C:\windows\scorl.trojan.general.exe

schrauber · 15.10.2014, 09:53

Eigentlich müsste man dich zur Strafe formatieren schicken......

Lade Dir bitte von hier

Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
Klicke auf Optionen und wähle als Sprache Deutsch.
Suche im Uninstallerfeld nach den Programmen:

aartemis Browser Protecter

Ashampoo DE Toolbar

Ask Toolbar Updater

BrowseToSave

Codec Pack Packages

Delta toolbar

DesktopWeatherAlerts

DMUninstaller

FilesFrog Update Checker

FLV Player

Free Ride Games Player

FTDownloader

GoforFiles

holasearch toolbar

iMesh

Incredibar Toolbar on IE

Installer

Media Buzz

MyBestOffersToday 014.111

MyPC Backup

OffersWizard Network System Driver (HKLM-x32\...\inethnfd) (Version: 1.0.0.3001 - ) <==== ATTENTION

Plus-HD-2.6

Search Assistant WebSearch 1.74 (HKLM-x32\...\SP_4e24eecb) (Version: - ) <==== ATTENTION

Search Protect

SearchCore for Browsers

Softonic toolbar on IE and Chrome (HKLM-x32\...\Softonic) (Version: 1.8.16.10 - Softonic) <==== ATTENTION

TV Wizard

Uncompressor Packages

Update for Codec Pack

VideoPlayer v2.0.6

Web Assistant 2.0.0.604

Web Protect for Windows

Windows Searchqu Toolbar

Yontoo 1.10.03
Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

pa0000000 · 15.10.2014, 14:12

Ich habe jetzt alles gemacht. Es ist folgendes vorgefallen, asktoolbar geht nicht weg, IMesh gibt's auf meinen Computer nicht, dieses Webassistant und Webprotect gibt's auch nicht.

Den Log von Combofix schick ich gleich im Anschluss.

Viele grüße Pascal (;

Combofix Logfile:

Code:

