Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig

neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig


Log-Analyse und Auswertung: neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 25.11.2013, 15:55   #1
schrauber
/// the machine
/// TB-Ausbilder
 
neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig - Standard

neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig


Wenn Avast anzeigt es ist deaktiviert dann kannst du die Meldunf von Combofix ignorieren und ok klicken.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 25.11.2013, 17:16   #2
juloahnung
 
neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig - Standard

neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig


ComboFix 13-11-23.02 - Julia 25.11.2013 16:59:23.1.4 - x64
Microsoft Windows 8 6.2.9200.0.1252.49.1031.18.6023.4235 [GMT 1:00]
ausgeführt von:: c:\users\Julia\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
c:\program files (x86)\DealPly
c:\program files (x86)\DealPly\DealPly.crx
c:\program files (x86)\DealPly\DealPly.xpi
c:\program files (x86)\DealPly\DealPlyIE.dll
c:\program files (x86)\DealPly\DealPlyIE64.dll
c:\program files (x86)\DealPly\DealPlyUpdateVer.exe
c:\program files (x86)\DealPly\icon.ico
c:\program files (x86)\DealPly\uninst.exe
c:\programdata\Wincert\WIN32C~1.DLL
c:\users\Julia\AppData\Local\lollipop
c:\users\Julia\AppData\Local\lollipop\Lollipop.exe
c:\users\Julia\AppData\Local\Minibar
c:\users\Julia\AppData\Local\Minibar\chrome.json
c:\users\Julia\AppData\Local\Minibar\chrome.pem
c:\users\Julia\AppData\Local\Minibar\chrome\background.html
c:\users\Julia\AppData\Local\Minibar\chrome\cached_http_request.js
c:\users\Julia\AppData\Local\Minibar\chrome\extension_info.json
c:\users\Julia\AppData\Local\Minibar\chrome\icons\icon128.png
c:\users\Julia\AppData\Local\Minibar\chrome\icons\icon19.png
c:\users\Julia\AppData\Local\Minibar\chrome\icons\icon32.png
c:\users\Julia\AppData\Local\Minibar\chrome\icons\icon48.png
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_kango.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_menu.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_messaging.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_pageutils.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_popup.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_toolbar.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_toolbar_customfixes.js
c:\users\Julia\AppData\Local\Minibar\chrome\includes\content_userscript.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango-ui\button.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango-ui\toolbar.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango-ui\ui.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\browser.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\console.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\event_listener.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\initialize.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\io.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\jsonstorage.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\kango.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\lang.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\messaging.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\userscript_engine.js
c:\users\Julia\AppData\Local\Minibar\chrome\kango\xhr.js
c:\users\Julia\AppData\Local\Minibar\chrome\main.js
c:\users\Julia\AppData\Local\Minibar\chrome\manifest.json
c:\users\Julia\AppData\Local\Minibar\chrome\minibar\actions.js
c:\users\Julia\AppData\Local\Minibar\chrome\minibar\cachedxhr.js
c:\users\Julia\AppData\Local\Minibar\chrome\minibar\config.js
c:\users\Julia\AppData\Local\Minibar\chrome\minibar\macros.js
c:\users\Julia\AppData\Local\Minibar\chrome\minibar\minibar.js
c:\users\Julia\AppData\Local\Minibar\chrome\MinibarPlugin.dll
c:\users\Julia\AppData\Local\Minibar\chrome\popup.html
c:\users\Julia\AppData\Local\Minibar\chrome\popup.js
c:\users\Julia\AppData\Local\Minibar\chrome\tab.html
c:\users\Julia\AppData\Local\Minibar\chrome\tab.js
c:\users\Julia\AppData\Local\Minibar\chrome_installer.js
c:\users\Julia\AppData\Local\Minibar\common.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome.manifest
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\content.xul
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\extension_info.json
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\icons\icon128.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\icons\icon19.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\icons\icon32.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\icons\icon48.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\initial_config.json
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\button.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.xul
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-left.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-middle.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-right.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-left.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-right.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\style.css
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-bottom.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-left.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-right.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-top.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-left.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-middle.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-right.png
