Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren

Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren


Plagegeister aller Art und deren Bekämpfung: Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 15.05.2014, 18:19   #1
Cati
 
Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren - Standard

Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren


Hallo,

ich habe seit heute morgen Probleme mit meinem Laptop. Ich wollte mir eine Erweiterung für Chrome installieren und auf einmal wurde mir von meinem Norton 360 Virusprogramm eine Bedrohung durch injects.js angezeigt. Seitdem öffnete mein Browser wahllos Fenster und auch meine Browserstartseite war jedes Mal eine andere. Ich habe mir dann Malwarebytes heruntergeladen und habe es durchlaufen lassen. Dabei wurden über 200 Viren gefunden. Sowas ist mir noch nie passiert
Da ich mich mit Computern & Co. überhaupt nicht auskenne, brauche ich nun Hilfe. Ich bin nämlich echt etwas verzweifelt und weiß nicht so recht, ob und wie man dieses Problem wieder beheben kann...Vielen Dank euch schon einmal!!!

Ich habe hier mal das logfil von Malwarebytes kopiert:
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Scan Date: 15.05.2014
Scan Time: 18:53:43
Logfile: virenscan.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.05.15.07
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Caterina Quast

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 335952
Time Elapsed: 40 min, 32 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 4
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\PluginService.exe, 1900, , [674c1b36a3d8b4827a4288cde8198f71]
Backdoor.Bot.ED, C:\Users\Caterina Quast\AppData\Local\fst_de_16\upfst_de_16.exe, 4508, , [169d10412754b97d4d9f0a6e02ff44bc]
Adware.Tuto4PC, C:\Program Files (x86)\fst_de_16\fst_de_16.exe, 3896, , [5162ba979edd0b2bae5b6b9dbf427d83]
PUP.Optional.FirstSeenToday.A, C:\Program Files (x86)\fst_de_16\fst_de_16.exe, 3896, , [13a0b1a083f8c670bec9bec8be442dd3]

Modules: 1
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\DpInterface32.dll, , [2e855001bcbfe551012eabecd42e6b95], 