ATTFilter

ComboFix 14-10-15.01 - Pascal 15.10.2014  14:26:34.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.4078.1983 [GMT 2:00]
ausgeführt von:: j:\download\ComboFix.exe
AV: Computer Schutz *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
SP: Computer Schutz *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
c:\program files (x86)\Common Files\Config\uninstinethnfd.exe
c:\program files (x86)\Common Files\Config\ver.xml
c:\program files (x86)\DealPly
c:\program files (x86)\DealPly\DealPly.crx
c:\program files (x86)\DealPly\DealPlyUpdate.exe
c:\program files (x86)\DealPly\DealPlyUpdate.log
c:\program files (x86)\DealPly\DealPlyUpdateRun.exe
c:\program files (x86)\DealPly\icon.ico
c:\program files (x86)\DealPly\uninst.exe
c:\program files (x86)\HD-Quality-v3V30.09\acd42e4d-df71-4a2e-beba-ac536b327013.dll
c:\program files (x86)\HD-Quality-v3V30.09\fc028392-3db8-48f4-b8b1-5b6a9f8d1dfc.dll
c:\program files (x86)\HQCinema1.9V01.10\391ad2a2-c92b-426a-ba56-7f3b29d7a757.dll
c:\program files (x86)\HQCinema1.9V01.10\3be94935-703d-4a9f-bdf8-bd3f9894f8d0.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr
c:\program files (x86)\Searchqu Toolbar\Datamngr\BrowserConnection.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\css\new-tab.css
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_amazon.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_ebay.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_facebook.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_fantastigames.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_ftalk.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_youtube.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\IDR_WEBSTORE_ICON.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png__
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\new-tab.html
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\analytics.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\constant.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\default-config - Copy.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\default-config.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\jquery.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\localStorage.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\new-tab.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\preferences.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\manifest.json
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\OurLocalPage.html
c:\program files (x86)\Searchqu Toolbar\Datamngr\datamngr.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\datamngrUI.exe
c:\program files (x86)\Searchqu Toolbar\Datamngr\DnsBHO.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\IEBHO.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\installhelper.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\BrowserConnection.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\datamngr.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\datamngrUI.exe
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\DnsBHO.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\IEBHO.dll
c:\program files (x86)\SoftwareUpdater\KeyGen.dll
c:\program files (x86)\Windows Searchqu Toolbar
c:\programdata\374311380
c:\programdata\374311380\BIT2809.tmp
c:\programdata\BrowserDefender
c:\programdata\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bl
c:\programdata\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings
c:\programdata\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\dm
c:\users\Pascal\AppData\Local\lollipop
c:\users\Pascal\AppData\Local\lollipop\Lollipop.exe
c:\users\Pascal\AppData\Local\omesuperv.exe
c:\users\Pascal\AppData\Roaming\.#
c:\users\Pascal\AppData\Roaming\BabMaint.exe
c:\users\Pascal\AppData\Roaming\InetStat\inetstat.exe
c:\users\Pascal\AppData\Roaming\Microsoft\Windows\Recent\Akinator öffnen.url
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome.manifest
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\asyncDB.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\browserAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\contextMenu.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\dbManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\dom_bg.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\fileManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\firefox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\firefoxNotifications.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\firefoxOmnibox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\message.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\pageAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\request.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\tabs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\webRequest.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\background.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\baseObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\browser.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\console.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\consts.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\delegate.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\extensionDataStore.