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar_stub.html
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango-ui\ui.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\browser.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\console.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\event_listener.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\initialize.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\io.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\jsonstorage.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\kango.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\lang.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\messaging.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\storage.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\uninstall_observer.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\userscript_engine.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\kango\xhr.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\main.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\actions.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\cachedxhr.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\config.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\homepage_helper.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\macros.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\minibar.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\search_helper.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\search_hook.js
c:\users\Julia\AppData\Local\Minibar\firefox\chrome\content\minibar\tabpage_helper.js
c:\users\Julia\AppData\Local\Minibar\firefox\install.rdf
c:\users\Julia\AppData\Local\Minibar\firefox\plugins\npMinibarPlugin.dll
c:\users\Julia\AppData\Local\Minibar\firefox_installer.js
c:\users\Julia\AppData\Local\Minibar\ie_installer.js
c:\users\Julia\AppData\Local\Minibar\minibar.crx
c:\users\Julia\AppData\Local\Minibar\minibar.xpi
c:\users\Julia\AppData\Local\Minibar\SettingsHelper.exe
c:\users\Julia\AppData\Local\Minibar\Uninstall.exe
c:\users\Julia\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome.manifest
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\asyncDB.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\background.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\browserAction.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\contextMenu.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\dbManager.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\dom_bg.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\fileManager.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\firefox.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\firefoxNotifications.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\firefoxOmnibox.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\message.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\pageAction.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\request.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\tabs.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\api\webRequest.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\background.html
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\baseObject.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\browser.xul
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\console.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\consts.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\delegate.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\extensionDataStore.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\folderIOWrapper.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\httpObserver.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\IDBWrapper.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\installer.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\logFile.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\prefs.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\progressListenerObserver.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\registry.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\reloadObserver.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\reports.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\requestObject.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\searchSettings.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\uninstallObserver.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\updateManager.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\utils.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\core\xhr.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\dialog.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\main.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\options.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\options.xul
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\chrome\content\search_dialog.xul
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\defaults\preferences\prefs.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\manifest.xml
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins.json
