData\Local\Temp\UNINSTALL.EXE C:\Users\Lissyy\AppData\Local\Temp\Uninstaller.exe C:\Users\Lissyy\AppData\Local\Temp\UninstallerGer.dll C:\Users\Lissyy\AppData\Local\Temp\vpsetup.exe C:\Users\Lissyy\AppData\Local\Temp\wpsetup.exe C:\Users\Lissyy\AppData\Local\Temp\WtgDriverInstallX.dll C:\Users\Lissyy\AppData\Local\Temp\{EC4590BC-4289-41BC-B2E4-5D0ECB7F58F7}-26.0.1410.43_25.0.1364.172_chrome_updater.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-24 05:22 ==================== End Of Log ============================ |
|
21.04.2014, 20:17
| #4 |
| /// the machine /// TB-Ausbilder | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei Firefox Da fehlt noch die Addition.txt.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
22.04.2014, 13:07
| #5 |
| | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei FirefoxCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-04-2014 01
Ran by Lissyy at 2014-04-20 20:51:54
Running from C:\Users\Lissyy\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
==================== Installed Programs ======================
A1 Dashboard (HKLM-x32\...\A1 Dashboard) (Version: 1.16.1.0 - A1 Telekom Austria AG)
A1 Dashboard (x32 Version: 1.16.1.0 - A1 Telekom Austria AG) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArchiCAD 17 AUT (HKLM\...\001FFF2FFF17FF00FF0901F01F02F000-R1) (Version: 17.0 - GRAPHISOFT)
Atheros Client Installation Program (HKLM-x32\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.5.0621 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{5635224E-675C-B94C-43EE-70BCD39BF30B}) (Version: 3.0.782.0 - ATI Technologies, Inc.)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4569 - AVG Technologies)
AVG 2014 (Version: 14.0.3882 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4569 - AVG Technologies) Hidden
BatteryLifeExtender (HKLM-x32\...\{E308B555-8434-4AF8-B66F-729897C75F93}) (Version: 1.0.6 - Samsung)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.44 - Broadcom Corporation)
Canon MP495 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series) (Version: - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0706.2128.36662 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0706.2128.36662 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0706.2128.36662 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0706.2128.36662 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help English (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help French (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help German (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0706.2127.36662 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0706.2128.36662 - ATI) Hidden
ccc-utility64 (Version: 2010.0706.2128.36662 - ATI) Hidden
CrossWorlds – Die Stadt in den Wolken (HKLM-x32\...\CrossWorlds – Die Stadt in den Wolken) (Version: 1.0.0.0 - INTENIUM GmbH)
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2806 - CyberLink Corp.)
CyberLink DVD Suite (x32 Version: 6.0.2806 - CyberLink Corp.) Hidden
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1916 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.1916 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3108a - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.0.3108a - CyberLink Corp.) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3213 - CyberLink Corp.)
CyberLink PowerDirector (x32 Version: 7.0.3213 - CyberLink Corp.) Hidden
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.2815b - CyberLink Corp.)
CyberLink PowerDVD 8 (x32 Version: 8.0.2815b - CyberLink Corp.) Hidden
CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.1.1812 - CyberLink Corp.)
CyberLink PowerProducer (x32 Version: 5.0.1.1812 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3911 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 2.0.3911 - CyberLink Corp.) Hidden
Das Vermächtnis der Insel (HKLM-x32\...\Das Vermächtnis der Insel) (Version: 1.0.0.0 - INTENIUM GmbH)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5971CA1F-6BDE-498F-952C-9F2BF94070A4}) (Version: - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{5971CA1F-6BDE-498F-952C-9F2BF94070A4}) (Version: - Microsoft)
DEUTSCHLAND SPIELT GAME CENTER (HKLM-x32\...\DSGPlayer) (Version: 1.0.0.46 - INTENIUM GmbH)
Download Protect (HKCU\...\{132401a7-2006-4342-b43c-ccf5f02c2b01}) (Version: - Download Protect)
DVD Video Soft Toolbar (HKLM-x32\...\dvdvideosofttoolbar) (Version: 1.0.0.12 - )
Easy Content Share (HKLM-x32\...\{2DDC70C1-C77A-4D08-89D2-9AB648504533}) (Version: 1.0 - Samsung Electronics Co., LTD)
Easy Display Manager (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.2 - Samsung Electronics Co., Ltd.)
Easy Network Manager (HKLM-x32\...\{559D1FDB-6D5C-4EF3-8F63-5E1E93A0A244}) (Version: 4.4.1 - Samsung)
Easy SpeedUp Manager (HKLM-x32\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 2.1.0.15 - Samsung Electronics Co.,Ltd.)
EasyBatteryManager (HKLM-x32\...\{4A331D24-A9E8-484F-835E-1BA7B139689C}) (Version: 4.0.0.4 - Samsung)
EasyFileShare (HKLM-x32\...\{C4582EED-A3FB-4358-8F3F-8C994460DF28}) (Version: 1.0.3 - Samsung)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Free YouTube to MP3 Converter version 3.10.15.1228 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: - DVDVideoSoft Ltd.)
Game Pack (HKLM-x32\...\{D1F6FBBB-B204-459A-9BF8-D06FFAB96CCC}_is1) (Version: 6.3.1.1 - Oberon Media, Inc.)
Gem Shop (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110521483}) (Version: - Oberon Media)
GEQ-Übungsversion (HKLM-x32\...\InstallShield_{7F336BD9-9BA2-4BD6-9191-51025A9ADCBF}) (Version: 100.13.1917 - Zehentmayer Software GmbH)
GEQ-Übungsversion (x32 Version: 100.13.1917 - Zehentmayer Software GmbH) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.3.1001 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Lexmark (HKLM-x32\...\{D2C5E510-BE6D-42CC-9F61-E4F939078474}) (Version: 1.0.0.0 - )
Lexmark S300-S400 Series (HKLM\...\Lexmark S300-S400 Series) (Version: - Lexmark International, Inc.)
Lexmark Symbolleiste (HKLM-x32\...\{1017A80C-6F09-4548-A84D-EDD6AC9525F0}) (Version: 4.63.37.0 - )
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Marvell Miniport Driver (HKLM-x32\...\Marvell Miniport Driver) (Version: 11.22.3.3 - Marvell)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Outlook 2010 (HKLM-x32\...\Office14.OUTLOOKR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Millionaire Manor: Die Wimmelbildshow (HKLM-x32\...\Millionaire Manor: Die Wimmelbildshow) (Version: 1.0.0.0 - INTENIUM GmbH)
MobileWiFi (HKLM-x32\...\MobileWiFi) (Version: 1.09.01.801 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
NVIDIA PhysX (HKLM-x32\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
Opera 12.12 (HKLM-x32\...\Opera 12.12.1707) (Version: 12.12.1707 - Opera Software ASA)
Plus-HD-9.1 (HKLM-x32\...\Plus-HD-9.1) (Version: 1.34.4.10 - Plus HD) <==== ATTENTION
Protected Search 1.1 (HKLM-x32\...\Protected Search_is1) (Version: - Protected Search) <==== ATTENTION
Protegere (HKLM-x32\...\Protegere) (Version: - )
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6156 - Realtek Semiconductor Corp.)