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\folderIOWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\httpObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\IDBWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\installer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\logFile.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\progressListenerObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\registry.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\reloadObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\reports.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\requestObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\searchSettings.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\uninstallObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\updateManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\utils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\xhr.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\dialog.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\main.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\options.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\options.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\search_dialog.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\defaults\preferences\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\manifest.xml
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins.json
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\1_base.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\101_cortica_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\102_dealply_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\103_intext_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\105_corticas_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\108_icm_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\116_ads_only_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\119_similar_web_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\120_luck_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\129_widdit_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\138_getdeal_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\155_ibario_pops_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\17_jQuery.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\170_icm1_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\21_debug.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\22_resources.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\28_initializer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\47_resources_background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\64_appApiMessage.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\7_hooks.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\72_appApiValidation.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\92_superfish_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\98_omniCommands.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\userCode\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\userCode\extension.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\install.rdf
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\locale\en-US\translations.dtd
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button1.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button2.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button3.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button4.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button5.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\crossrider_statusbar.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon128.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon16.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon24.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon48.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\panelarrow-up.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\popup.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\skin.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\update.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome.manifest
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\asyncDB.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\browserAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\contextMenu.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\dbManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\dom_bg.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\fileManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\firefox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\firefoxNotifications.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\firefoxOmnibox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\message.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\pageAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\request.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\tabs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\webRequest.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\background.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\baseObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\browser.