| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: C:\windows\scorl.trojan.general.exeWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
15.10.2014, 14:12
| #6 |
 |  also Ich habe jetzt alles gemacht. Es ist folgendes vorgefallen, asktoolbar geht nicht weg, IMesh gibt's auf meinen Computer nicht, dieses Webassistant und Webprotect gibt's auch nicht. Den Log von Combofix schick ich gleich im Anschluss. Viele grüße Pascal (; Combofix Logfile: Code:
ATTFilter ComboFix 14-10-15.01 - Pascal 15.10.2014 14:26:34.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.4078.1983 [GMT 2:00]
ausgeführt von:: j:\download\ComboFix.exe
AV: Computer Schutz *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
SP: Computer Schutz *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
c:\program files (x86)\Common Files\Config\uninstinethnfd.exe
c:\program files (x86)\Common Files\Config\ver.xml
c:\program files (x86)\DealPly
c:\program files (x86)\DealPly\DealPly.crx
c:\program files (x86)\DealPly\DealPlyUpdate.exe
c:\program files (x86)\DealPly\DealPlyUpdate.log
c:\program files (x86)\DealPly\DealPlyUpdateRun.exe
c:\program files (x86)\DealPly\icon.ico
c:\program files (x86)\DealPly\uninst.exe
c:\program files (x86)\HD-Quality-v3V30.09\acd42e4d-df71-4a2e-beba-ac536b327013.dll
c:\program files (x86)\HD-Quality-v3V30.09\fc028392-3db8-48f4-b8b1-5b6a9f8d1dfc.dll
c:\program files (x86)\HQCinema1.9V01.10\391ad2a2-c92b-426a-ba56-7f3b29d7a757.dll
c:\program files (x86)\HQCinema1.9V01.10\3be94935-703d-4a9f-bdf8-bd3f9894f8d0.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr
c:\program files (x86)\Searchqu Toolbar\Datamngr\BrowserConnection.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\css\new-tab.css
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_amazon.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_ebay.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_facebook.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_fantastigames.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_ftalk.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\fav_youtube.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\IDR_WEBSTORE_ICON.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png__
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\config\skin\new-tab.html
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\analytics.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\constant.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\default-config - Copy.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\default-config.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\jquery.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\localStorage.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\new-tab.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\lib\preferences.js
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\manifest.json
c:\program files (x86)\Searchqu Toolbar\Datamngr\ChromeExtension\OurLocalPage.html
c:\program files (x86)\Searchqu Toolbar\Datamngr\datamngr.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\datamngrUI.exe
c:\program files (x86)\Searchqu Toolbar\Datamngr\DnsBHO.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\IEBHO.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\installhelper.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\BrowserConnection.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\datamngr.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\datamngrUI.exe
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\DnsBHO.dll
c:\program files (x86)\Searchqu Toolbar\Datamngr\x64\IEBHO.dll
c:\program files (x86)\SoftwareUpdater\KeyGen.dll
c:\program files (x86)\Windows Searchqu Toolbar
c:\programdata\374311380
c:\programdata\374311380\BIT2809.tmp
c:\programdata\BrowserDefender
c:\programdata\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bl
c:\programdata\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings
c:\programdata\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\dm
c:\users\Pascal\AppData\Local\lollipop
c:\users\Pascal\AppData\Local\lollipop\Lollipop.exe
c:\users\Pascal\AppData\Local\omesuperv.exe
c:\users\Pascal\AppData\Roaming\.#
c:\users\Pascal\AppData\Roaming\BabMaint.exe
c:\users\Pascal\AppData\Roaming\InetStat\inetstat.exe
c:\users\Pascal\AppData\Roaming\Microsoft\Windows\Recent\Akinator öffnen.url
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome.manifest
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\asyncDB.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\browserAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\contextMenu.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\dbManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\dom_bg.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\fileManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\firefox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\firefoxNotifications.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\firefoxOmnibox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\message.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\pageAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\request.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\tabs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\api\webRequest.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\background.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\baseObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\browser.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\console.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\consts.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\delegate.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\extensionDataStore.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\folderIOWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\httpObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\IDBWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\installer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\logFile.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\progressListenerObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\registry.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\reloadObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\reports.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\requestObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\searchSettings.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\uninstallObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\updateManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\utils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\core\xhr.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\dialog.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\main.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\options.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\options.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\chrome\content\search_dialog.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\defaults\preferences\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\manifest.xml
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins.json
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\1_base.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\101_cortica_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\102_dealply_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\103_intext_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\105_corticas_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\108_icm_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\116_ads_only_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\119_similar_web_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\120_luck_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\129_widdit_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\138_getdeal_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\155_ibario_pops_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\17_jQuery.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\170_icm1_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\21_debug.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\22_resources.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\28_initializer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\47_resources_background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\64_appApiMessage.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\7_hooks.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\72_appApiValidation.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\92_superfish_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\plugins\98_omniCommands.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\userCode\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\extensionData\userCode\extension.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\install.rdf