Recover Keys (HKLM-x32\...\Recover Keys_is1) (Version: 4.0.0.48 - Recover Keys)
ResultsAlpha (HKLM\...\ResultsAlpha) (Version: 2014.04.14.224336 - ResultsAlpha)
Samsung Recovery Solution 4 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.6 - Samsung)
Samsung Support Center (HKLM-x32\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.18 - Samsung)
Samsung Update Plus (HKLM-x32\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.)
Sandra Fleming Chronicles – Crystal Skulls (HKLM-x32\...\Sandra Fleming Chronicles – Crystal Skulls) (Version: 1.0.0.0 - INTENIUM GmbH)
Savings Sidekick (HKLM-x32\...\Savings Sidekick) (Version: 1.18.149.149 - 215 Apps) <==== ATTENTION
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.12.20.154 - Conduit) <==== ATTENTION
Search-Results Toolbar (HKLM-x32\...\ilividtoolbarguid) (Version: 1.0.0.12 - APN LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
Sidekick Manager (HKLM-x32\...\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}) (Version: - )
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Smart NTFS Recovery v4.5 (HKLM-x32\...\Smart NTFS Recovery_is1) (Version: 4.5 - Smart PC Solutions)
Special Enquiry Detail: Mord in New York (HKLM-x32\...\Special Enquiry Detail: Mord in New York) (Version: 1.0.0.0 - INTENIUM GmbH)
SRS Premium Sound Control Panel (HKLM\...\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}) (Version: 1.8.7300 - SRS Labs, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.22.0 - Synaptics Incorporated)
T-Mobile Internet Manager (HKLM-x32\...\T-Mobile Internet Manager) (Version: 11.301.05.34.55 - Huawei Technologies Co.,Ltd)
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version: - )
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.OUTLOOKR_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.OUTLOOKR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.OUTLOOKR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.OUTLOOKR_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.OUTLOOKR_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.OUTLOOKR_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.OUTLOOKR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.OUTLOOKR_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOKR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.OUTLOOKR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2553444) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{799005D3-9B70-4219-AFE0-BC479614CC4D}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version: - Microsoft)
User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - )
VideoPad Videobearbeitungs-Software (HKLM-x32\...\VideoPad) (Version: - NCH Software)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WavePad Audiobearbeitungs-Software (HKLM-x32\...\WavePad) (Version: - NCH Software)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5100 - Broadcom Corporation)
Windows Live Call (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 14.0.8118.427 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Mail (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Wise Data Recovery 3.02 beta (HKLM-x32\...\Wise Data Recovery_is1) (Version: - WiseCleaner.com, Inc.)
==================== Restore Points =========================
07-04-2014 17:51:27 Windows-Sicherung
09-04-2014 19:56:53 Windows Update
13-04-2014 17:21:09 Windows-Sicherung
17-04-2014 13:32:18 Installed Java 7 Update 55
19-04-2014 20:29:00 Removed AVG 2014
19-04-2014 20:32:33 Removed AVG 2014
19-04-2014 20:48:37 Installed AVG 2014
19-04-2014 20:55:29 Installed AVG 2014
19-04-2014 21:03:29 Windows Update
20-04-2014 17:00:41 Windows-Sicherung
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0A265031-5DBB-4FBC-98D2-72F397E5C507} - System32\Tasks\BatteryLifeExtender => C:\Program Files (x86)\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2010-07-12] (Samsung Electronics. Co. Ltd.)
Task: {15C2052D-6BFD-482D-AF51-2888E07988DB} - System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4 => C:\Program Files (x86)\Plus-HD-9.1\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4.exe <==== ATTENTION
Task: {433D4ED3-464E-405D-AF6E-B06BB4164423} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-76830181-1066914796-2057996457-1000UA => C:\Users\Lissyy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)
Task: {4AE47D1F-0AA4-41FC-A401-4C32DF25DE1F} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\EasySpeedUpManager\EasySpeedUpManager2.exe [2010-08-05] (Samsung Electronics)
Task: {4B07E417-1BDC-410F-8873-906EB433B0B7} - System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5 => C:\Program Files (x86)\Plus-HD-9.1\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5.exe <==== ATTENTION
Task: {4D8259AE-C44B-4AF7-81EF-E8A5D59E70F2} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {55DB4EFA-F2AE-4829-8F5D-6386040DC015} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe [2010-08-05] (Samsung Electronics Co., Ltd.)
Task: {5A4D13D3-705D-4042-81C8-6E0CBA21C730} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2010-07-20] (SAMSUNG Electronics co., LTD.)
Task: {6B64CD8A-7151-4FDC-ADDF-9B4CB9C36095} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-18] (Google Inc.)
Task: {86460AB6-1313-41D1-AD7E-03B7B7D6B38E} - System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3 => C:\Program Files (x86)\Plus-HD-9.1\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3.exe <==== ATTENTION
Task: {8BDE2847-C6E8-4E6D-B8B7-7C275E5D3A38} - System32\Tasks\{526A2F6A-6885-454E-A4C7-48738ADA7E7F} => C:\Program Files (x86)\3DataManager\3DataManager.exe
Task: {9100C674-E71F-4F2D-B0E6-87E35FE00686} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\windows\TEMP\{3B1B41B5-340B-45A8-98A6-A201945E8164}.exe
Task: {93856B51-7365-4E64-8673-EEC22A61244D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-18] (Google Inc.)