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\1_base.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\102_dealply_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\103_intext_5_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\105_corticas_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\108_icm_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\119_similar_web_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\120_luck_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\138_getdeal_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\155_ibario_pops_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\17_jQuery.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\180_bpo_serp_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\184_noproblemppc_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\189_active_sanity.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\190_pops_5_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\191_ciuvo_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\194_retargeting_bi_m.js.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\21_debug.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\22_resources.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\28_initializer.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\47_resources_background.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\64_appApiMessage.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\7_hooks.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\72_appApiValidation.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\plugins\98_omniCommands.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\userCode\background.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\extensionData\userCode\extension.js
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\install.rdf
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\locale\en-US\translations.dtd
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\button1.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\button2.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\button3.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\button4.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\button5.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\crossrider_statusbar.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\icon128.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\icon16.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\icon24.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\icon48.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\panelarrow-up.png
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\popup.html
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\skin.css
c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com\skin\update.css
c:\windows\SysWow64\FlashPlayerApp.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-10-25 bis 2013-11-25 ))))))))))))))))))))))))))))))
.
.
2013-11-25 16:04 . 2013-11-25 16:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-11-24 11:58 . 2013-11-24 11:58 -------- d-----w- C:\FRST
2013-11-23 11:06 . 2013-11-23 11:06 280752 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10226.bin
2013-11-23 11:06 . 2013-11-23 11:06 -------- d-----w- c:\users\Julia\AppData\Roaming\Malwarebytes
2013-11-23 11:03 . 2013-11-23 11:03 -------- d-----w- c:\programdata\Malwarebytes
2013-11-23 11:03 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-11-23 11:03 . 2013-11-23 11:03 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-11-23 11:03 . 2013-11-23 11:03 -------- d-----w- c:\users\Julia\AppData\Local\Programs
2013-11-16 14:04 . 2013-11-16 14:05 -------- d-----w- c:\users\Julia\privat
2013-11-15 09:26 . 2013-11-15 09:26 -------- d-----w- c:\users\Julia\AppData\Local\Mendeley Ltd
2013-11-15 09:25 . 2013-11-15 09:26 -------- d-----w- c:\program files (x86)\Mendeley Desktop
2013-11-14 12:55 . 2013-10-01 23:37 2035712 ----a-w- c:\windows\SysWow64\authui.dll
2013-11-14 12:55 . 2013-10-01 23:26 2304512 ----a-w- c:\windows\system32\authui.dll
2013-11-14 12:55 . 2013-08-23 07:22 2062848 ----a-w- c:\windows\system32\d3d11.dll
2013-11-14 12:55 . 2013-08-23 01:44 1711616 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-11-14 09:29 . 2013-10-01 23:37 1569280 ----a-w- c:\windows\SysWow64\crypt32.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-15 02:01 . 2013-09-10 11:20 82896128 ----a-w- c:\windows\system32\MRT.exe
2013-11-05 22:58 . 2013-09-18 16:18 78296 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-09-10 13:08 . 2013-09-10 13:08 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-09-10 13:08 . 2013-02-04 20:58 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-09-10 13:08 . 2013-02-04 20:58 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-09-10 09:53 . 2013-09-10 09:53 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-09-10 09:52 . 2013-09-10 09:52 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-09-10 09:50 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-08-30 07:48 . 2013-09-10 11:29 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2013-09-10 11:29 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2013-09-10 11:29 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2013-09-10 11:28 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2013-09-10 11:28 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2013-09-10 11:28 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2013-09-10 11:29 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2013-09-10 11:28 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2013-09-10 11:27 41664 ----a-w- c:\windows\avastSS.scr
2013-08-30 07:47 . 2013-09-10 11:28 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-28 13:21 . 2013-08-28 13:21 83024 ----a-w- c:\windows\SysWow64\mfcm110u.dll