Registry Keys: 80
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginService, , [674c1b36a3d8b4827a4288cde8198f71], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\APPID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}, , [cce77fd2f98291a5c43d95c839c9e719], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}, , [cce77fd2f98291a5c43d95c839c9e719], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3004627E-F8E9-4E8B-909D-316753CBA923}, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\mysearchdial.mysearchdialdskBnd.1, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\mysearchdial.mysearchdialdskBnd, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\mysearchdial.mysearchdialdskBnd, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\mysearchdial.mysearchdialdskBnd.1, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3004627E-F8E9-4E8B-909D-316753CBA923}, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3004627E-F8E9-4E8B-909D-316753CBA923}, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [6a491938a8d3d363fd0c38f01be7ea16], 
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [6a491938a8d3d363fd0c38f01be7ea16], 
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [6a491938a8d3d363fd0c38f01be7ea16], 
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [6a491938a8d3d363fd0c38f01be7ea16], 
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [6a491938a8d3d363fd0c38f01be7ea16], 
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [6a491938a8d3d363fd0c38f01be7ea16], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{C292AD0A-C11F-479B-B8DB-743E72D283B0}, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{C292AD0A-C11F-479B-B8DB-743E72D283B0}, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\esrv.mysearchdialESrvc.1, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\esrv.mysearchdialESrvc, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.mysearchdialESrvc, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.mysearchdialESrvc.1, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\mysearchdial.mysearchdialHlpr.1, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\mysearchdial.mysearchdialHlpr, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\mysearchdial.mysearchdialHlpr, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\mysearchdial.mysearchdialHlpr.1, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{FBC322D5-407E-4854-8C0B-555B951FD8E3}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0400EBCA-042C-4000-AA89-9713FBEDB671}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0BD19251-4B4B-4B94-AB16-617106245BB7}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{44B29DDD-CF7A-454A-A275-A322A398D93F}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B2DB115C-8278-4947-9A07-57B53D1C4215}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B97FC455-DB33-431D-84DB-6F1514110BD5}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E72E9312-0367-4216-BFC7-21485FA8390B}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0400EBCA-042C-4000-AA89-9713FBEDB671}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0BD19251-4B4B-4B94-AB16-617106245BB7}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{44B29DDD-CF7A-454A-A275-A322A398D93F}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B2DB115C-8278-4947-9A07-57B53D1C4215}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B97FC455-DB33-431D-84DB-6F1514110BD5}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{E72E9312-0367-4216-BFC7-21485FA8390B}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{FBC322D5-407E-4854-8C0B-555B951FD8E3}, , [4172d978473487afce99e07d5ca6c33d], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{219046AE-358F-4CF1-B1FD-2B4DE83642A8}, , [298a31201a61a88eb008401c08fa4db3], 
Adware.EoRezo, HKLM\SOFTWARE\WOW6432NODE\FreeSoftToday, , [9e15ada45f1c8caaade3269036cd3bc5], 
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\webssearchesSoftware, , [edc6074a5f1c3afc239027661ae86f91], 
PUP.Optional.QuickStart.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pelmeidfhdlhlbjimpabfcbnnojbboma, , [fbb80e43b8c369cdd49b2a6430d27b85], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLCORE\mysearchdial, , [9b1891c0304b3303538c951a26dd41bf], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\mysearchdial, , [dad996bb3942a88eaae13081778c639d], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\mysearchdial.com, , [456e4c056e0df73f0488e3cead56b34d], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, , [d7dc1d34c8b31b1baac42a70e51d1de3], 
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\mysearchdial, , [7340e56c8cef06300b3a4d6843c07987], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, , [1a99e66b5724e94d7e0919972ed5c53b], 
PUP.Optional.Qone8, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [3f74222f94e70b2b4ffc8e2e29da28d8], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C358B3D0-B911-41E3-A276-E7D43A6BA56D}, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\mysearchdial.mysearchdialappCore.1, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\mysearchdial.mysearchdialappCore, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\mysearchdial.mysearchdialappCore, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\mysearchdial.mysearchdialappCore.1, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4ED063C9-4A0B-4B44-A9DC-23AFF424A0D3}, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\CLASSES\m, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\m, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\mysearchdial, , [c3f0d37e72091a1c1f2a571a9e64f709], 
Adware.EoRezo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\fst_de_16_is1, , [7f34d180334885b1b3ba1b5efa0850b0], 

Registry Values: 7
Backdoor.Bot.ED, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|upfst_de_16.exe, C:\Users\Caterina Quast\AppData\Local\fst_de_16\upfst_de_16.exe -runonce, , [169d10412754b97d4d9f0a6e02ff44bc]
Adware.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_de_16, "C:\Program Files (x86)\fst_de_16\fst_de_16.exe", , [5162ba979edd0b2bae5b6b9dbf427d83]
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{3004627E-F8E9-4E8B-909D-316753CBA923}, mysearchdial Toolbar, , [7340fb565724fb3bbdfaa6b616ecab55]
PUP.Optional.MySearchDial.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{3004627E-F8E9-4E8B-909D-316753CBA923}, , [258ec68b95e686b0dcdb0f4d669ce719], 
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_de_16, "C:\Program Files (x86)\fst_de_16\fst_de_16.exe", , [13a0b1a083f8c670bec9bec8be442dd3]
PUP.Optional.QuickStart.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|quick_start@gmail.com, C:\Users\Caterina Quast\AppData\Roaming\Mozilla\Firefox\Profiles\vr7yneex.default\extensions\quick_start@gmail.com, , [b8fb71e0a7d43204234d6b2355ada35d]
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0H1L1J1L1S1R1N, , [1a99e66b5724e94d7e0919972ed5c53b]