Task: {9C79D39B-B850-4B7A-9813-B8C97E517602} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-16] (Adobe Systems Incorporated)
Task: {A00CA2A0-19D4-417D-A400-ABE3CA81001B} - System32\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-1 => C:\Program Files (x86)\Plus-HD-9.1\Plus-HD-9.1-codedownloader.exe <==== ATTENTION
Task: {B0CEA112-B8A5-404E-9CAF-8248D2D86D34} - System32\Tasks\{AFDF1625-7F17-49AA-AF57-AC9B27F54535} => C:\Program Files (x86)\3DataManager\3DataManager.exe
Task: {B3059A2E-615E-4E21-B270-D01978483984} - System32\Tasks\advSRS4 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2010-01-19] (SEC)
Task: {BA5ED8F6-7AE0-4E2A-8FC3-D09160FD9F58} - System32\Tasks\{770F63EC-677D-4773-B22B-E0033798F5D2} => C:\Program Files (x86)\3DataManager\3DataManager.exe
Task: {BB3E68A4-F43D-4275-B397-43F5124FE304} - System32\Tasks\{67A60A5C-534B-4A68-88E5-9D0893DF7088} => C:\Program Files (x86)\3DataManager\3DataManager.exe
Task: {C94BA303-5A76-45FE-A089-C762FF3BCA5E} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
Task: {D1001D05-1EC6-4948-8B2D-FB53559B0D82} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D372CFB5-C899-403A-AC7F-BA8262F83E90} - System32\Tasks\{670F09AD-1A29-4335-A77F-88D603CDDCDC} => C:\Program Files (x86)\3DataManager\3DataManager.exe
Task: {D3FA1EB9-41FE-4666-9630-D22301870DDF} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [2010-07-30] (SAMSUNG Electronics)
Task: {DDCDFAFF-35C4-4670-AE6F-935B95DA8926} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files (x86)\Protected Search\ProtectedSearch.exe [2012-12-20] (Simplygen) <==== ATTENTION
Task: {EB6321F7-4023-4F32-A3A2-75E6B134EB92} - System32\Tasks\{4A938F5B-62FD-43C2-8E57-F1F1241CD136} => C:\Program Files (x86)\3DataManager\3DataManager.exe
Task: {EEB7DC07-1844-481B-A979-0D6839FD3846} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-76830181-1066914796-2057996457-1000Core => C:\Users\Lissyy\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)
Task: C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-1.job => C:\Program Files (x86)\Plus-HD-9.1\Plus-HD-9.1-codedownloader.exe <==== ATTENTION
Task: C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3.job => C:\Program Files (x86)\Plus-HD-9.1\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3.exe <==== ATTENTION
Task: C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4.job => C:\Program Files (x86)\Plus-HD-9.1\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4.exe <==== ATTENTION
Task: C:\windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5.job => C:\Program Files (x86)\Plus-HD-9.1\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5.exe <==== ATTENTION
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\windows\TEMP\{3B1B41B5-340B-45A8-98A6-A201945E8164}.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-76830181-1066914796-2057996457-1000Core.job => C:\Users\Lissyy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-76830181-1066914796-2057996457-1000UA.job => C:\Users\Lissyy\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-04-28 19:35 - 2009-11-04 15:17 - 00189440 _____ () C:\windows\system32\spool\PRTPROCS\x64\lxeadrpp.dll
2014-04-16 12:01 - 2014-04-16 12:01 - 01005056 _____ () C:\Users\Lissyy\AppData\Roaming\BupSystem\bup.exe
2014-04-16 12:05 - 2014-04-16 12:05 - 00126976 _____ () C:\Windows\System32\DlProtectSvc.exe
2011-03-14 17:27 - 2011-03-14 17:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2010-08-17 05:05 - 2009-07-07 20:23 - 00247152 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2014-04-16 13:06 - 2014-04-18 12:30 - 00350496 ____N () C:\Program Files (x86)\ResultsAlpha\bin\utilResultsAlpha.exe
2012-04-28 19:32 - 2011-01-24 03:08 - 00770728 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\lxeamon.exe
2012-04-28 19:32 - 2011-01-24 03:08 - 00148280 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe
2014-04-16 12:05 - 2014-04-16 12:05 - 00012800 _____ () C:\ProgramData\dlprotect.exe
2014-04-16 13:36 - 2014-04-16 13:36 - 00287008 _____ () C:\Program Files (x86)\ResultsAlpha\bin\FilterApp_C64.exe
2014-04-16 13:36 - 2014-04-17 22:25 - 00095520 _____ () C:\Program Files (x86)\ResultsAlpha\bin\ResultsAlpha.BrowserAdapter.exe
2009-02-12 07:32 - 2009-02-12 07:32 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-07-06 14:26 - 2010-07-06 14:26 - 00270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-04-16 12:01 - 2014-04-16 12:01 - 00374272 _____ () C:\Users\Lissyy\AppData\Roaming\BupSystem\sub\default.dll
2012-04-28 19:32 - 2010-04-01 19:23 - 00389120 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\lxeascw.dll
2012-04-28 19:31 - 2009-05-27 14:16 - 00192512 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\lxeadatr.dll
2012-04-28 19:32 - 2010-04-01 19:24 - 01159168 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\lxeaDRS.dll
2012-04-28 19:32 - 2009-03-10 07:43 - 00155648 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\lxeacaps.dll
2012-04-28 19:30 - 2009-02-20 10:48 - 00381440 _____ () C:\windows\system32\lxeasm.dll
2012-04-28 19:30 - 2009-04-28 09:56 - 00024064 _____ () C:\windows\system32\lxeasmr.dll
2012-04-28 19:32 - 2010-04-05 12:56 - 00716954 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\Epwizard.DLL
2012-04-28 19:32 - 2010-04-05 12:55 - 00159890 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\customui.dll
2012-04-28 19:32 - 2010-04-05 12:54 - 00123033 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\Eputil.DLL
2012-04-28 19:32 - 2010-04-05 12:54 - 00143502 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\Imagutil.DLL
2012-04-28 19:32 - 2010-04-05 12:55 - 00061604 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\Epfunct.DLL
2012-04-28 19:32 - 2009-06-23 13:09 - 02203648 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\EPWizRes.dll
2012-04-28 19:32 - 2009-06-23 13:10 - 00045056 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\epstring.dll
2012-04-28 19:32 - 2009-06-23 13:11 - 00102400 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\EPOEMDll.dll
2012-04-28 19:31 - 2009-04-07 21:25 - 00409600 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\iptk.dll
2012-04-28 19:32 - 2009-03-02 16:25 - 00151552 _____ () C:\Program Files (x86)\Lexmark S300-S400 Series\lxeaptp.dll
2010-08-17 05:10 - 2006-08-12 05:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Display Manager\HookDllPS2.dll
2009-06-03 13:59 - 2009-06-03 13:59 - 00619816 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-06-03 13:59 - 2009-06-03 13:59 - 00013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-04-20 09:59 - 2014-03-15 10:40 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-04-16 11:42 - 2014-04-16 11:42 - 16351920 _____ () C:\windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/20/2014 07:22:25 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {21b6a943-01cf-4ee3-9b35-7d4c3fdee9fd}
Error: (04/20/2014 07:00:43 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {21b6a943-01cf-4ee3-9b35-7d4c3fdee9fd}
Error: (04/20/2014 04:49:02 PM) (Source: Google Update) (User: Lissy)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80
Error: (04/20/2014 09:31:12 AM) (Source: Application Hang) (User: )
Description: Programm firefox.exe, Version 28.0.0.5186 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 238c
Startzeit: 01cf5c69e7f44b61
Endzeit: 120
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: b7a870af-c85d-11e3-8821-4cedde0451bc
Error: (04/20/2014 09:26:52 AM) (Source: Application Hang) (User: )
Description: Programm firefox.exe, Version 28.0.0.5186 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ed0
Startzeit: 01cf5c690a260e1d
Endzeit: 50
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: 06c98fbb-c85d-11e3-8821-4cedde0451bc
Error: (04/20/2014 09:19:39 AM) (Source: Google Update) (User: Lissy)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80
Error: (04/19/2014 11:03:30 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {dc552b13-9454-422a-a15f-2e196cc2e6ae}
Error: (04/19/2014 10:55:32 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {baa1806f-6719-479f-860b-197059e5153a}
Error: (04/19/2014 10:48:57 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddWin32ServiceFiles: Unable to back up image of service vsmraid OHCI-konformer vsmraid since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden.
.
Error: (04/19/2014 10:48:37 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {33e5c12e-1074-4fcd-9587-c9162685d91c}
System errors:
=============
Error: (04/20/2014 05:04:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update ResultsAlpha" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (04/20/2014 05:04:11 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Update ResultsAlpha erreicht.
Error: (04/20/2014 05:03:34 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Sidekick Manager" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/20/2014 05:03:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lxeaCATSCustConnectService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (04/20/2014 05:03:31 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst lxeaCATSCustConnectService erreicht.
Error: (04/20/2014 05:01:04 PM) (Source: DCOM) (User: )
Description: {51FA2736-5DEE-11D4-98E8-006008BF430C}
Error: (04/19/2014 10:54:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update ResultsAlpha" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (04/19/2014 10:54:02 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Update ResultsAlpha erreicht.