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\locale\en-US\translations.dtd
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button1.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button2.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button3.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button4.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\button5.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\crossrider_statusbar.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon128.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon16.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon24.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\icon48.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\panelarrow-up.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\popup.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\skin.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com\skin\update.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome.manifest
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\asyncDB.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\browserAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\contextMenu.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\dbManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\dom_bg.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\fileManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\firefox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\firefoxNotifications.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\firefoxOmnibox.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\message.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\pageAction.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\request.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\tabs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\api\webRequest.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\background.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\baseObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\browser.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\console.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\consts.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\delegate.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\extensionDataStore.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\folderIOWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\httpObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\IDBWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\installer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\logFile.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\progressListenerObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\registry.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\reloadObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\reports.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\requestObject.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\searchSettings.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\uninstallObserver.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\updateManager.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\utils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\core\xhr.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\dialog.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\main.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\options.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\options.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\chrome\content\search_dialog.xul
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\defaults\preferences\prefs.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\manifest.xml
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins.json
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\1_base.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\101_cortica_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\102_dealply_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\103_intext_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\105_corticas_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\107_coupish_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\108_icm_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\116_ads_only_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\119_similar_web_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\120_luck_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\129_widdit_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\138_getdeal_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\155_ibario_pops_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\17_jQuery.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\170_icm1_5_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\21_debug.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\22_resources.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\28_initializer.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\47_resources_background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\64_appApiMessage.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\7_hooks.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\72_appApiValidation.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\92_superfish_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\plugins\98_omniCommands.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\userCode\background.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\extensionData\userCode\extension.js
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\install.rdf
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\locale\en-US\translations.dtd
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button1.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button2.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button3.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button4.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\button5.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\crossrider_statusbar.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon128.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon16.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon24.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\icon48.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\panelarrow-up.png
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\popup.html
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\skin.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\extensions\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com\skin\update.css
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\searchplugins\search.xml
c:\users\Pascal\AppData\Roaming\Mozilla\Firefox\Profiles\2veoap2y.default\searchplugins\WebSearch.xml
c:\users\Public\AlexaNSISPlugin.9612.dll
c:\windows\IsUn0407.exe
c:\windows\SysWow64\tmp3BC7.tmp
c:\windows\SysWow64\tmp5244.tmp
c:\windows\SysWow64\tmp5255.tmp
c:\windows\SysWow64\tmpBBA1.tmp
c:\windows\SysWow64\tmpEC03.tmp
c:\windows\SysWow64\tmpEC14.tmp
c:\windows\SysWow64\tmpFCC.tmp
c:\windows\SysWow64\tmpFFB.tmp
c:\windows\UA000079.DLL
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NETHFDRV
-------\Service_CltMngSvc
-------\Service_globalUpdate
-------\Service_nethfdrv
-------\Service_ProtectMonitor
-------\Service_SrvUpdater
.