Registry Data: 15
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[f3c03a178fecf34371cd2d122ed658a8]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX&q={searchTerms}),,[aa0979d828532511c96c47f824e0936d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[a70c77da1c5f0531003366d9aa5a926e]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[c3f0074a4437cf6742f5e35c9b697789]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[a40f6de4d1aa53e36fcfe758709456aa]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX&q={searchTerms}),,[3182c091f388b5816bca51ee7193fa06]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[2f841938d9a22610be7586b9aa5aef11]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[e2d11f32710a02345ddaeb54cc38f907]
PUP.Optional.Snapdo, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (hxxp://www.google.com), Bad: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[5e55440d453641f520b61038bf4553ad]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[8033e0714f2c280e70c4be81af5553ad]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1400129093&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX),,[298aaaa7b7c4e254f4440c339371916f]
PUP.Optional.Snapdo, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Bar, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (hxxp://www.google.com), Bad: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[397aa9a8bfbcc076c4117aceef15916f]
PUP.Optional.Snapdo, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|Default_Search_URL, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (hxxp://www.google.com), Bad: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[bff475dcef8c9b9b5d7b90b8040046ba]
PUP.Optional.Snapdo, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (hxxp://www.google.com), Bad: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[b8fb1c35a3d87eb8bf1a85c357add927]
PUP.Optional.SnapDo.A, HKU\S-1-5-21-1313419136-1395772497-2831837863-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURL|Default, hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}, Good: (www.google.com), Bad: (hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYBCH&co=DE&userid=c9db3c22-be7f-9bd5-7590-b6931ffc3b1a&searchtype=ds&q={searchTerms}&installDate={installDate}&barcodeid={barcodeID}&um={UM}),,[446f6be691eaa3938de43e01976d33cd]

Folders: 44
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\weather, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\en-US, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-419, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-ES, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-BE, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CA, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CH, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-FR, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-LU, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-CH, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-IT, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pl, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt-BR, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru-MO, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\tr-TR, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\vi-VI, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-CN, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-TW, , [2e855001bcbfe551012eabecd42e6b95], 
Rogue.Multiple, C:\ProgramData\374311380, , [e6cddd74413a1b1b311b3b2512f09a66], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial\icons_2.18.2.0, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial\UpdateProc, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.OpenCandy, C:\Users\Caterina Quast\AppData\Roaming\OpenCandy, , [7f347ad7671470c6777ba1cedd25a957], 
PUP.Optional.OpenCandy, C:\Users\Caterina Quast\AppData\Roaming\OpenCandy\133A3468EA3D41AF8AE8558E86BE79FD, , [7f347ad7671470c6777ba1cedd25a957], 
Adware.EoRezo, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeSoftToday, , [e3d09ab7116af244fa7e3a369969768a], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\bh, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService, , [5261440d0d6e40f6af05333faa581de3], 
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update, , [5261440d0d6e40f6af05333faa581de3], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\Mozilla\Firefox\Profiles\vr7yneex.default\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}, , [b4ff2e2399e2b97d2f99571ef70b07f9], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\Mozilla\Firefox\Profiles\vr7yneex.default\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}\_locales, , [b4ff2e2399e2b97d2f99571ef70b07f9], 
PUP.Optional.WebsSearches.A, C:\Users\Caterina Quast\AppData\Roaming\webssearches, , [4c676fe20d6e23135b65c3b32cd6f10f], 
Adware.EoRezo, C:\Users\Caterina Quast\AppData\Local\fst_de_16, , [e7ccb29fa1da78be12587dfc3cc66b95], 
Adware.EoRezo, C:\Users\Caterina Quast\AppData\Local\fst_de_16\fst_de_16, , [e7ccb29fa1da78be12587dfc3cc66b95], 
Adware.EoRezo, C:\Users\Caterina Quast\AppData\Local\fst_de_16\fst_de_16\1.10, , [e7ccb29fa1da78be12587dfc3cc66b95], 
Adware.EoRezo, C:\Program Files (x86)\fst_de_16, , [7f34d180334885b1b3ba1b5efa0850b0], 