Error: (04/19/2014 10:53:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Sidekick Manager" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/19/2014 10:53:29 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lxeaCATSCustConnectService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Microsoft Office Sessions:
=========================
Error: (04/20/2014 07:22:25 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {21b6a943-01cf-4ee3-9b35-7d4c3fdee9fd}
Error: (04/20/2014 07:00:43 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {21b6a943-01cf-4ee3-9b35-7d4c3fdee9fd}
Error: (04/20/2014 04:49:02 PM) (Source: Google Update)(User: Lissy)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80
Error: (04/20/2014 09:31:12 AM) (Source: Application Hang)(User: )
Description: firefox.exe28.0.0.5186238c01cf5c69e7f44b61120C:\Program Files (x86)\Mozilla Firefox\firefox.exeb7a870af-c85d-11e3-8821-4cedde0451bc
Error: (04/20/2014 09:26:52 AM) (Source: Application Hang)(User: )
Description: firefox.exe28.0.0.5186ed001cf5c690a260e1d50C:\Program Files (x86)\Mozilla Firefox\firefox.exe06c98fbb-c85d-11e3-8821-4cedde0451bc
Error: (04/20/2014 09:19:39 AM) (Source: Google Update)(User: Lissy)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80
Error: (04/19/2014 11:03:30 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {dc552b13-9454-422a-a15f-2e196cc2e6ae}
Error: (04/19/2014 10:55:32 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {baa1806f-6719-479f-860b-197059e5153a}
Error: (04/19/2014 10:48:57 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service vsmraid OHCI-konformer vsmraid since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (04/19/2014 10:48:37 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-76830181-1066914796-2057996457-1000.bak)0x80070539, Die Struktur der Sicherheitskennung ist unzulässig.
Vorgang:
OnIdentify-Ereignis
Generatordaten werden gesammelt
Kontext:
Ausführungskontext: Shadow Copy Optimization Writer
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {33e5c12e-1074-4fcd-9587-c9162685d91c}
==================== Memory info ===========================
Percentage of memory in use: 53%
Total physical RAM: 3946.16 MB
Available physical RAM: 1830.48 MB
Total Pagefile: 7890.51 MB
Available Pagefile: 5190.01 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:143 GB) (Free:48.96 GB) NTFS
Drive d: () (Fixed) (Total:302.66 GB) (Free:189.6 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 94F74182)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=143 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=303 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
|
22.04.2014, 19:09
| #6 |
| /// the machine /// TB-Ausbilder | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei Firefox Revo Uninstaller - Download - Filepony Damit alles deinstallieren was Du in der Additional.txt findest mit dem Zusatz <== ATTENTION Mit Revo auch Moderat die Reste entfernen lassen. Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> Troj/ Plus-HD-9.1 / lauter spam und pop ups bei Firefox |
|
26.04.2014, 12:32
| #7 |
| | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei Firefox hallo, vielen dank revo uninstaller - erledigt malware erledigt, muss ich leider auf zwei mal posten : Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 25.04.2014 Suchlauf-Zeit: 15:23:58 Logdatei: mbam.txt Administrator: Ja Version: 2.00.1.1004 Malware Datenbank: v2014.04.24.08 Rootkit Datenbank: v2014.03.27.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Chameleon: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Lissyy Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 303745 Verstrichene Zeit: 17 Std, 17 Min, 59 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Shuriken: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 50 PUP.Optional.ResultsAlpha.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util ResultsAlpha, In Quarantäne, [926e718fec14a65afce2133bc938946c], PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, In Quarantäne, [1ae68b75679977897d983619d82ae818], PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, In Quarantäne, [1ae68b75679977897d983619d82ae818], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\CLASSES\CLSID\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\CLASSES\BrowserConnection.Loader.1, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\CLASSES\BrowserConnection.Loader, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BrowserConnection.Loader, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\BrowserConnection.Loader.1, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.Datamngr.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}, In Quarantäne, [59a71fe1a75930d0db3a160c649e01ff], PUP.Optional.SearchQu, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}, In Quarantäne, [7090619f25dbd030ca8d809c778bfa06], PUP.Optional.SearchQu, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, In Quarantäne, [7090619f25dbd030ca8d809c778bfa06], PUP.Optional.SearchQu, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, In Quarantäne, [7090619f25dbd030ca8d809c778bfa06], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{cbab673a-a480-4050-bd2b-5de24a7a0282}, In Quarantäne, [01ff43bdb24e6b951d6f30eb24debf41], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{f631e34d-23d3-4ed2-8942-631b8aaf9ea4}, In Quarantäne, [01ff43bdb24e6b951d6f30eb24debf41], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B01A1DA4-813F-44BD-B544-77E5DA7EB5A8}, In Quarantäne, [01ff43bdb24e6b951d6f30eb24debf41], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B01A1DA4-813F-44BD-B544-77E5DA7EB5A8}, In Quarantäne, [01ff43bdb24e6b951d6f30eb24debf41], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{f631e34d-23d3-4ed2-8942-631b8aaf9ea4}, In Quarantäne, [01ff43bdb24e6b951d6f30eb24debf41], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{CBAB673A-A480-4050-BD2B-5DE24A7A0282}, In Quarantäne, [01ff43bdb24e6b951d6f30eb24debf41], PUP.Optional.ResultsAlpha.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{CBAB673A-A480-4050-BD2B-5DE24A7A0282}, In Quarantäne, [01ff43bdb24e6b951d6f30eb24debf41], PUP.Optional.Bandoo.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9D717F81-9148-4F12-8568-69135F087DB0}, In Quarantäne, [b14f857b10f0d42c75a5d27df70b946c], PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{f34c9277-6577-4dff-b2d7-7d58092f272f}, In Quarantäne, [bd438977c23e4db340d66db5fe048d73], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\ResultsAlpha, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\19979, In Quarantäne, [57a98977fd03976934d9e3943fc3b64a], PUP.Optional.ResultsAlpha.A, HKLM\SOFTWARE\WOW6432NODE\ResultsAlpha, In Quarantäne, [4eb2936dca367d83d37a05a4f50ecd33], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\19979, In Quarantäne, [b44c57a90ff13fc1f01ddc9b27dbc838], PUP.Optional.ConduitSearchProtect, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CltMngSvc, In Quarantäne, [6898fe02946c4bb5c55b5f38cf34a65a], PUP.Optional.ResultsAlpha.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update ResultsAlpha, In Quarantäne, [7e820000d32d30d0f15efdacf60d27d9], PUP.Optional.DataMngr.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr, In Quarantäne, [0ff16a9611efe21eae4c69300ff47888], PUP.Optional.DataMngr.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr_Toolbar, In Quarantäne, [a15f56aa4db3679945b47821b44f0af6], PUP.Optional.PlusHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-9.1, In Quarantäne, [ca367d83778931cfeacb8de927dbd52b], PUP.Optional.DataMngr.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr, In Quarantäne, [24dcb94750b00ff1cf2b81189e653ac6], PUP.Optional.DataMngr.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr_Toolbar, In Quarantäne, [23dd28d8a759ce3251a88e0b699a8e72], PUP.Optional.ResultsAlpha.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\ResultsAlpha, In Quarantäne, [c43c679934cc2bd5d27cd7d247bc29d7], PUP.Optional.CrossRider.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, In Quarantäne, [c23e6c9403fdbd43595c9816b251847c], PUP.Optional.PlusHD.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-9.1, In Quarantäne, [cc3440c052ae8a762392d5a134ce58a8], PUP.Optional.PriceGong.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\PriceGong, In Quarantäne, [d62a5fa104fcd03069d2ea9443bf0bf5], PUP.Optional.Conduit.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\FF, In Quarantäne, [ec14c53b1ae6df214d5a207f768d748c], PUP.Optional.ValueApps.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CONDUIT\ValueApps, In Quarantäne, [23dd8e721ee2f50bcf9e780c32d0ff01], PUP.Optional.CrossRider.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CR_INSTALLER\5060, In Quarantäne, [c838a55be719d12fd010592631d1bd43], PUP.Optional.CrossRider.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\19979, In Quarantäne, [49b77c84d52b7090df2f95e2f70b1ae6], PUP.Optional.CrossRider.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\215 Apps, In Quarantäne, [51af916fb34df40c32dcec8bd62cbc44], PUP.Optional.PlusHD.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Plus HD, In Quarantäne, [05fbf20ea45ca060eacc2c4a35cdaf51], PUP.Optional.BProtector.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\bProtectSettings, In Quarantäne, [09f741bfaa56c23e3522d9c4ee1514ec], PUP.Optional.Softonic.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, In Quarantäne, [4cb4b24e0ff131cfa37eb2c04bb707f9], |
|
26.04.2014, 12:37
| #8 |
| | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei FirefoxCode:
ATTFilter Registrierungswerte: 5
PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{F34C9277-6577-4DFF-B2D7-7D58092F272F}, Search-Results Toolbar, In Quarantäne, [bd438977c23e4db340d66db5fe048d73]
PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{f34c9277-6577-4dff-b2d7-7d58092f272f}, In Quarantäne, [88785aa67f8142be160069b9df23956b],
PUP.Optional.Datamngr.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|DATAMNGR, C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE, In Quarantäne, [a957a25e53ad629ed85fd9be6b98a957]
PUP.Optional.CrossFire.SA, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\215 APPS|5060, Savings Sidekick, In Quarantäne, [42be27d95ba5bd4379229ac4d62d14ec]
PUP.BProtector, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|bProtector Start Page, hxxp://search.conduit.com?SearchSource=10&ctid=CT3227982, In Quarantäne, [48b815eb3ac67d83ee0d08919d6636ca]
Registrierungsdaten: 11
Hijack.SearchPage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[ce321ee29769aa56b5d5ff2ec63e1be5]
Hijack.SearchPage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[b44c0ef223dd709028641914cd3720e0]
Hijack.SearchPage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[44bcfb05db259967503b52db40c455ab]
Hijack.SearchPage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com/), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[5da3649c6f9153ad47468e9f54b0d62a]
Hijack.SearchPage, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[19e723dd827e6f912861aa834bb9ef11]
PUP.Optional.Conduit.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV=),Ersetzt,[a9575aa62ed2bf41dc81e93c7e86fa06]
Hijack.SearchPage, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[4eb236ca8c7405fb6c1b66c72cd8fc04]