.
((((((((((((((((((((((( Dateien erstellt von 2014-09-15 bis 2014-10-15 ))))))))))))))))))))))))))))))
.
.
2014-10-15 12:38 . 2014-10-15 12:38 -------- d-----w- c:\users\Susu\AppData\Local\temp
2014-10-15 12:38 . 2014-10-15 12:38 -------- d-----w- c:\users\Gast\AppData\Local\temp
2014-10-15 12:38 . 2014-10-15 12:38 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-10-15 11:53 . 2014-10-15 11:53 -------- d-----w- c:\program files (x86)\predm
2014-10-06 11:39 . 2014-10-06 11:48 -------- d-----w- C:\FRST
2014-10-02 18:01 . 2014-10-02 18:01 -------- d-----w- c:\users\Pascal\AppData\Local\PopCap Games
2014-10-01 19:15 . 2014-10-01 19:15 -------- d-----w- C:\NVIDIA Corporation
2014-10-01 17:54 . 2014-10-15 12:37 -------- d-----w- c:\users\Pascal\AppData\Roaming\InetStat
2014-10-01 16:44 . 2014-10-01 16:44 1522584 ----a-w- c:\users\Pascal\AppData\Roaming\SUU.exe
2014-10-01 16:43 . 2014-10-15 12:37 -------- d-----w- c:\program files (x86)\HD-Quality-v3V30.09
2014-10-01 14:44 . 2014-10-01 14:44 -------- d-----w- c:\users\Pascal\AppData\Local\com
2014-10-01 14:43 . 2014-10-01 14:43 -------- d-----w- c:\windows\Sun
2014-10-01 14:39 . 2014-10-15 12:09 -------- d-----w- c:\users\Pascal\AppData\Local\TVWizard
2014-10-01 14:38 . 2014-10-01 17:54 -------- d--h--w- c:\users\Public\Temp
2014-10-01 14:38 . 2014-10-01 14:38 -------- d-----w- c:\programdata\HAunCmYKI
2014-10-01 14:37 . 2014-10-01 14:37 -------- d-----w- c:\program files (x86)\globalUpdate
2014-10-01 14:37 . 2014-10-01 14:37 -------- d-----w- c:\users\Pascal\AppData\Local\globalUpdate
2014-10-01 14:37 . 2014-10-15 12:37 -------- d-----w- c:\program files (x86)\HQCinema1.9V01.10
2014-10-01 14:36 . 2014-10-01 14:36 -------- d-----w- c:\program files (x86)\XTRM Group
2014-10-01 14:36 . 2014-10-01 14:46 -------- d-----w- c:\program files (x86)\PepperZip
2014-10-01 14:35 . 2014-10-04 13:08 -------- d-----w- c:\program files (x86)\ver4NewPlayer
2014-10-01 14:35 . 2014-10-07 14:51 -------- d-----w- c:\program files (x86)\PCTRunner
2014-10-01 11:37 . 2014-09-25 02:08 371712 ----a-w- c:\windows\system32\qdvd.dll
2014-10-01 11:37 . 2014-09-25 01:40 519680 ----a-w- c:\windows\SysWow64\qdvd.dll
2014-09-24 13:47 . 2014-09-24 13:47 -------- d-----w- c:\users\Pascal\AppData\Roaming\Cornelsen
2014-09-24 11:26 . 2014-09-09 22:11 2048 ----a-w- c:\windows\system32\tzres.dll
2014-09-24 11:26 . 2014-09-09 21:47 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2014-09-20 15:34 . 2014-09-20 15:39 -------- d-----w- c:\programdata\DriverGenius
2014-09-20 15:31 . 2014-09-20 15:31 -------- d-----w- c:\program files (x86)\Driver-Soft
2014-09-16 19:10 . 2014-09-16 19:11 -------- d-----w- c:\program files (x86)\Scratch
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-15 11:30 . 2014-10-15 11:30 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2A7379EB-468D-4768-9EE8-B39973DF702E}\offreg.dll
2014-09-26 16:38 . 2014-03-03 18:30 348928 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2014-09-26 16:38 . 2013-12-15 12:58 348928 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-09-26 16:33 . 2013-12-15 12:58 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-09-24 17:18 . 2012-10-28 13:54 701104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-09-24 17:18 . 2011-12-01 21:26 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-23 13:00 . 2013-04-21 12:36 590536 ----a-w- c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2014-09-17 12:31 . 2013-12-15 12:58 76152 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2014-09-15 07:06 . 2010-11-21 03:27 278152 ------w- c:\windows\system32\MpSigStub.exe