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\console.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\consts.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\delegate.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\extensionDataStore.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\folderIOWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\httpObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\IDBWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\installer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\logFile.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\progressListenerObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\registry.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\reloadObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\reports.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\requestObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\searchSettings.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\uninstallObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\updateManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\utils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\xhr.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\dialog.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\main.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\options.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\options.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\search_dialog.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\defaults\preferences\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\manifest.xml
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins.json
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\1_base.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\101_cortica_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\102_dealply_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\103_intext_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\105_corticas_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\107_coupish_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\108_icm_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\116_ads_only_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\119_similar_web_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\120_luck_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\129_widdit_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\138_getdeal_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\155_ibario_pops_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\17_jQuery.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\170_icm1_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\21_debug.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\22_resources.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\28_initializer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\47_resources_background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\64_appApiMessage.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\7_hooks.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\72_appApiValidation.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\92_superfish_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\98_omniCommands.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\userCode\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\userCode\extension.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\install.rdf
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\locale\en-US\translations.dtd
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button1.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button2.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button3.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button4.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button5.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\crossrider_statusbar.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon128.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon16.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon24.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon48.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\panelarrow-up.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\popup.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\skin.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\update.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\searchplugins\search.xml
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\searchplugins\WebSearch.xml
c:\users\Public\AlexaNSISPlugin.9612.dll
c:\windows\IsUn0407.exe
c:\windows\SysWow64\tmp3BC7.tmp
c:\windows\SysWow64\tmp5244.tmp
c:\windows\SysWow64\tmp5255.tmp
c:\windows\SysWow64\tmpBBA1.tmp
c:\windows\SysWow64\tmpEC03.tmp
c:\windows\SysWow64\tmpEC14.tmp
c:\windows\SysWow64\tmpFCC.tmp
c:\windows\SysWow64\tmpFFB.tmp
c:\windows\UA000079.DLL
c:\windows\wininit.ini
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NETHFDRV
-------\Service_CltMngSvc
-------\Service_globalUpdate
-------\Service_nethfdrv
-------\Service_ProtectMonitor
-------\Service_SrvUpdater
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-09-15 bis 2014-10-15  ))))))))))))))))))))))))))))))