2013-08-28 13:21 . 2013-08-28 13:21 252400 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2013-08-28 13:21 . 2013-08-28 13:21 875472 ----a-w- c:\windows\SysWow64\msvcr110.dll
2013-08-28 13:21 . 2013-08-28 13:21 83016 ----a-w- c:\windows\SysWow64\mfcm110.dll
2013-08-28 13:21 . 2013-08-28 13:21 535008 ----a-w- c:\windows\SysWow64\msvcp110.dll
2013-08-28 13:21 . 2013-08-28 13:21 4456520 ----a-w- c:\windows\SysWow64\mfc110u.dll
2013-08-28 13:21 . 2013-08-28 13:21 164424 ----a-w- c:\windows\SysWow64\atl110.dll
2013-08-28 13:21 . 2013-08-28 13:21 90192 ----a-w- c:\windows\system32\mfcm110u.dll
2013-08-28 13:21 . 2013-08-28 13:21 90184 ----a-w- c:\windows\system32\mfcm110.dll
2013-08-28 13:21 . 2013-08-28 13:21 354264 ----a-w- c:\windows\system32\vccorlib110.dll
2013-08-28 13:21 . 2013-08-28 13:21 849360 ----a-w- c:\windows\system32\msvcr110.dll
2013-08-28 13:21 . 2013-08-28 13:21 5619784 ----a-w- c:\windows\system32\mfc110u.dll
2013-08-28 13:21 . 2013-08-28 13:21 192584 ----a-w- c:\windows\system32\atl110.dll
2013-08-28 13:21 . 2013-08-28 13:21 5592648 ----a-w- c:\windows\system32\mfc110.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110311201102}]
2013-10-20 12:32 594280 ----a-w- c:\program files (x86)\Plus-HD-1.6\Plus-HD-1.6-bho.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}]
2013-08-19 20:28 92560 ----a-w- c:\progra~2\MOVIES~1\SAFETY~1\SRTOOL~1\IE\searchresultsDx.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{9598e82a-7e09-4438-b425-b9e9718c3c73}]
2013-10-05 01:02 249632 ----a-w- c:\program files (x86)\glindorus\glindorusBHO.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}]
2013-09-19 05:23 331264 ----a-w- c:\program files (x86)\Minibar\Minibar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{3444c3c5-6c56-4a16-a453-832b05bf6ea4}"= "c:\progra~2\MOVIES~1\SAFETY~1\SRTOOL~1\IE\searchresultsDx.dll" [2013-08-19 92560]
.
[HKEY_CLASSES_ROOT\clsid\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SDP"="c:\users\Julia\AppData\Local\FilesFrog Update Checker\update_checker.exe" [2013-01-31 201808]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2012-08-17 68776]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2012-07-27 724576]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Intel AppUp(R) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2013-07-17 156000]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"CanonQuickMenu"="c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" [2012-09-27 1279120]
"Iminent"="c:\program files (x86)\Iminent\Iminent.exe" [2013-10-16 1074736]
"IminentMessenger"="c:\program files (x86)\Iminent\Iminent.Messengers.exe" [2013-10-16 884784]
"20131121"="c:\program files\AVAST Software\Avast\setup\emupdate\2cf0cc93-abbd-472e-ba07-f151a2951a61.exe" [2013-11-23 180184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 dealplylive;DealPly Live-Dienst (dealplylive);c:\program files (x86)\DealPlyLive\Update\DealPlyLive.exe;c:\program files (x86)\DealPlyLive\Update\DealPlyLive.exe [x]
R2 McOobeSv2;McAfee OOBE Service2;c:\program files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe;c:\program files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [x]
R3 dealplylivem;DealPly Live-Dienst (dealplylivem);c:\program files (x86)\DealPlyLive\Update\DealPlyLive.exe;c:\program files (x86)\DealPlyLive\Update\DealPlyLive.exe [x]
R3 e1yexpress;Intel(R) Gigabit-Netzwerkverbindungstreiber;c:\windows\system32\DRIVERS\e1y60x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1y60x64.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 NetworkSupport;NetworkSupport;c:\program files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe;c:\program files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [x]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
R3 SOHCImp;VAIO Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [x]
R3 SOHDms;VAIO Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [x]
R3 SOHDs;VAIO Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [x]
R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [x]
R3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe;c:\program files\Sony\VAIO Power Management\SPMService.exe [x]
R3 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 SafetyNutManager;SafetyNut Manager;c:\program files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe;c:\program files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe [x]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe;c:\program files\Sony\VAIO Care\VCPerfService.exe [x]
S2 SProtection;SProtection;c:\program files (x86)\Common Files\Umbrella\umbrella.exe;c:\program files (x86)\Common Files\Umbrella\umbrella.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 Update glindorus;Update glindorus;c:\program files (x86)\glindorus\updateglindorus.exe;c:\program files (x86)\glindorus\updateglindorus.exe [x]
S2 Util glindorus;Util glindorus;c:\program files (x86)\glindorus\bin\utilglindorus.exe;c:\program files (x86)\glindorus\bin\utilglindorus.exe [x]
S2 WajamUpdater;WajamUpdater;c:\program files (x86)\Wajam\Updater\WajamUpdater.exe;c:\program files (x86)\Wajam\Updater\WajamUpdater.exe [x]
S2 ZAtheros Bt and Wlan Coex Agent;ZAtheros Bt and Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