2014-09-11 01:04 . 2011-07-18 20:31 101694776 ----a-w- c:\windows\system32\MRT.exe
2014-09-09 02:05 . 2014-10-07 12:09 11578928 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2A7379EB-468D-4768-9EE8-B39973DF702E}\mpengine.dll
2014-09-05 02:10 . 2014-09-10 18:11 578048 ----a-w- c:\windows\system32\aepdu.dll
2014-09-05 02:05 . 2014-09-10 18:11 424448 ----a-w- c:\windows\system32\aeinv.dll
2014-09-02 19:55 . 2014-09-02 19:55 487483 ----a-w- C:\monitor.exe
2014-09-02 19:55 . 2014-09-02 19:55 34244 ----a-w- C:\monitorsvc.exe
2014-08-29 06:47 . 2013-06-17 13:37 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-08-23 02:07 . 2014-08-28 06:04 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-08-23 01:45 . 2014-08-28 06:04 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-08-23 00:59 . 2014-08-28 06:04 3163648 ----a-w- c:\windows\system32\win32k.sys
2014-08-17 04:00 . 2014-09-11 01:53 51712 ----a-w- c:\windows\system32\ie4uinit.exe
2014-08-17 04:00 . 2014-09-11 01:53 2239488 ----a-w- c:\windows\system32\wininet.dll
2014-08-17 03:59 . 2014-09-11 01:53 1407488 ----a-w- c:\windows\system32\urlmon.dll
2014-08-17 03:59 . 2014-09-11 01:53 197120 ----a-w- c:\windows\system32\msrating.dll
2014-08-17 03:59 . 2014-09-11 01:53 97280 ----a-w- c:\windows\system32\mshtmled.dll
2014-08-17 03:59 . 2014-09-11 01:53 19280384 ----a-w- c:\windows\system32\mshtml.dll
2014-08-17 03:59 . 2014-09-11 01:53 603136 ----a-w- c:\windows\system32\msfeeds.dll
2014-08-17 03:58 . 2014-09-11 01:53 53248 ----a-w- c:\windows\system32\jsproxy.dll
2014-08-17 03:58 . 2014-09-11 01:53 855552 ----a-w- c:\windows\system32\jscript.dll
2014-08-17 03:58 . 2014-09-11 01:53 3959296 ----a-w- c:\windows\system32\jscript9.dll
2014-08-17 03:58 . 2014-09-11 01:53 67072 ----a-w- c:\windows\system32\iesetup.dll
2014-08-17 03:58 . 2014-09-11 01:53 526336 ----a-w- c:\windows\system32\ieui.dll
2014-08-17 03:58 . 2014-09-11 01:53 136704 ----a-w- c:\windows\system32\iesysprep.dll
2014-08-17 03:58 . 2014-09-11 01:53 2655232 ----a-w- c:\windows\system32\iertutil.dll
2014-08-17 03:58 . 2014-09-11 01:53 39936 ----a-w- c:\windows\system32\iernonce.dll
2014-08-17 03:58 . 2014-09-11 01:53 255488 ----a-w- c:\windows\system32\iedkcs32.dll
2014-08-17 03:58 . 2014-09-11 01:53 15399424 ----a-w- c:\windows\system32\ieframe.dll
2014-08-17 03:58 . 2014-09-11 01:53 451584 ----a-w- c:\windows\system32\dxtmsft.dll
2014-08-17 03:58 . 2014-09-11 01:53 281600 ----a-w- c:\windows\system32\dxtrans.dll
2014-08-17 03:58 . 2014-09-11 01:53 1508864 ----a-w- c:\windows\system32\inetcpl.cpl
2014-08-17 03:57 . 2014-09-11 01:53 1766400 ----a-w- c:\windows\SysWow64\wininet.dll
2014-08-17 03:57 . 2014-09-11 01:53 2861568 ----a-w- c:\windows\SysWow64\jscript9.dll
2014-08-17 03:57 . 2014-09-11 01:53 61440 ----a-w- c:\windows\SysWow64\iesetup.dll
2014-08-17 03:57 . 2014-09-11 01:53 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll
2014-08-17 03:57 . 2014-09-11 01:53 1440768 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2014-08-16 07:25 . 2014-09-11 01:53 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2014-08-16 06:43 . 2014-09-11 01:53 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2014-08-16 06:34 . 2014-09-11 01:53 89600 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2014-08-16 05:53 . 2014-09-11 01:53 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2014-08-13 10:38 . 2014-08-13 10:38 687 ----a-w- C:\awh4FE3.tmp