.
.
2014-10-15 12:38 . 2014-10-15 12:38	--------	d-----w-	c:\users\Susu\AppData\Local\temp
2014-10-15 12:38 . 2014-10-15 12:38	--------	d-----w-	c:\users\Gast\AppData\Local\temp
2014-10-15 12:38 . 2014-10-15 12:38	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-10-15 11:53 . 2014-10-15 11:53	--------	d-----w-	c:\program files (x86)\predm
2014-10-06 11:39 . 2014-10-06 11:48	--------	d-----w-	C:\FRST
2014-10-02 18:01 . 2014-10-02 18:01	--------	d-----w-	c:\users\Pascal\AppData\Local\PopCap Games
2014-10-01 19:15 . 2014-10-01 19:15	--------	d-----w-	C:\NVIDIA Corporation
2014-10-01 17:54 . 2014-10-15 12:37	--------	d-----w-	c:\users\Pascal\AppData\Roaming\InetStat
2014-10-01 16:44 . 2014-10-01 16:44	1522584	----a-w-	c:\users\Pascal\AppData\Roaming\SUU.exe
2014-10-01 16:43 . 2014-10-15 12:37	--------	d-----w-	c:\program files (x86)\HD-Quality-v3V30.09
2014-10-01 14:44 . 2014-10-01 14:44	--------	d-----w-	c:\users\Pascal\AppData\Local\com
2014-10-01 14:43 . 2014-10-01 14:43	--------	d-----w-	c:\windows\Sun
2014-10-01 14:39 . 2014-10-15 12:09	--------	d-----w-	c:\users\Pascal\AppData\Local\TVWizard
2014-10-01 14:38 . 2014-10-01 17:54	--------	d--h--w-	c:\users\Public\Temp
2014-10-01 14:38 . 2014-10-01 14:38	--------	d-----w-	c:\programdata\HAunCmYKI
2014-10-01 14:37 . 2014-10-01 14:37	--------	d-----w-	c:\program files (x86)\globalUpdate
2014-10-01 14:37 . 2014-10-01 14:37	--------	d-----w-	c:\users\Pascal\AppData\Local\globalUpdate
2014-10-01 14:37 . 2014-10-15 12:37	--------	d-----w-	c:\program files (x86)\HQCinema1.9V01.10
2014-10-01 14:36 . 2014-10-01 14:36	--------	d-----w-	c:\program files (x86)\XTRM Group
2014-10-01 14:36 . 2014-10-01 14:46	--------	d-----w-	c:\program files (x86)\PepperZip
2014-10-01 14:35 . 2014-10-04 13:08	--------	d-----w-	c:\program files (x86)\ver4NewPlayer
2014-10-01 14:35 . 2014-10-07 14:51	--------	d-----w-	c:\program files (x86)\PCTRunner
2014-10-01 11:37 . 2014-09-25 02:08	371712	----a-w-	c:\windows\system32\qdvd.dll
2014-10-01 11:37 . 2014-09-25 01:40	519680	----a-w-	c:\windows\SysWow64\qdvd.dll
2014-09-24 13:47 . 2014-09-24 13:47	--------	d-----w-	c:\users\Pascal\AppData\Roaming\Cornelsen
2014-09-24 11:26 . 2014-09-09 22:11	2048	----a-w-	c:\windows\system32\tzres.dll
2014-09-24 11:26 . 2014-09-09 21:47	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2014-09-20 15:34 . 2014-09-20 15:39	--------	d-----w-	c:\programdata\DriverGenius
2014-09-20 15:31 . 2014-09-20 15:31	--------	d-----w-	c:\program files (x86)\Driver-Soft
2014-09-16 19:10 . 2014-09-16 19:11	--------	d-----w-	c:\program files (x86)\Scratch
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-15 11:30 . 2014-10-15 11:30	75888	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{2A7379EB-468D-4768-9EE8-B39973DF702E}\offreg.dll
2014-09-26 16:38 . 2014-03-03 18:30	348928	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2014-09-26 16:38 . 2013-12-15 12:58	348928	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2014-09-26 16:33 . 2013-12-15 12:58	280904	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2014-09-24 17:18 . 2012-10-28 13:54	701104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-09-24 17:18 . 2011-12-01 21:26	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-23 13:00 . 2013-04-21 12:36	590536	----a-w-	c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2014-09-17 12:31 . 2013-12-15 12:58	76152	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2014-09-15 07:06 . 2010-11-21 03:27	278152	------w-	c:\windows\system32\MpSigStub.exe
2014-09-11 01:04 . 2011-07-18 20:31	101694776	----a-w-	c:\windows\system32\MRT.exe
2014-09-09 02:05 . 2014-10-07 12:09	11578928	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{2A7379EB-468D-4768-9EE8-B39973DF702E}\mpengine.dll
2014-09-05 02:10 . 2014-09-10 18:11	578048	----a-w-	c:\windows\system32\aepdu.dll
2014-09-05 02:05 . 2014-09-10 18:11	424448	----a-w-	c:\windows\system32\aeinv.dll
2014-09-02 19:55 . 2014-09-02 19:55	487483	----a-w-	C:\monitor.exe
2014-09-02 19:55 . 2014-09-02 19:55	34244	----a-w-	C:\monitorsvc.exe
2014-08-29 06:47 . 2013-06-17 13:37	23256	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-08-23 02:07 . 2014-08-28 06:04	404480	----a-w-	c:\windows\system32\gdi32.dll
2014-08-23 01:45 . 2014-08-28 06:04	311808	----a-w-	c:\windows\SysWow64\gdi32.dll
2014-08-23 00:59 . 2014-08-28 06:04	3163648	----a-w-	c:\windows\system32\win32k.sys
2014-08-17 04:00 . 2014-09-11 01:53	51712	----a-w-	c:\windows\system32\ie4uinit.exe
2014-08-17 04:00 . 2014-09-11 01:53	2239488	----a-w-	c:\windows\system32\wininet.dll
2014-08-17 03:59 . 2014-09-11 01:53	1407488	----a-w-	c:\windows\system32\urlmon.dll
2014-08-17 03:59 . 2014-09-11 01:53	197120	----a-w-	c:\windows\system32\msrating.dll
2014-08-17 03:59 . 2014-09-11 01:53	97280	----a-w-	c:\windows\system32\mshtmled.dll
2014-08-17 03:59 . 2014-09-11 01:53	19280384	----a-w-	c:\windows\system32\mshtml.dll
2014-08-17 03:59 . 2014-09-11 01:53	603136	----a-w-	c:\windows\system32\msfeeds.dll
2014-08-17 03:58 . 2014-09-11 01:53	53248	----a-w-	c:\windows\system32\jsproxy.dll
2014-08-17 03:58 . 2014-09-11 01:53	855552	----a-w-	c:\windows\system32\jscript.dll
2014-08-17 03:58 . 2014-09-11 01:53	3959296	----a-w-	c:\windows\system32\jscript9.dll