S3 BTATH_VDP;Bluetooth VDP Driver;c:\windows\system32\drivers\btath_vdp.sys;c:\windows\SYSNATIVE\drivers\btath_vdp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\System32\drivers\SFEP.sys;c:\windows\SYSNATIVE\drivers\SFEP.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 SOWS;Sony Wireless State Device;c:\windows\System32\drivers\sows.sys;c:\windows\SYSNATIVE\drivers\sows.sys [x]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe;c:\program files\Sony\VAIO Care\VCService.exe [x]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update\VUAgent.exe;c:\program files\Sony\VAIO Update\VUAgent.exe [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2013-09-05 14:04 215416 ----a-w- c:\program files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll
.
Inhalt des "geplante Tasks" Ordners
.
2013-11-25 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-28 17:39]
.
2013-11-25 c:\windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job
- c:\program files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-10-05 13:17]
.
2013-11-25 c:\windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job
- c:\program files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-10-05 13:17]
.
2013-11-25 c:\windows\Tasks\Plus-HD-1.6-codedownloader.job
- c:\program files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe [2013-10-20 12:32]
.
2013-11-25 c:\windows\Tasks\Plus-HD-1.6-enabler.job
- c:\program files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe [2013-10-20 12:32]
.
2013-11-25 c:\windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
- c:\program files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe [2013-10-20 12:32]
.
2013-11-25 c:\windows\Tasks\Plus-HD-1.6-updater.job
- c:\program files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe [2013-10-20 12:32]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-10-10 1214608]
"BtTray"="c:\program files (x86)\Bluetooth Suite\BtTray.exe" [2012-11-05 766080]
"BtvStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-11-05 127616]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-11-12 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-11-12 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-11-12 441152]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://sony13.msn.com
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: {{AAA38851-3CFF-475F-B5E0-720D3645E4A5} - {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - c:\program files (x86)\Minibar\Minibar.dll
TCP: DhcpNameServer = 195.234.128.7 195.234.128.16
FF - ProfilePath - c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\
FF - prefs.js: browser.startup.homepage - http://www.trojaner-board.de/newrepl...te=1&p=1199986
FF - ExtSQL: 2013-10-05 03:02; firefox@glindorus.net; c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\firefox@glindorus.net.xpi
FF - ExtSQL: 2013-10-05 15:17; {906000a4-88d9-4d52-b209-7a772970d91f}; c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\{906000a4-88d9-4d52-b209-7a772970d91f}
FF - ExtSQL: 2013-10-05 16:16; {3444c3c5-6c56-4a16-a453-832b05bf6ea4}; c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\{3444c3c5-6c56-4a16-a453-832b05bf6ea4}
FF - ExtSQL: 2013-10-05 16:20; {97A78363-B868-4B48-AC91-A783A31215AF}; c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\{97A78363-B868-4B48-AC91-A783A31215AF}
FF - ExtSQL: 2013-10-20 14:31; webbooster@iminent.com; c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\webbooster@iminent.com.xpi
FF - ExtSQL: 2013-11-25 09:51; {73a6fe31-595d-460b-a920-fcc0f8843232}; c:\users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\ztqxmob0.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF - user.js: extensions.ominent.tlbrSrchUrl - hxxp://search.ominent.com/ws/?source=9f1d0980&tbp=main&toolbarid=base&u=76208859000000000000a41731e5bd82&q=
FF - user.js: extensions.ominent.id - 76208859000000000000a41731e5bd82
FF - user.js: extensions.ominent.appId - {9A246976-806F-4B2E-B3B9-A9A58F5685AA}
FF - user.js: extensions.ominent.instlDay - 15983
FF - user.js: extensions.ominent.vrsn - 1.8.25.6
FF - user.js: extensions.ominent.vrsni - 1.8.25.6
FF - user.js: extensions.ominent.vrsnTs - 1.8.25.615:16
FF - user.js: extensions.ominent.prtnrId - ominent
FF - user.js: extensions.ominent.prdct - ominent
FF - user.js: extensions.ominent.aflt - wedlmDefBrowser
FF - user.js: extensions.ominent.smplGrp - Oct2013
FF - user.js: extensions.ominent.tlbrId - base
FF - user.js: extensions.ominent.instlRef - 9f1d0980
FF - user.js: extensions.ominent.dfltLng -
FF - user.js: extensions.ominent.excTlbr - false
FF - user.js: extensions.ominent.ffxUnstlRst - false
FF - user.js: extensions.ominent.admin - false
FF - user.js: extensions.ominent.cam -
FF - user.js: extensions.ominent.autoRvrt - false
FF - user.js: extensions.ominent.rvrt - true
FF - user.js: extensions.ominent.newTab - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-AppsHat - c:\users\Julia\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
Wow6432Node-HKCU-Run-Apps Hat - c:\users\Julia\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
Toolbar-10 - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-DealPly - c:\program files (x86)\DealPly\uninst.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=10000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1\" \"/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"&\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\%C3 & Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfeeEx]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Zeit der Fertigstellung: 2013-11-25 17:07:16
ComboFix-quarantined-files.txt 2013-11-25 16:07
.
Vor Suchlauf: 11 Verzeichnis(se), 652.960.878.592 Bytes frei
Nach Suchlauf: 13 Verzeichnis(se), 652.979.740.672 Bytes frei
__________________
Antwort