2014-08-09 06:06 . 2014-08-09 06:06 687 ----a-w- C:\awhA0B1.tmp
2014-08-08 04:32 . 2014-08-08 04:32 687 ----a-w- C:\awh314C.tmp
2014-08-07 05:40 . 2014-08-07 05:40 687 ----a-w- C:\awh8C09.tmp
2014-08-06 06:06 . 2014-08-06 06:06 687 ----a-w- C:\awh18DC.tmp
2014-08-05 06:39 . 2014-08-05 06:39 687 ----a-w- C:\awh859.tmp
2014-08-04 12:36 . 2014-08-04 12:36 687 ----a-w- C:\awh1CD2.tmp
2014-08-04 06:58 . 2014-08-04 06:58 687 ----a-w- C:\awh925F.tmp
2014-08-03 18:17 . 2014-08-03 18:17 687 ----a-w- C:\awh80B.tmp
2014-08-03 05:21 . 2014-08-03 05:21 687 ----a-w- C:\awh1238.tmp
2014-08-02 16:53 . 2014-08-02 16:53 687 ----a-w- C:\awh95E3.tmp
2014-08-01 11:53 . 2014-09-10 18:13 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-08-01 11:35 . 2014-09-10 18:13 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-07-25 13:50 . 2014-07-30 17:24 1291280 ----a-w- c:\windows\SysWow64\nvspbridge.dll
2014-07-25 13:50 . 2013-12-29 10:56 1126480 ----a-w- c:\windows\SysWow64\nvspcap.dll
2014-07-25 13:50 . 2014-07-30 17:24 1715224 ----a-w- c:\windows\system32\nvspbridge64.dll
2014-07-25 13:50 . 2013-12-29 10:56 1283136 ----a-w- c:\windows\system32\nvspcap64.dll
2014-07-25 10:55 . 2014-08-25 08:07 98216 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-07-25 00:35 . 2014-07-25 00:35 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47 . 2014-07-24 21:47 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110611171162}]
2014-10-01 16:44 605592 ----a-w- c:\program files (x86)\HD-Quality-v3V30.09\HD-Quality-v3V30.09-bho.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110611381131}]
2014-10-01 14:42 605080 ----a-w- c:\program files (x86)\HQCinema1.9V01.10\HQCinema1.9V01.10-bho.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}]
2013-06-30 14:37 170840 ----a-w- c:\program files\Web Assistant\Extension32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{51420F88-4D4A-4042-9509-8D4E1307910E}]
2014-10-01 14:36 368120 ----a-w- c:\program files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxy32.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{61e0ef7a-9bc0-45ea-9b2f-f3e9f02692bd}]
2010-11-21 03:24 297808 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{BA56787C-729F-4715-8F11-EB2A16908B91}]
2013-03-19 20:30 244736 ----a-w- c:\program files (x86)\BetterAds\ScriptHost.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-17 13:33 220632 ----a-w- c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-17 13:33 220632 ----a-w- c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-17 13:33 220632 ----a-w- c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-09-23 13:02 1729232 ----a-w- c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-09-23 13:02 1729232 ----a-w- c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-09-23 13:02 1729232 ----a-w- c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"f.lux"="c:\users\Pascal\AppData\Local\FluxSoftware\Flux\flux.exe" [2013-10-23 1017224]
"MouseServer"="c:\program files (x86)\MouseServer\MouseServer.exe" [2012-03-21 122880]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Common\FSM32.EXE" [2013-08-14 310208]
"F-Secure Hoster (47731)"="c:\program files (x86)\Kabel BW\fshoster32.exe" [2013-05-15 191424]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2014-07-25 256896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files (x86)\QuickTime\qttask.exe" -atboottime
"UVS11 Preload"=c:\program files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ALSysIO;ALSysIO; [x]