2014-08-17 03:58 . 2014-09-11 01:53	67072	----a-w-	c:\windows\system32\iesetup.dll
2014-08-17 03:58 . 2014-09-11 01:53	526336	----a-w-	c:\windows\system32\ieui.dll
2014-08-17 03:58 . 2014-09-11 01:53	136704	----a-w-	c:\windows\system32\iesysprep.dll
2014-08-17 03:58 . 2014-09-11 01:53	2655232	----a-w-	c:\windows\system32\iertutil.dll
2014-08-17 03:58 . 2014-09-11 01:53	39936	----a-w-	c:\windows\system32\iernonce.dll
2014-08-17 03:58 . 2014-09-11 01:53	255488	----a-w-	c:\windows\system32\iedkcs32.dll
2014-08-17 03:58 . 2014-09-11 01:53	15399424	----a-w-	c:\windows\system32\ieframe.dll
2014-08-17 03:58 . 2014-09-11 01:53	451584	----a-w-	c:\windows\system32\dxtmsft.dll
2014-08-17 03:58 . 2014-09-11 01:53	281600	----a-w-	c:\windows\system32\dxtrans.dll
2014-08-17 03:58 . 2014-09-11 01:53	1508864	----a-w-	c:\windows\system32\inetcpl.cpl
2014-08-17 03:57 . 2014-09-11 01:53	1766400	----a-w-	c:\windows\SysWow64\wininet.dll
2014-08-17 03:57 . 2014-09-11 01:53	2861568	----a-w-	c:\windows\SysWow64\jscript9.dll
2014-08-17 03:57 . 2014-09-11 01:53	61440	----a-w-	c:\windows\SysWow64\iesetup.dll
2014-08-17 03:57 . 2014-09-11 01:53	109056	----a-w-	c:\windows\SysWow64\iesysprep.dll
2014-08-17 03:57 . 2014-09-11 01:53	1440768	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2014-08-16 07:25 . 2014-09-11 01:53	2706432	----a-w-	c:\windows\system32\mshtml.tlb
2014-08-16 06:43 . 2014-09-11 01:53	2706432	----a-w-	c:\windows\SysWow64\mshtml.tlb
2014-08-16 06:34 . 2014-09-11 01:53	89600	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2014-08-16 05:53 . 2014-09-11 01:53	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2014-08-13 10:38 . 2014-08-13 10:38	687	----a-w-	C:\awh4FE3.tmp
2014-08-09 06:06 . 2014-08-09 06:06	687	----a-w-	C:\awhA0B1.tmp
2014-08-08 04:32 . 2014-08-08 04:32	687	----a-w-	C:\awh314C.tmp
2014-08-07 05:40 . 2014-08-07 05:40	687	----a-w-	C:\awh8C09.tmp
2014-08-06 06:06 . 2014-08-06 06:06	687	----a-w-	C:\awh18DC.tmp
2014-08-05 06:39 . 2014-08-05 06:39	687	----a-w-	C:\awh859.tmp
2014-08-04 12:36 . 2014-08-04 12:36	687	----a-w-	C:\awh1CD2.tmp
2014-08-04 06:58 . 2014-08-04 06:58	687	----a-w-	C:\awh925F.tmp
2014-08-03 18:17 . 2014-08-03 18:17	687	----a-w-	C:\awh80B.tmp
2014-08-03 05:21 . 2014-08-03 05:21	687	----a-w-	C:\awh1238.tmp
2014-08-02 16:53 . 2014-08-02 16:53	687	----a-w-	C:\awh95E3.tmp
2014-08-01 11:53 . 2014-09-10 18:13	1031168	----a-w-	c:\windows\system32\TSWorkspace.dll
2014-08-01 11:35 . 2014-09-10 18:13	793600	----a-w-	c:\windows\SysWow64\TSWorkspace.dll
2014-07-25 13:50 . 2014-07-30 17:24	1291280	----a-w-	c:\windows\SysWow64\nvspbridge.dll
2014-07-25 13:50 . 2013-12-29 10:56	1126480	----a-w-	c:\windows\SysWow64\nvspcap.dll
2014-07-25 13:50 . 2014-07-30 17:24	1715224	----a-w-	c:\windows\system32\nvspbridge64.dll
2014-07-25 13:50 . 2013-12-29 10:56	1283136	----a-w-	c:\windows\system32\nvspcap64.dll
2014-07-25 10:55 . 2014-08-25 08:07	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-07-25 00:35 . 2014-07-25 00:35	875688	----a-w-	c:\windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47 . 2014-07-24 21:47	869544	----a-w-	c:\windows\system32\msvcr120_clr0400.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110611171162}]
2014-10-01 16:44	605592	----a-w-	c:\program files (x86)\HD-Quality-v3V30.09\HD-Quality-v3V30.09-bho.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110611381131}]
2014-10-01 14:42	605080	----a-w-	c:\program files (x86)\HQCinema1.9V01.10\HQCinema1.9V01.10-bho.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}]
2013-06-30 14:37	170840	----a-w-	c:\program files\Web Assistant\Extension32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{51420F88-4D4A-4042-9509-8D4E1307910E}]
2014-10-01 14:36	368120	----a-w-	c:\program files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxy32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{61e0ef7a-9bc0-45ea-9b2f-f3e9f02692bd}]
2010-11-21 03:24	297808	----a-w-	c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{BA56787C-729F-4715-8F11-EB2A16908B91}]
2013-03-19 20:30	244736	----a-w-	c:\program files (x86)\BetterAds\ScriptHost.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-17 13:33	220632	----a-w-	c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-17 13:33	220632	----a-w-	c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-17 13:33	220632	----a-w-	c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-09-23 13:02	1729232	----a-w-	c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-09-23 13:02	1729232	----a-w-	c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-09-23 13:02	1729232	----a-w-	c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"f.lux"="c:\users\Pascal\AppData\Local\FluxSoftware\Flux\flux.exe" [2013-10-23 1017224]
"MouseServer"="c:\program files (x86)\MouseServer\MouseServer.exe" [2012-03-21 122880]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Common\FSM32.EXE" [2013-08-14 310208]
"F-Secure Hoster (47731)"="c:\program files (x86)\Kabel BW\fshoster32.exe" [2013-05-15 191424]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2014-07-25 256896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files (x86)\QuickTime\qttask.exe" -atboottime
"UVS11 Preload"=c:\program files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ALSysIO;ALSysIO; [x]
R3 esgiguard;esgiguard; [x]