Files: 130
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\PluginService.exe, , [674c1b36a3d8b4827a4288cde8198f71], 
Backdoor.Bot.ED, C:\Users\Caterina Quast\AppData\Local\fst_de_16\upfst_de_16.exe, , [169d10412754b97d4d9f0a6e02ff44bc], 
Adware.Tuto4PC, C:\Program Files (x86)\fst_de_16\fst_de_16.exe, , [5162ba979edd0b2bae5b6b9dbf427d83], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\mysearchdialTlbr.dll, , [7340fb565724fb3bbdfaa6b616ecab55], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SupTab.dll, , [6a491938a8d3d363fd0c38f01be7ea16], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\mysearchdialsrv.exe, , [892a59f8cead0d2939c9fe5fe51d42be], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\bh\mysearchdial.dll, , [92217dd4007b74c29e18a0bc808253ad], 
PUP.Optional.SupTab.A, C:\Users\Caterina Quast\AppData\Roaming\SupTab\SupTab.dll, , [ab08173a6c0fe551f459082de61a9e62], 
PUP.Optional.OptimumInstaller.A, C:\Users\Caterina Quast\Downloads\Player-Chrome.exe, , [9a1963eecdae2f07c54e95b806fbd52b], 
PUP.Optional.Superfish.A, C:\Users\Caterina Quast\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, , [0da6420f39422511b583018031d1bc44], 
PUP.Optional.Superfish.A, C:\Users\Caterina Quast\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, , [00b3dc755229fa3cfe3a87fae31f5fa1], 
PUP.Optional.QuickStart.A, C:\Users\Caterina Quast\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx, , [0ea5dc752a516cca85044a42c83a768a], 
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\searchplugins\Mysearchdial.xml, , [6c47e071d3a838fe09fcb8d80df558a8], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\install.data, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\DpInterface32.dll, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\DpInterface64.dll, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\DpInterfacef32.dll, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\ient.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\RSHP.exe, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SearchProtect32.dll, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SearchProtect64.dll, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SpAPPSv32.dll, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SpAPPSv64.dll, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\uninstall.exe, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\WebDataJs, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\data.html, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\indexIE.html, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\indexIE8.html, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\main.css, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\ver.txt, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\arrow.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\default_add_logo.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\default_add_logo_hover.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\default_logo.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\googlelogo.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\googlelogo2.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\google_trends.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\icon128.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\icon16.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\icon48.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\loading.gif, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\logo32.ico, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\weather\0.png, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\common.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\ga.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\ie8.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\jquery-1.11.0.min.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\jquery.autocomplete.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\js.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\library.