Hijack.SearchPage, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[ed136e929b6505fb8bfdbb727a8ac53b]
Hijack.SearchPage, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=, Gut: (hxxp://www.google.com/), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&tid=3228&bs=true&q=),Ersetzt,[98686997946c8878e9a5131a9c68f40c]
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q=%s, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q=%s),Ersetzt,[e8187b855ca439c712a43af5c44046ba]
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-76830181-1066914796-2057996457-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|(Default), hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q=%s, Gut: (hxxp://www.google.com/), Schlecht: (hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q=%s),Ersetzt,[07f92fd1857b8a764d6a2e01ad57847c]
Ordner: 82
Adware.InstallBrain, C:\ProgramData\IBUpdaterService, In Quarantäne, [0cf47987aa56857b3eac076ca55e7d83],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\rep, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\bin, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\rep, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\plugins, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\TEMP, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\css, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227975, In Quarantäne, [77890df37789966a243cd38f05fd45bb],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227975\xpi, In Quarantäne, [77890df37789966a243cd38f05fd45bb],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227982, In Quarantäne, [867a0af6619fb94797c922406e94926e],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\actions, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\notifications, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\api, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.SavingsSidekick.A, C:\Users\Lissyy\AppData\Local\Savings Sidekick, In Quarantäne, [ce32709034cca15f482d9cc95ca6e61a],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\extensionCode, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\lib, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\defaults, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\defaults\preferences, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\locale, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\locale\en-US, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\defaults, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\defaults\preferences, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\userCode, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\locale, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\locale\en-US, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.ValueApps.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\valueApps, In Quarantäne, [ce32659b9a66e11f78a6cd9b37cbdc24],
PUP.Optional.ValueApps.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\valueApps\CT3227975, In Quarantäne, [ce32659b9a66e11f78a6cd9b37cbdc24],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\userCode, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\icons, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\icons\actions, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\api, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\popupResource, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dhdepfaagokllfmhfbcfmocaeigmoebo_0, In Quarantäne, [46ba02fe837d49b773583a34b84af60a],
Dateien: 443
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\utilResultsAlpha.exe, In Quarantäne, [926e718fec14a65afce2133bc938946c],
Trojan.Downloader.ED, C:\Users\Lissyy\Desktop\Foto_09_03_2014_IMG_23059.JPEG.zip, In Quarantäne, [4eb2926e4fb1946ce8cd5011748d6a96],
PUP.Optional.Softonic.A, C:\$Recycle.Bin\S-1-5-21-76830181-1066914796-2057996457-1000\$RAQL12I.exe, In Quarantäne, [e21ee61afd03d22ea60b7f9c8f720ef2],
PUP.Optional.Softonic.A, C:\$Recycle.Bin\S-1-5-21-76830181-1066914796-2057996457-1000\$R1W7YX7.exe, In Quarantäne, [b94730d00af6bd439c158299966bda26],
PUP.Optional.CrossRider.A, C:\$Recycle.Bin\S-1-5-21-76830181-1066914796-2057996457-1000\$RUZTN37.1\utils.exe, In Quarantäne, [b34dd9270df3808079690f300df337c9],
PUP.Optional.Conduit.A, C:\$Recycle.Bin\S-1-5-21-76830181-1066914796-2057996457-1000\$RBF13AU\SPTool.dll, In Quarantäne, [fe021be5b848f50b87678b8ef30e4fb1],
PUP.CrossRider.SSK, C:\$Recycle.Bin\S-1-5-21-76830181-1066914796-2057996457-1000\$RLHWDXK\Savings Sidekick.exe, In Quarantäne, [06fa50b0d8289d639c331b8ed42cec14],
PUP.CrossRider.SSK, C:\$Recycle.Bin\S-1-5-21-76830181-1066914796-2057996457-1000\$RLHWDXK\Savings SidekickGui.exe, In Quarantäne, [a35d0bf5cf31b64a349b7633dd2340c0],
PUP.Optional.PCPerformer.A, C:\Windows\System32\roboot64.exe, In Quarantäne, [659b36ca89771fe17b4f66bad42cc23e],
PUP.Optional.SearchProtect.A, C:\Users\Lissyy\AppData\Local\Temp\nsb2543.exe, In Quarantäne, [45bbf60ab54ba55baf50c262f70aab55],
PUP.Optional.SearchProtect.A, C:\Users\Lissyy\AppData\Local\Temp\nsb37DB.exe, In Quarantäne, [996726daed13c83804fba381808125db],
PUP.Optional.SearchProtect.A, C:\Users\Lissyy\AppData\Local\Temp\nsb8371.exe, In Quarantäne, [a060936d20e00df3887752d26899e818],
PUP.Optional.Bandoo, C:\Users\Lissyy\AppData\Local\Temp\1R0hamdK.exe.part, In Quarantäne, [c43c8080a15fef11ed6511f4818030d0],
PUP.Optional.SearchProtect.A, C:\Users\Lissyy\AppData\Local\Temp\nsg2E39.exe, In Quarantäne, [53ad9c64e31dc23ecb347aaa9b6603fd],
PUP.Optional.SearchProtect.A, C:\Users\Lissyy\AppData\Local\Temp\nsg70AA.exe, In Quarantäne, [4bb5f01046bab947788700241ce527d9],
PUP.Optional.SearchProtect.A, C:\Users\Lissyy\AppData\Local\Temp\nsg7AB9.exe, In Quarantäne, [9070b64a8f711ee226d9b2722dd435cb],
PUP.Optional.Conduit, C:\Users\Lissyy\AppData\Local\Temp\ct3227975\ieLogic.exe, In Quarantäne, [f40cca36827e1ae633480827837d3bc5],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\nsqDE53\SpSetup.exe, In Quarantäne, [0ff1ad53b44c6b955c92ce4b837e8878],
PUP.Optional.Bandoo, C:\Users\Lissyy\Downloads\iLividSetup-r400-n-bf(1).exe, In Quarantäne, [07f912ee10f03ec288cab64f7190d927],
PUP.Optional.Bandoo, C:\Users\Lissyy\Downloads\iLividSetup.exe, In Quarantäne, [629e4cb4768af70971e1f60f7c8515eb],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\DownloadGuide\Offers\setup.exe, In Quarantäne, [1ce4ad538b7546ba01bf043b7e822ed2],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dhdepfaagokllfmhfbcfmocaeigmoebo_0.localstorage, In Quarantäne, [f60a6e9217e940c03ee283ec37cb0af6],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dhdepfaagokllfmhfbcfmocaeigmoebo_0.localstorage-journal, In Quarantäne, [9e62c63a5ca440c08d931c5304fe41bf],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-1.job, In Quarantäne, [827e5da3eb1529d78007f3821ce6dc24],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-3.job, In Quarantäne, [c838b7491ce40ff13552bbbaa1619967],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-4.job, In Quarantäne, [9b65b749a15f7a86fc8b492c1ae80df3],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\17d9a556-cfaa-47ee-8b77-7d3a36cd07c4-5.job, In Quarantäne, [9b65bb450ff1ef11e2a5bbba877b5ca4],
PUP.Optional.BProtector.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\bprotector_extensions.sqlite, In Quarantäne, [a8588e729769e21e6b3e82f60df57c84],
PUP.Optional.BProtector.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\bprotector_prefs.js, In Quarantäne, [89770ef24fb123dd8426da9ef80af709],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\conduit.xml, In Quarantäne, [1be5f20e5da33fc12f9738402ad8e21e],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\conduit-search.xml, In Quarantäne, [8f71aa566d938080d3f43b3dd82ab050],
PUP.Optional.ResultsAlpha.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\{f727685b-ed90-4adc-8eec-8234574a91e6}.xpi, In Quarantäne, [68981de3be424cb476ee7108ef13867a],
PUP.Optional.WebSearch.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\Web Search.xml, In Quarantäne, [29d7718f8a76d62a11a286f3d42ea759],
PUP.Optional.SearchCertifiedTB.A, C:\Program Files (x86)\Mozilla Firefox\searchplugins\Web Search.xml, In Quarantäne, [47b9ed133ac6808067a28cf43ec4b34d],
Adware.InstallBrain, C:\ProgramData\IBUpdaterService\repository.xml, In Quarantäne, [0cf47987aa56857b3eac076ca55e7d83],
PUP.Optional.Searchqu.A, C:\Users\Lissyy\AppData\Local\Temp\searchqutoolbar-manifest.xml, In Quarantäne, [a25e12ee48b89f610c8016844eb56e92],
PUP.Optional.Searchqu.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}, In Quarantäne, [b749d42cd32da15f8ffff1a9e0237888],
PUP.Optional.BProtector.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data, In Quarantäne, [f60aed138f71c7399abeb7e6b74ca25e],
PUP.Optional.BProtector.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences, In Quarantäne, [a759ad53dc24f50bf1680d907e8536ca],
PUP.Optional.Datamngr.A, C:\ProgramData\Wincert\win64prop.dll, In Quarantäne, [3dc3f40ce41cd9274670d7c6ad56847c],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\EULA.txt, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\Main\rep\SystemRepository.dat, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings.html, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\style.css, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.css, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.html, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\bubble.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\bubble\defaults.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\gray-bg.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-default.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-onclick.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Apply-Rollover.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-uninstall.jpg, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-uninstall.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg-with-logo.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bg.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgNotif.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettings.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgSettingsDS.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\bgUninstall.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnBlue.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnClose.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\btnSilver.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\button-bg.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_checked.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\checkbox_def.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-def.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\close-win-over-click.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-def.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez-selected.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\hez.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\icon-win.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\info-icon.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-rollover.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\menu-selected.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-def.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button-selected.