R3 globalUpdatem;globalUpdate Update Service (globalUpdatem);c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe;c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe [x]
R3 MyOSProtect;MyOSProtect;c:\program files (x86)\PCTRunner\MyOSProtect.exe;c:\program files (x86)\PCTRunner\MyOSProtect.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
R3 SPPD;SPPD;c:\windows\system32\drivers\SPPD.sys;c:\windows\SYSNATIVE\drivers\SPPD.sys [x]
R3 SystemExplorerHelpService;System Explorer Service; [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0; [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
R3 xhunter1;xhunter1; [x]
R4 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
R4 Web Assistant Updater;Web Assistant Updater;c:\program files\Web Assistant\ExtensionUpdaterService.exe;c:\program files\Web Assistant\ExtensionUpdaterService.exe [x]
S0 fsbts;fsbts;c:\windows\system32\Drivers\fsbts.sys;c:\windows\SYSNATIVE\Drivers\fsbts.sys [x]
S1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\HIPS\drivers\fshs.sys;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\HIPS\drivers\fshs.sys [x]
S1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
S2 ClickToRunSvc;Microsoft Office-Klick-und-Los-Dienst;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [x]
S2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [x]
S2 fshoster;F-Secure Dll Hoster;c:\program files (x86)\Kabel BW\fshoster32.exe;c:\program files (x86)\Kabel BW\fshoster32.exe [x]
S2 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Kabel BW\apps\CCF_Reputation\fsorsp.exe;c:\program files (x86)\Kabel BW\apps\CCF_Reputation\fsorsp.exe [x]
S2 MemeoBackgroundService;MemeoBackgroundService;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe [x]
S2 MySafeProxyMonitor;MySafeProxy Monitor;c:\program files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxyMonitor.exe;c:\program files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxyMonitor.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 tCJlXj;tCJlXj;c:\programdata\HAunCmYKI\tCJlXj.exe;c:\programdata\HAunCmYKI\tCJlXj.exe [x]
S2 Virtual Router;VirtualRouterService;c:\program files (x86)\Virtual Router\VirtualRouterService.exe;c:\program files (x86)\Virtual Router\VirtualRouterService.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [x]
S3 fsni;fsni;c:\program files (x86)\Kabel BW\apps\CCF_Scanning\fsni64.sys;c:\program files (x86)\Kabel BW\apps\CCF_Scanning\fsni64.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192su.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-09-25 14:23	1096520	----a-w-	c:\program files (x86)\Google\Chrome\Application\37.0.2062.124\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-10-15 c:\windows\Tasks\1242f82e-6c0d-47d3-a2c9-9feb3999108a.job
- c:\program files (x86)\HQCinema1.9V01.10\1242f82e-6c0d-47d3-a2c9-9feb3999108a.exe [2014-10-01 14:42]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-1.job
- c:\program files (x86)\HD-Quality-v3V30.09\HD-Quality-v3V30.09-codedownloader.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-2.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-2.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-4.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-4.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-5.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-5.exe [2014-10-01 16:45]
.
2014-10-01 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-5_user.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-5.exe [2014-10-01 16:45]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-6.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-6.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-7.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-7.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-1.job
- c:\program files (x86)\HQCinema1.9V01.10\HQCinema1.9V01.10-codedownloader.exe [2014-10-01 14:42]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-2.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-2.exe [2014-10-01 14:42]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-5.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-5.exe [2014-10-01 14:43]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-5_user.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-5.exe [2014-10-01 14:43]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-6.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-6.exe [2014-10-01 14:40]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-7.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-7.exe [2014-10-01 14:40]
.
2014-10-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-28 17:18]
.
2014-10-15 c:\windows\Tasks\c6ac72ed-56b8-40ca-9074-9efe04ef1716.job
- c:\program files (x86)\HD-Quality-v3V30.09\c6ac72ed-56b8-40ca-9074-9efe04ef1716.exe [2014-10-01 16:44]
.
2014-10-07 c:\windows\Tasks\Digital Sites.job
- c:\users\Pascal\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12 14:10]
.
2014-10-15 c:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job
- c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-10-01 16:43]
.
2014-10-05 c:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job
- c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-10-01 16:43]
.