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\xagainit.js, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\en-US\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-419\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-ES\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-BE\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CA\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CH\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-FR\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-LU\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-CH\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-IT\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pl\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt-BR\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru-MO\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\tr-TR\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\vi-VI\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-CN\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-TW\messages.json, , [2e855001bcbfe551012eabecd42e6b95], 
PUP.Optional.FunMoods.A, C:\Users\Caterina Quast\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage, , [4370fb56f8834beb486e6b4e3ac913ed], 
PUP.Optional.FirstSeenToday.A, C:\Program Files (x86)\fst_de_16\fst_de_16.exe, , [13a0b1a083f8c670bec9bec8be442dd3], 
Rogue.Multiple, C:\ProgramData\374311380\BITA987.tmp, , [e6cddd74413a1b1b311b3b2512f09a66], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial\UpdateProc\config.dat, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial\UpdateProc\info.dat, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial\UpdateProc\STTL.DAT, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial\UpdateProc\TTL.DAT, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.MySearchDial.A, C:\Users\Caterina Quast\AppData\Roaming\mysearchdial\UpdateProc\UpdateTask.exe, , [496aff5244374de9b82c83ec61a1d828], 
PUP.Optional.OpenCandy, C:\Users\Caterina Quast\AppData\Roaming\OpenCandy\133A3468EA3D41AF8AE8558E86BE79FD\Installer.exe, , [7f347ad7671470c6777ba1cedd25a957], 
Adware.EoRezo, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeSoftToday\Freesofttoday.lnk, , [e3d09ab7116af244fa7e3a369969768a], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\FavIcon.ico, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\mysearchdialApp.dll, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\mysearchdialEng.dll, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\Sqlite3.dll, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\uninst.dat, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.MySearchDial.A, C:\Program Files (x86)\Mysearchdial\1.8.29.0\uninstall.exe, , [c3f0d37e72091a1c1f2a571a9e64f709], 
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginService\update\conf, , [5261440d0d6e40f6af05333faa581de3], 
Adware.EoRezo, C:\Users\Caterina Quast\AppData\Local\fst_de_16\upfst_de_16.cyp, , [e7ccb29fa1da78be12587dfc3cc66b95], 
Adware.EoRezo, C:\Users\Caterina Quast\AppData\Local\fst_de_16\user_profil.cyp, , [e7ccb29fa1da78be12587dfc3cc66b95], 
Adware.EoRezo, C:\Users\Caterina Quast\AppData\Local\fst_de_16\fst_de_16\1.10\cnf.cyl, , [e7ccb29fa1da78be12587dfc3cc66b95], 
Adware.EoRezo, C:\Users\Caterina Quast\AppData\Local\fst_de_16\fst_de_16\1.10\eorezo.cyl, , [e7ccb29fa1da78be12587dfc3cc66b95], 
Adware.EoRezo, C:\Program Files (x86)\fst_de_16\freeSoftToday_widget.exe, , [7f34d180334885b1b3ba1b5efa0850b0], 
Adware.EoRezo, C:\Program Files (x86)\fst_de_16\predm.exe, , [7f34d180334885b1b3ba1b5efa0850b0], 
Adware.EoRezo, C:\Program Files (x86)\fst_de_16\unins000.dat, , [7f34d180334885b1b3ba1b5efa0850b0], 
Adware.EoRezo, C:\Program Files (x86)\fst_de_16\unins000.exe, , [7f34d180334885b1b3ba1b5efa0850b0], 
Adware.EoRezo, C:\Program Files (x86)\fst_de_16\unins000.msg, , [7f34d180334885b1b3ba1b5efa0850b0], 
PUP.Optional.WebsSearches.A, C:\Users\Caterina Quast\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (      "startup_urls": [ "hxxp://istart.webssearches.com/?type=hppp&ts=1400168554&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX" ],), ,[8d26143dbcbfbd792521d69fd72d6997]
PUP.Optional.WebsSearches.A, C:\Users\Caterina Quast\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (   "homepage": "hxxp://istart.webssearches.com/?type=hppp&ts=1400168554&from=tugs&uid=HitachiXHTS547575A9E384_J2540054C8DPREC8DPREX",), ,[466db39e681365d169de6d080bf90000]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (   "homepage": "hxxp://start.mysearchdial.com/?f=1&a=dvd_14_13_ch&cd=2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q&cr=46250457&ir=",), ,[efc4a5aca1da063065ed3541c63e629e]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (      "startup_urls": [ "hxxp://start.mysearchdial.com/?f=1&a=dvd_14_13_ch&cd=2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q&cr=46250457&ir=" ],), ,[ddd6d37e6912a78f9be9f58117ed817f]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\prefs.js, Good: (), Bad: (user_pref("browser.startup.homepage", "hxxp://start.mysearchdial.com/?f=1&a=dvd_14_13_ch&cd=2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q&cr=46250457&ir=");), ,[93209eb3a0dbe551c328da9bd23241bf]