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\radio-button2.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\Settings-icon.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\text-field.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\v.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\Images\x.png, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\defaults.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\dialogUtils.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\json2.min.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\main.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\libs\SPDialogAPI.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\defaults.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.css, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.html, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protection\protection.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\defaults.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.css, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.html, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS\protectionDS.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\defaults.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.css, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.html, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\settings\settings.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\defaults.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.css, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.html, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.SearchProtect.A, C:\Program Files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.js, In Quarantäne, [43bd60a0ef11aa56074a792b0bf80af6],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\ResultsAlpha.ico, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\0, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\7za.exe, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\ResultsAlphaUninstall.exe, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\updateResultsAlpha.InstallState, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\7za.exe, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\BrowserAdapterS.7z, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\FilterApp_C64.exe, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\ResultsAlpha.BrowserAdapter.exe, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\ResultsAlphaBAApp.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\sqlite3.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\utilResultsAlpha.InstallState, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\plugins\ResultsAlpha.Bromon.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\plugins\ResultsAlpha.BrowserAdapterS.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\plugins\ResultsAlpha.CompatibilityChecker.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\plugins\ResultsAlpha.FFUpdate.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\plugins\ResultsAlpha.IEUpdate.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.ResultsAlpha.A, C:\Program Files (x86)\ResultsAlpha\bin\plugins\ResultsAlpha.PurBrowseG.dll, In Quarantäne, [5ea2827e57a905fb74d8bdec58abf20e],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\datamngr.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\DnsBHO.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\installhelper.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\manifest.json, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\OurLocalPage.html, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\new-tab.html, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\css\new-tab.css, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_amazon.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_ebay.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_facebook.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_fantastigames.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_ftalk.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_youtube.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\IDR_WEBSTORE_ICON.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib\analytics.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib\constant.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib\default-config.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib\jquery.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib\localStorage.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib\new-tab.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\ChromeExtension\lib\preferences.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\chrome.manifest, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\chrome.manifest.alt, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\install.rdf, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlp.xpt, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF10.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF11.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF12.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF13.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF14.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF15.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF16.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF17.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF3.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF4.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF5.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF6.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF7.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF8.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF9.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\DataMngr.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\DnsBHO.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\Error404BHO.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\NewTabBHO.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\overlay.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\overlay.xul, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\RelatedSearch.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\RequestPreserver.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\SearchBHO.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\SettingManager.js, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\Settings.xml, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\FirefoxExtension\content\Settings.xml.alt, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Datamngr.A, C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\DnsBHO.dll, In Quarantäne, [12eec13f8d7358a80bb183dea85a5da3],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227975\CT3227975.xpi, In Quarantäne, [77890df37789966a243cd38f05fd45bb],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227975\ffLogic.exe, In Quarantäne, [77890df37789966a243cd38f05fd45bb],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227975\statisticsStub.exe, In Quarantäne, [77890df37789966a243cd38f05fd45bb],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227975\version.txt, In Quarantäne, [77890df37789966a243cd38f05fd45bb],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227975\xpi\install.rdf, In Quarantäne, [77890df37789966a243cd38f05fd45bb],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Temp\ct3227982\conduitStatistics.csf, In Quarantäne, [867a0af6619fb94797c922406e94926e],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\background.html, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\background.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\crossriderManifest.json, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\extension.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\manifest.json, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\popup.html, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\icon128.png, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\icon16.png, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\icon48.png, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\actions\icon1.png, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\notifications\icon1.png, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\icons\notifications\icon48.png, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\background.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\api\chrome.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\api\cookie.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\api\message.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\api\push.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib\app_api.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib\async_api.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib\bg_app_api.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib\cookie_store.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib\data_store.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib\faye-browser-min.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo\1.18.9_0\js\lib\util.js, In Quarantäne, [22de38c807f99a660f53174ee61c58a8],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome.manifest, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\install.rdf, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\background.html, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\browser.xul, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\crossrider.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\crossriderapi.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\CrossriderEXT.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\dialog.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\options.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\options.xul, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\search_dialog.xul, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\update.html, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\extensionCode\backgroundCode.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\extensionCode\pageCode.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\chrome\content\lib\reports.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\defaults\preferences\prefs.js, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\locale\en-US\translations.dtd, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\button1.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\button2.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\button3.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\button4.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\button5.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\crossrider_statusbar.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\icon128.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\icon16.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\icon24.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\icon48.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\panelarrow-up.png, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\popup.css, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\popup.html, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\popup_binding.xml, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\skin.css, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossFire.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\crossriderapp5060@crossrider.com\skin\update.css, In Quarantäne, [b34dea1615ebe020ad0e0d5a9d65a35d],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome.manifest, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\install.rdf, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\background.html, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\baseObject.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\browser.xul, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\dialog.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\ffCoreFilesIndex.txt, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\main.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\options.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\options.xul, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\platformVersion.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\search_dialog.xul, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\asyncDB.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\background.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\browserAction.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\contextMenu.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\dbManager.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\dom_bg.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\fileManager.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\firefox.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\firefoxNotifications.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\firefoxOmnibox.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\message.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\pageAction.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\request.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\tabs.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\webRequest.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\api\windowsMessagingHandler.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\addressBarChangeObserver.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\console.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\consts.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\delegate.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\extensionDataStore.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\folderIOWrapper.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\httpObserver.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\IDBWrapper.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\installer.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\logFile.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\prefs.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\progressListenerObserver.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\registry.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\reloadObserver.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\reports.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\requestObject.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\searchSettings.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\uninstallObserver.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\updateManager.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\utils.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\chrome\content\core\xhr.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\defaults\preferences\prefs.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\manifest.xml, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins.json, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\195.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\1.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\102.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\103.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\104.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\119.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\123.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\13.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\14.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\155.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\16.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\17.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\177.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\178.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\179.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\180.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\182.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\183.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\184.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\190.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\191.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\207.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\21.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\22.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\220.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\221.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\223.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\231.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\232.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\246.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\28.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\4.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\47.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\64.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\7.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\72.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\78.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\9.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\91.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\93.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\plugins\98.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\userCode\background.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\extensionData\userCode\extension.js, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\locale\en-US\translations.dtd, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\button1.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\button2.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\button3.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\button4.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\button5.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\crossrider_statusbar.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\icon128.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\icon16.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\icon24.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\icon48.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\panelarrow-up.png, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\popup.html, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\skin.css, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com\skin\update.css, In Quarantäne, [827eb24e39c742be922aff685ba7d62a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\background.html, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\chromeCoreFilesIndex.txt, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\crossriderManifest.json, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\manifest.json, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\popup.html, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\manifest.xml, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins.json, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\195.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\1.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\102.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\103.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\104.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\119.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\123.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\13.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\14.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\155.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\17.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\177.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\178.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\179.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\180.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\182.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\183.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\184.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\19.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\190.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\191.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\207.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\21.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\22.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\220.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\221.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\223.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\231.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\232.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\246.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\28.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\4.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\47.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\64.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\7.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\72.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\78.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\80.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\9.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\91.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\93.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\plugins\97.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\userCode\background.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\extensionData\userCode\extension.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\icons\icon128.png, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\icons\icon16.png, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\icons\icon48.png, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\icons\actions\1.png, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\background.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\main.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\platformVersion.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\api\chrome.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\api\cookie.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\api\message.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\api\monitor.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\api\pageAction.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\api\pageActionBG.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\app_api.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\bg_app_api.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\consts.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\cookie_store.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\crossriderAPI.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\delegate.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\events.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\extensionDataStore.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\installer.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\logFile.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\logging.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\onBGDocumentLoad.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\reports.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\storageWrapper.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\updateManager.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\util.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\xhr.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\popupResource\newPopup.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaipilfmheplbcghignccoiiebekkdhe\1.26.36_0\js\lib\popupResource\popup.js, In Quarantäne, [10f002feb64ad42c069bf078d32fa759],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dhdepfaagokllfmhfbcfmocaeigmoebo_0\3, In Quarantäne, [46ba02fe837d49b773583a34b84af60a],