2014-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-03 18:00]
.
2014-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-03 18:00]
.
2014-10-06 c:\windows\Tasks\RegistryBooster Maintenance.job
- c:\program files (x86)\Uniblue\RegistryBooster\registrybooster.exe [2012-11-01 10:39]
.
2014-10-15 c:\windows\Tasks\Scheduled scanning task.job
- c:\progra~2\Kabel BW\apps\ComputerSecurity\Anti-Virus\fsav.exe [2013-11-25 12:22]
.
2014-10-01 c:\windows\Tasks\SUU.job
- c:\users\Pascal\AppData\Roaming\SUU.exe [2014-10-01 16:44]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2014-02-11 02:21	644464	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2014-02-11 02:21	644464	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2014-02-11 02:21	644464	----a-w-	c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-17 13:33	244696	----a-w-	c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-17 13:33	244696	----a-w-	c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-17 13:33	244696	----a-w-	c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-09-23 13:02	2334416	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-09-23 13:02	2334416	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-09-23 13:02	2334416	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-07-25 2403104]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.conduit.com/?gd=&ctid=CT3314932&octid=EB_ORIGINAL_CTID&ISID=MF70BB4B3-B174-4BAF-A6B9-7309BCFE9943&SearchSource=55&CUI=&UM=5&UP=SPFEAC19B6-4958-4E5B-8531-48F001259B10&SSPV=
mDefault_Search_URL = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
mDefault_Page_URL = hxxp://aartemis.com/?type=hp&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX
mStart Page = hxxp://aartemis.com/?type=hp&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
mSearchAssistant = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
mCustomizeSearch = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4
TCP: DhcpNameServer = 192.168.178.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{11111111-1111-1111-1111-110011221158} - (no file)
BHO-{11111111-1111-1111-1111-110311341140} - (no file)
BHO-{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - (no file)
BHO-{9D717F81-9148-4f12-8568-69135F087DB0} - c:\progra~2\SEARCH~1\Datamngr\BROWSE~1.DLL
BHO-{C1AF5FA5-852C-4C90-812E-A7F75E011D87} - (no file)
BHO-{D1ECD019-8423-43de-98D1-7892AF2DA309} - (no file)
BHO-{dc26eb86-ac6f-4093-918d-3e36cd607f01} - (no file)
Toolbar-10 - (no file)
Toolbar-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-{b278d9f8-0fa9-465e-9938-0c392605d8e3} - (no file)
Toolbar-{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - (no file)
Toolbar-{9E131A93-EED7-4BEB-B015-A0ADB30B5646} - (no file)
Toolbar-!{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - (no file)
Toolbar-!{5786d022-540e-4699-b350-b4be0ae94b79} - (no file)
Toolbar-!{977AE9CC-AF83-45E8-9E03-E2798216E2D5} - (no file)
Toolbar-!{F9639E4A-801B-4843-AEE3-03D9DA199E77} - (no file)
Wow6432Node-HKLM-Run-mbot_de_111 - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-10 - (no file)
Toolbar-!{5786d022-540e-4699-b350-b4be0ae94b79} - (no file)
AddRemove-ALDI SÜD Mah Jong - c:\windows\system32\Uninstall ALDI SÜD Mah Jong.exe
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-SimCity 3000 - c:\windows\IsUn0407.exe
AddRemove-InetStat - c:\users\Pascal\AppData\Roaming\InetStat\inetstat.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\fshoster]
"ImagePath"="\"c:\program files (x86)\Kabel BW\fshoster32.exe\" -hosterid:0"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3934173735-3769707255-3857861622-1001\Software\SecuROM\License information*]
"datasecu"=hex:20,e5,d5,ff,c3,8a,8f,7f,e8,dc,fb,8f,34,97,a3,fd,0e,44,fc,04,91,
   a0,05,a5,80,27,a4,0b,49,e5,ba,03,3c,31,63,90,09,af,ca,e3,b4,f6,a8,bf,ad,35,\
"rkeysecu"=hex:27,55,4f,81,78,18,1b,1b,f6,05,63,55,51,15,0b,13
.
[HKEY_LOCAL_MACHINE\software\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_167_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_167_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\F-Secure\My Services Agent\Protected]
@Denied: ) (Everyone)
"AgentIdentifier"="fab60538-dc40-4f50-80b5-c3837a4c4bd3"
"AuthorizationCode"=""
"47731_AgentIdentifier"="fab60538-dc40-4f50-80b5-c3837a4c4bd3"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
c:\program files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\BlueStacks\HD-Service.exe
c:\program files (x86)\BlueStacks\HD-Network.exe
c:\program files (x86)\BlueStacks\HD-BlockDevice.exe
c:\program files (x86)\BlueStacks\HD-SharedFolder.exe
c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Common\FSMA32.EXE
c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\fssm32.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-10-15  14:52:21 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-10-15 12:52
.
Vor Suchlauf: 22 Verzeichnis(se), 578.966.585.344 Bytes frei
Nach Suchlauf: 26 Verzeichnis(se), 578.303.451.136 Bytes frei
.
- - End Of File - - E87444EB7508ED6F9850ECC728E73EF1

--- --- ---
4624822E540EC83CD0819525C65846BA
Hi

C:\windows\scorl.trojan.general.exe

Plagegeister aller Art und deren Bekämpfung: C:\windows\scorl.trojan.general.exe

C:\windows\scorl.trojan.general.exe

also

Ähnliche Themen: C:\windows\scorl.trojan.general.exe