PUP.Optional.MySearch.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.irmysearch.aflt", "dvd_14_13_ch");), ,[fcb7d9789edd4de9f4b9c5b00cf87888]
PUP.Optional.MySearch.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.irmysearch.instlRef", "140305_a");), ,[b300bc95a6d538fea706a8cd7e8629d7]
PUP.Optional.MySearch.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.irmysearch.cr", "46250457");), ,[6f44f35e6615b6801e8faacbb3515fa1]
PUP.Optional.MySearch.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q");), ,[2192252caad179bd109d6d08cc38da26]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.hmpg", true);), ,[f2c1fd54007b1d191d99bbbaba4abf41]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=dvd_14_13_ch&cd=2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q&cr=46250457&ir=");), ,[793a4e038cefdc5acde95421c83cb44c]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.dfltSrch", true);), ,[81322130166504324c6ad5a022e20bf5]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");), ,[793a2f22fc7f1c1a387ebcb919eb0df3]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.dnsErr", true);), ,[842ffb56fb8051e57541bcb9fd07f10f]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial_i.newTab", false);), ,[407353fee299af876e48611412f259a7]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=dvd_14_13_ch&cd=2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q&cr=46250457&ir=");), ,[4a6970e1a1da1224b6004d2838cc40c0]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=dvd_14_13_ch&cd=2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q&cr=46250457&ir=&q=");), ,[9d16420f80fb2d09f6c06213dd27d12f]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.id", "00262DC96E9AB995");), ,[0ba81839621937ff02b4d4a1e321f60a]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.instlDay", "16159");), ,[e9cae66b8eedb87e783edd98c63e35cb]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.vrsn", "1.8.29.0");), ,[347fc78ab6c570c6cde92c490301b050]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.vrsni", "1.8.29.0");), ,[357e0f42631894a2971fa3d226de916f]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.29.015:34:10");), ,[cee5203185f62016feb8f77e5aaa7f81]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");), ,[258e1938d4a76acc783ed2a345bf43bd]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.prdct", "mysearchdial");), ,[199aca87c2b95fd7ebcba1d430d44cb4]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.aflt", "dvd_14_13_ch");), ,[bbf82130e5966ccaeacc6b0a7f85ae52]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial_i.smplGrp", "none");), ,[a2116de436450135d5e1f08561a337c9]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.tlbrId", "base");), ,[e7cc0b46ee8d72c4ab0bc3b212f24eb2]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.instlRef", "140305_a");), ,[e5cec28f1764112512a46c09749006fa]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.dfltLng", "");), ,[c8eb7fd2e7942e08971fe5902ed65ca4]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");), ,[1a99dc754338bc7a15a1a0d5d034817f]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.excTlbr", false);), ,[b3007cd54b306fc706b03d38b94bdd23]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.cr", "46250457");), ,[8e25f75a3942aa8c991db4c113f1e61a]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByCtB0D0CzyyC0Ezy0A0BzyzyyDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCyB0DyC0CtBtAzztGtCtBtAyDtG0AtCyEtDtGtDzz0BtCtGtDyCyEyE0CtDtA0EtCtD0DyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzyyC0DyE0CtC0CtGtD0Ezy0BtG0DtByBtDtG0CyD0C0AtGtA0A0B0AyBzzyDtAyDyEzyyC2Q");), ,[a50eb39e0d6e64d2f9bd99dc82827e82]
PUP.Optional.MySearchDial.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\yfs6yimv.default\user.js, Good: (), Bad: (user_pref("extensions.mysearchdial.AL", 2);), ,[149f6be6f784d2648a2c4c29e81cff01]