R3 esgiguard;esgiguard; [x]
R3 globalUpdatem;globalUpdate Update Service (globalUpdatem);c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe;c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe [x]
R3 MyOSProtect;MyOSProtect;c:\program files (x86)\PCTRunner\MyOSProtect.exe;c:\program files (x86)\PCTRunner\MyOSProtect.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
R3 SPPD;SPPD;c:\windows\system32\drivers\SPPD.sys;c:\windows\SYSNATIVE\drivers\SPPD.sys [x]
R3 SystemExplorerHelpService;System Explorer Service; [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0; [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
R3 xhunter1;xhunter1; [x]
R4 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
R4 Web Assistant Updater;Web Assistant Updater;c:\program files\Web Assistant\ExtensionUpdaterService.exe;c:\program files\Web Assistant\ExtensionUpdaterService.exe [x]
S0 fsbts;fsbts;c:\windows\system32\Drivers\fsbts.sys;c:\windows\SYSNATIVE\Drivers\fsbts.sys [x]
S1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\HIPS\drivers\fshs.sys;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\HIPS\drivers\fshs.sys [x]
S1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
S2 ClickToRunSvc;Microsoft Office-Klick-und-Los-Dienst;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [x]
S2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [x]
S2 fshoster;F-Secure Dll Hoster;c:\program files (x86)\Kabel BW\fshoster32.exe;c:\program files (x86)\Kabel BW\fshoster32.exe [x]
S2 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Kabel BW\apps\CCF_Reputation\fsorsp.exe;c:\program files (x86)\Kabel BW\apps\CCF_Reputation\fsorsp.exe [x]
S2 MemeoBackgroundService;MemeoBackgroundService;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe;c:\program files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe [x]
S2 MySafeProxyMonitor;MySafeProxy Monitor;c:\program files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxyMonitor.exe;c:\program files (x86)\XTRM Group\MySafeProxy\Bin\MySafeProxyMonitor.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 tCJlXj;tCJlXj;c:\programdata\HAunCmYKI\tCJlXj.exe;c:\programdata\HAunCmYKI\tCJlXj.exe [x]
S2 Virtual Router;VirtualRouterService;c:\program files (x86)\Virtual Router\VirtualRouterService.exe;c:\program files (x86)\Virtual Router\VirtualRouterService.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys;c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [x]
S3 fsni;fsni;c:\program files (x86)\Kabel BW\apps\CCF_Scanning\fsni64.sys;c:\program files (x86)\Kabel BW\apps\CCF_Scanning\fsni64.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192su.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-09-25 14:23 1096520 ----a-w- c:\program files (x86)\Google\Chrome\Application\37.0.2062.124\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-10-15 c:\windows\Tasks\1242f82e-6c0d-47d3-a2c9-9feb3999108a.job
- c:\program files (x86)\HQCinema1.9V01.10\1242f82e-6c0d-47d3-a2c9-9feb3999108a.exe [2014-10-01 14:42]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-1.job
- c:\program files (x86)\HD-Quality-v3V30.09\HD-Quality-v3V30.09-codedownloader.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-2.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-2.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-4.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-4.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-5.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-5.exe [2014-10-01 16:45]
.