Themen zu neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig
anhänge, avast, dateien, daten, erstellt, format, forum, hallo zusammen, hängen, infizierte, logfile, neue, neue seite, neuinstallation, rechner, relativ, rvzr-a.akamaihd.net, seite, seiten, surfen, themen, tipps, verlieren, zurücksetzen, zusammen, öffnen, öffnet


« Malwarebytes findet desöfteren infizierte Objekte: PUP.Optional... | Windows 7: Win32:Evo-gen[Susp] »


Ähnliche Themen: neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig


  1. Ständig öffnen sich neue Internet-Fenster
    Plagegeister aller Art und deren Bekämpfung - 14.09.2015 (48)
  2. Ständig öffnen sich neue Werbebanner (Chrome)
    Plagegeister aller Art und deren Bekämpfung - 14.03.2015 (17)
  3. Windows 7: Ständig neue Werbeanzeigen sowie neue Fenster öffnen sich in Chrome
    Plagegeister aller Art und deren Bekämpfung - 12.03.2015 (15)
  4. Chrome und Internet Explorer öffnen ständig neue Seiten
    Plagegeister aller Art und deren Bekämpfung - 17.01.2015 (5)
  5. Windows 7: Ständig neue Werbeanzeigen sowie neue Fenster öffnen sich in Chrome.
    Plagegeister aller Art und deren Bekämpfung - 13.01.2015 (10)
  6. [Google Chrome]Neue Seiten öffnen sich automatisch ( Werbung ) zufällige wörter jeder Internet seiten sind mit URL's verseht
    Plagegeister aller Art und deren Bekämpfung - 01.04.2014 (5)
  7. Banner rvzr-a.akamaihd.net wird ständig gestartet.
    Plagegeister aller Art und deren Bekämpfung - 24.03.2014 (5)
  8. Vista: Webseiten öffnen automatsich: rvzr-a.akamaihd, onlinewebfind oder fastdailyfind
    Log-Analyse und Auswertung - 19.03.2014 (16)
  9. Tab mit "http://rvzr-a.akamaihd.net" öffnen sich im Browser
    Plagegeister aller Art und deren Bekämpfung - 15.02.2014 (49)
  10. Firefox öffnet http://static.icmapp.com und rvzr-a.akamaihd.net Seiten
    Plagegeister aller Art und deren Bekämpfung - 19.01.2014 (8)
  11. Adware? ständig öffnen sich (Werbe)fenster akamaihd.net und Seiten werden nicht korrekt angezeigt PLUSHD6
    Plagegeister aller Art und deren Bekämpfung - 04.12.2013 (9)
  12. Ask Toobar lässt sich nicht deinstallieren + die Seite: "http://rvzr-a.akamaihd.net" öffnet sich ständig - Was kann ich tun?
    Plagegeister aller Art und deren Bekämpfung - 03.12.2013 (13)
  13. Nervige Popups und Werbeinblendungen auf ALLEn Firefox & IE Seiten von rvzr-a.akamaihd.net
    Log-Analyse und Auswertung - 28.11.2013 (15)
  14. http://rvzr-a.akamaihd.net öffnet sich permanent
    Log-Analyse und Auswertung - 19.11.2013 (9)
  15. Ständig öffnen sich unerwünscht neue Fenster/Internet-Seiten
    Log-Analyse und Auswertung - 05.12.2009 (5)
  16. Es öffnen sich ständig neue Seiten - Firefox
    Log-Analyse und Auswertung - 26.12.2008 (0)
  17. Es öffnen sich einfach neue Seiten !!!
    Mülltonne - 28.06.2008 (0)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig - Wenn Avast anzeigt es ist deaktiviert dann kannst du die Meldunf von Combofix ignorieren und ok klicken. - neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig...
Archiv
Du betrachtest: neue Seiten mit rvzr-a.akamaihd.net öffnen sich ständig auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131