Physical Sectors: 0
(No malicious items detected)


(end)

 

Themen zu Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren
adware.eorezo, adware.tuto4pc, backdoor.bot.ed, browserstartseite, iexplore.exe, install.exe, internet explorer, malwarebytes, mobogenie, mobogenie entfernen, preferences, pup.optional.firstseentoday.a, pup.optional.funmoods.a, pup.optional.iepluginservice.a, pup.optional.installcore.a, pup.optional.mysearch.a, pup.optional.mysearchdial.a, pup.optional.opencandy, pup.optional.optimuminstaller.a, pup.optional.qone8, pup.optional.quickstart.a, pup.optional.snapdo, pup.optional.snapdo.a, pup.optional.superfish.a, pup.optional.suptab.a, pup.optional.webssearches.a, rogue.multiple, service.exe


« Trojaner per Fake-Rechnung bekommen | Probleme mit dem Browser > Malware »


Ähnliche Themen: Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren


  1. Malwarebytes zeigt über 20 Probleme an
    Log-Analyse und Auswertung - 18.08.2015 (9)
  2. Chrome öffnet neue Fenster
    Log-Analyse und Auswertung - 13.08.2015 (5)
  3. Bedrohung "SAPE.DwnldSponsor.2" nach vollständigem Systemscan durch Norton 360 entdeckt
    Plagegeister aller Art und deren Bekämpfung - 23.06.2015 (17)
  4. Chrome öffnet sich von alleine und öffnet dann Popup Fenster
    Log-Analyse und Auswertung - 08.03.2015 (11)
  5. Chrome öffnet Ads Fenster automatisch
    Plagegeister aller Art und deren Bekämpfung - 10.02.2015 (26)
  6. Chrome Browser öffnet fenster
    Log-Analyse und Auswertung - 06.01.2015 (33)
  7. Browser (Chrome) öffnet wahllos mehrere Fenster, Ladezeiten sind inakzeptabel, endlose Werbeaddons
    Plagegeister aller Art und deren Bekämpfung - 16.05.2014 (13)
  8. Avast findet Virus und Malwarebytes findet Viren
    Plagegeister aller Art und deren Bekämpfung - 12.03.2014 (7)
  9. Dauernder Absturz von Google Chrome, veranlasst durch Norton
    Plagegeister aller Art und deren Bekämpfung - 08.02.2014 (17)
  10. Malwarebytes zeigt mir über 500 bösartige Objekte.
    Plagegeister aller Art und deren Bekämpfung - 19.08.2013 (17)
  11. Firefox zeigt nur leere Seite / Malwarebytes findet 64 infizierte Objekte
    Plagegeister aller Art und deren Bekämpfung - 09.08.2013 (31)
  12. Chrome öffnet Fenster und PopUps
    Log-Analyse und Auswertung - 10.07.2013 (12)
  13. Malwarebytes findet Trojan.inject - Rechner zeigt aber keine Probleme
    Plagegeister aller Art und deren Bekämpfung - 28.05.2013 (23)
  14. Mc Afee Security Scan zeigt Bedrohung durch Trojaner "Artemis!7A810C195AF5" an
    Plagegeister aller Art und deren Bekämpfung - 11.03.2010 (5)
  15. E-Scan findet Viren; find.bat zeigt nichts an
    Log-Analyse und Auswertung - 27.06.2007 (1)
  16. Norton findet Bedrohung...lässt sich aber nicht löschen-> bitte um Hilfe!!!
    Plagegeister aller Art und deren Bekämpfung - 19.04.2005 (1)
  17. eDcan zeigt an Norton findet nichts
    Plagegeister aller Art und deren Bekämpfung - 24.01.2005 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren - Hallo, ich habe seit heute morgen Probleme mit meinem Laptop. Ich wollte mir eine Erweiterung für Chrome installieren und auf einmal wurde mir von meinem Norton 360 Virusprogramm eine Bedrohung - Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren...
Archiv
Du betrachtest: Chrome öffnet wahllos Fenster, Norton zeigt Bedrohung durch injects.js an, malwarebytes findet über 200 Viren auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131