2014-10-01 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-5_user.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-5.exe [2014-10-01 16:45]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-6.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-6.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\56c2d237-88f9-437d-be8e-58367541cdc2-7.job
- c:\program files (x86)\HD-Quality-v3V30.09\56c2d237-88f9-437d-be8e-58367541cdc2-7.exe [2014-10-01 16:44]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-1.job
- c:\program files (x86)\HQCinema1.9V01.10\HQCinema1.9V01.10-codedownloader.exe [2014-10-01 14:42]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-2.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-2.exe [2014-10-01 14:42]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-5.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-5.exe [2014-10-01 14:43]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-5_user.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-5.exe [2014-10-01 14:43]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-6.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-6.exe [2014-10-01 14:40]
.
2014-10-15 c:\windows\Tasks\815a6f6b-5b57-4751-8a99-2a2f9410b044-7.job
- c:\program files (x86)\HQCinema1.9V01.10\815a6f6b-5b57-4751-8a99-2a2f9410b044-7.exe [2014-10-01 14:40]
.
2014-10-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-28 17:18]
.
2014-10-15 c:\windows\Tasks\c6ac72ed-56b8-40ca-9074-9efe04ef1716.job
- c:\program files (x86)\HD-Quality-v3V30.09\c6ac72ed-56b8-40ca-9074-9efe04ef1716.exe [2014-10-01 16:44]
.
2014-10-07 c:\windows\Tasks\Digital Sites.job
- c:\users\Pascal\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12 14:10]
.
2014-10-15 c:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job
- c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-10-01 16:43]
.
2014-10-05 c:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job
- c:\program files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-10-01 16:43]
.
2014-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-03 18:00]
.
2014-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-03-03 18:00]
.
2014-10-06 c:\windows\Tasks\RegistryBooster Maintenance.job
- c:\program files (x86)\Uniblue\RegistryBooster\registrybooster.exe [2012-11-01 10:39]
.
2014-10-15 c:\windows\Tasks\Scheduled scanning task.job
- c:\progra~2\Kabel BW\apps\ComputerSecurity\Anti-Virus\fsav.exe [2013-11-25 12:22]
.
2014-10-01 c:\windows\Tasks\SUU.job
- c:\users\Pascal\AppData\Roaming\SUU.exe [2014-10-01 16:44]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2014-02-11 02:21 644464 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2014-02-11 02:21 644464 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2014-02-11 02:21 644464 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-17 13:33 244696 ----a-w- c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-17 13:33 244696 ----a-w- c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-17 13:33 244696 ----a-w- c:\users\Pascal\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-09-23 13:02 2334416 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-09-23 13:02 2334416 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-09-23 13:02 2334416 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-07-25 2403104]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.conduit.com/?gd=&ctid=CT3314932&octid=EB_ORIGINAL_CTID&ISID=MF70BB4B3-B174-4BAF-A6B9-7309BCFE9943&SearchSource=55&CUI=&UM=5&UP=SPFEAC19B6-4958-4E5B-8531-48F001259B10&SSPV=
mDefault_Search_URL = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
mDefault_Page_URL = hxxp://aartemis.com/?type=hp&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX
mStart Page = hxxp://aartemis.com/?type=hp&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
mSearchAssistant = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
mCustomizeSearch = hxxp://www.aartemis.com/web/?type=ds&ts=1384525389&from=cor&uid=HitachiXHDS721010DLE630_MSE5215V0VT81U0VT81UX&q={searchTerms}
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4
TCP: DhcpNameServer = 192.168.178.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{11111111-1111-1111-1111-110011221158} - (no file)
BHO-{11111111-1111-1111-1111-110311341140} - (no file)
BHO-{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - (no file)
BHO-{9D717F81-9148-4f12-8568-69135F087DB0} - c:\progra~2\SEARCH~1\Datamngr\BROWSE~1.DLL
BHO-{C1AF5FA5-852C-4C90-812E-A7F75E011D87} - (no file)
BHO-{D1ECD019-8423-43de-98D1-7892AF2DA309} - (no file)
BHO-{dc26eb86-ac6f-4093-918d-3e36cd607f01} - (no file)
Toolbar-10 - (no file)
Toolbar-{28387537-e3f9-4ed7-860c-11e69af4a8a0} - (no file)
Toolbar-{b278d9f8-0fa9-465e-9938-0c392605d8e3} - (no file)
Toolbar-{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - (no file)
Toolbar-{9E131A93-EED7-4BEB-B015-A0ADB30B5646} - (no file)
Toolbar-!{5018CFD2-804D-4C99-9F81-25EAEA2769DE} - (no file)
Toolbar-!{5786d022-540e-4699-b350-b4be0ae94b79} - (no file)
Toolbar-!{977AE9CC-AF83-45E8-9E03-E2798216E2D5} - (no file)
Toolbar-!{F9639E4A-801B-4843-AEE3-03D9DA199E77} - (no file)
Wow6432Node-HKLM-Run-mbot_de_111 - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-10 - (no file)
Toolbar-!{5786d022-540e-4699-b350-b4be0ae94b79} - (no file)
AddRemove-ALDI SÜD Mah Jong - c:\windows\system32\Uninstall ALDI SÜD Mah Jong.exe
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-SimCity 3000 - c:\windows\IsUn0407.exe
AddRemove-InetStat - c:\users\Pascal\AppData\Roaming\InetStat\inetstat.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\fshoster]
"ImagePath"="\"c:\program files (x86)\Kabel BW\fshoster32.exe\" -hosterid:0"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3934173735-3769707255-3857861622-1001\Software\SecuROM\License information*]
"datasecu"=hex:20,e5,d5,ff,c3,8a,8f,7f,e8,dc,fb,8f,34,97,a3,fd,0e,44,fc,04,91,
a0,05,a5,80,27,a4,0b,49,e5,ba,03,3c,31,63,90,09,af,ca,e3,b4,f6,a8,bf,ad,35,\
"rkeysecu"=hex:27,55,4f,81,78,18,1b,1b,f6,05,63,55,51,15,0b,13
.
[HKEY_LOCAL_MACHINE\software\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_167_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_167_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_167_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_167.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\F-Secure\My Services Agent\Protected]
@Denied: ) (Everyone)
"AgentIdentifier"="fab60538-dc40-4f50-80b5-c3837a4c4bd3"
"AuthorizationCode"=""
"47731_AgentIdentifier"="fab60538-dc40-4f50-80b5-c3837a4c4bd3"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
c:\program files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\BlueStacks\HD-Service.exe
c:\program files (x86)\BlueStacks\HD-Network.exe
c:\program files (x86)\BlueStacks\HD-BlockDevice.exe
c:\program files (x86)\BlueStacks\HD-SharedFolder.exe
c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Common\FSMA32.EXE
c:\program files (x86)\Kabel BW\apps\ComputerSecurity\Anti-Virus\fssm32.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-10-15 14:52:21 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2014-10-15 12:52
.
Vor Suchlauf: 22 Verzeichnis(se), 578.966.585.344 Bytes frei
Nach Suchlauf: 26 Verzeichnis(se), 578.303.451.136 Bytes frei
.
- - End Of File - - E87444EB7508ED6F9850ECC728E73EF1
4624822E540EC83CD0819525C65846BA Hi |
Baum-Darstellung