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dhdepfaagokllfmhfbcfmocaeigmoebo_0\4, In Quarantäne, [46ba02fe837d49b773583a34b84af60a],
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Preferences, Gut: (), Schlecht: ( "homepage" : "hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV=",), Ersetzt,[0cf45da345bbac541da32733699bdf21]
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Preferences, Gut: (), Schlecht: ( "search_url" : "hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=58&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&q={searchTerms}&SSPV=",), Ersetzt,[c23e0af6ed13ee1287972b30db29966a]
PUP.Optional.CrossRider.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.crossrider.bic", "1456a000fbf0a7dd4f7f933ed4bb1504");), Ersetzt,[0cf457a901ff3fc18ca2cd8d27ddfb05]
PUP.Optional.Conduit.A, C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV=");), Ersetzt,[ee123ec29c64728e7bd85307669e17e9]
Physische Sektoren: 0
(No malicious items detected)
(end)
|
|
26.04.2014, 12:50
| #9 |
| | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei Firefox adwcleaner auch erledigt: Code:
ATTFilter # AdwCleaner v3.202 - Bericht erstellt am 25/04/2014 um 18:02:07
# Aktualisiert 23/04/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Lissyy - LISSY
# Gestartet von : C:\Users\Lissyy\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
[#] Dienst Gelöscht : bupService
[#] Dienst Gelöscht : Sidekick Manager
Dienst Gelöscht : wStLibG64
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Sidekick Manager
Ordner Gelöscht : C:\ProgramData\wincert
Ordner Gelöscht : C:\Program Files (x86)\Conduit
Ordner Gelöscht : C:\Program Files (x86)\Red Sky
Ordner Gelöscht : C:\Program Files (x86)\Search Results Toolbar
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\DownloadGuide
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\DownTango
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\Ilivid Player
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\iLivid
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\PackageAware
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\SearchProtect
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\Temp\AskSearch
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\DataMngr
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\dvdvideosofttoolbar
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\ilividtoolbarguid
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\searchquband
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\Searchqutoolbar
Ordner Gelöscht : C:\Users\Lissyy\AppData\LocalLow\SimplyTech
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\BupSystem
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\PerformerSoft
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\dvdvideosofttoolbar
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\ilividtoolbarguid
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Smartbar
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\ValueApps
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\CT3227975
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Ordner Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\Extensions\{cdf97ee2-ded0-4369-835e-99dd08225fa5}
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Ordner Gelöscht : C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Lissyy\AppData\Local\Temp\Uninstall.exe
Datei Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\bProtector_extensions.rdf
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Datei Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\bProtect.xml
Datei Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\searchplugins\Search_Results.xml
Datei Gelöscht : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\user.js
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [{B64982B1-D112-42B5-B1E4-D3867C4533F8}]
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\conduit.com
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iLividIEHelper.DNSGuard.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Savings Sidekick_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Savings Sidekick_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Schlüssel Gelöscht : HKCU\Software\53558ad8e238e517
Schlüssel Gelöscht : HKLM\SOFTWARE\53558ad8e238e517
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3227975
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_express-burn_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_express-burn_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_free-youtube-to-mp3-converter_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_free-youtube-to-mp3-converter_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_mahjong-2000-luxusausgabe_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_mahjong-2000-luxusausgabe_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_r-studio_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_r-studio_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CD8812D4-E5B8-41C6-94D4-59872A484BF1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CD8812D4-E5B8-41C6-94D4-59872A484BF1}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD8812D4-E5B8-41C6-94D4-59872A484BF1}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CD8812D4-E5B8-41C6-94D4-59872A484BF1}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CD8812D4-E5B8-41C6-94D4-59872A484BF1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B9C7CE32-DA91-43C2-B7E9-0E9AAFC675CD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CD8812D4-E5B8-41C6-94D4-59872A484BF1}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKCU\Software\APN DTX
Schlüssel Gelöscht : HKCU\Software\AVG Secure Search
Schlüssel Gelöscht : HKCU\Software\bProtector
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\Cr_Installer
Schlüssel Gelöscht : HKCU\Software\IGearSettings
Schlüssel Gelöscht : HKCU\Software\ilivid
Schlüssel Gelöscht : HKCU\Software\installedbrowserextensions
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\searchqutoolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\simplytech
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKLM\Software\AVG Secure Search
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\iLividSRTB
Schlüssel Gelöscht : HKLM\Software\installedbrowserextensions
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DataMngr
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\installedbrowserextensions
***** [ Browser ] *****
-\\ Internet Explorer v9.0.8112.16545
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Start Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
-\\ Mozilla Firefox v28.0 (de)
[ Datei : C:\Users\Lissyy\AppData\Roaming\Mozilla\Firefox\Profiles\1q7dbfeu.default\prefs.js ]
Zeile gelöscht : user_pref("CT3227975.FirstTime", "true");
Zeile gelöscht : user_pref("CT3227975.FirstTimeFF3", "true");
Zeile gelöscht : user_pref("CT3227975.homepageuserchanged", true);
Zeile gelöscht : user_pref("CT3227975.isCheckedStartAsHidden", true);
Zeile gelöscht : user_pref("CT3227975.settingsINI", true);
Zeile gelöscht : user_pref("CT3227975.smartbar.CTID", "CT3227975");
Zeile gelöscht : user_pref("CT3227975.smartbar.Uninstall", "0");
Zeile gelöscht : user_pref("CT3227975.smartbar.toolbarName", "appbario2 ");
Zeile gelöscht : user_pref("CT3227975_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1398440263887,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Zeile gelöscht : user_pref("browser.search.defaultenginename", "Conduit Search");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Conduit Search");
Zeile gelöscht : user_pref("extensions.aa54e453c130a47699333c5ec2aa914c59bd7cc899c7c44e9a03b042b92d363f0com52916.52916.cookie.previous_page.value", "%22hxxp%3A//search.conduit.com/%3Fgd%3D%26ctid%3DCT3322611%26octid%3[...]
Zeile gelöscht : user_pref("valueApps.CT3227975.mam_gk_currentVersion", "312E31332E302E3137");
Zeile gelöscht : user_pref("valueApps.CT3227975.mam_gk_currentVersion.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3227975.mam_gk_migrated_from_ls", "31");
Zeile gelöscht : user_pref("valueApps.CT3227975.mam_gk_migrated_from_ls.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3227975.mam_gk_userBornDate", "4E2F41");
Zeile gelöscht : user_pref("valueApps.CT3227975.mam_gk_userBornDate.storedInFile", false);
-\\ Google Chrome v34.0.1847.116
[ Datei : C:\Users\Lissyy\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gelöscht [Search Provider] : hxxp://search.certified-toolbar.com?si=41460&bs=true&tid=3228&q={searchTerms}
Gelöscht [Search Provider] : hxxp://dts.search-results.com/sr?src=crb&gct=ds&appid=394&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=4626264203344055&q={searchTerms}
Gelöscht [Search Provider] : hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=58&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&q={searchTerms}&SSPV=
Gelöscht [Startup_urls] : hxxp://search.conduit.com/?gd=&ctid=CT3322611&octid=EB_ORIGINAL_CTID&ISID=MA207A6D4-6BBB-48CE-9382-229AD98B022A&SearchSource=55&CUI=&UM=5&UP=SP12848845-6602-40EF-BC74-F1D241FFE5AD&SSPV=
Gelöscht [Extension] : dhdepfaagokllfmhfbcfmocaeigmoebo
Gelöscht [Extension] : jmfkcklnlgedgbglfkkgedjfmejoahla
Gelöscht [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof
*************************
AdwCleaner[R0].txt - [19871 octets] - [25/04/2014 17:37:01]
AdwCleaner[R1].txt - [19991 octets] - [25/04/2014 17:59:40]
AdwCleaner[S0].txt - [314 octets] - [25/04/2014 17:59:02]
AdwCleaner[S1].txt - [18258 octets] - [25/04/2014 18:02:07]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [18319 octets] ##########
|
|
26.04.2014, 18:35
| #10 |
| /// the machine /// TB-Ausbilder | Troj/ Plus-HD-9.1 / lauter spam und pop ups bei FirefoxESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
Linear-Darstellung
