Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: laptop sehr langsam, definitiver befall von plagegeistern

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 30.06.2014, 22:11   #1
deside
 
laptop sehr langsam, definitiver befall von plagegeistern - Standard

laptop sehr langsam, definitiver befall von plagegeistern



Guten Abend,

mein Laptop ist befallen mit vielen Plagegeistern. Deswegen bitte ich hier um Hilfe.
Laut einer Anleitung aus dem Thread "Laptop wird immer langsamer" habe ich jetzt einen Scan mit FRST durchgeführt. Hier der Log:

Additional.txt
Zitat:
Additional scan result of Farbar Recovery Scan Tool (x86) Version:28-06-2014 02
Ran by DESIDERABILIS at 2014-06-16 23:45:57
Running from C:\Users\DESIDERABILIS\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
ArcSoft WebCam Companion 3 (HKLM\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.193 - ArcSoft)
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2018 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Foxy Secure (HKLM\...\Foxy Secure) (Version: - )
Installer (HKLM\...\VOPackage) (Version: 1.0.0.0 - ) <==== ATTENTION
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2117 - Intel Corporation)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft SQL Server Compact 3.5 SP1 English (HKLM\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{62F7DA7E-CCCB-439C-A760-00C3926E761F}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 de) (HKLM\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Oceanis Change Background Windows 7 (HKLM\...\Oceanis Change Background Windows 7_is1) (Version: 1.0 - Oceanis)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5911 - Realtek Semiconductor Corp.)
Sony Home Network Library (Version: 2.0.1.10160 - Sony Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.2.0 - Synaptics Incorporated)
VAIO Care (HKLM\...\{21CCA571-B47E-44BF-978C-CBF1E8062AD3}) (Version: 8.4.0.14280 - Sony Corporation)
VAIO Control Center (HKLM\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.1.0.10160 - Sony Corporation)
VAIO Energie Verwaltung (HKLM\...\{803E4FA5-A940-4420-B89D-A8BC2E160247}) (Version: 5.0.0.11300 - Sony Corporation)
VAIO Gate Default (HKLM\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 1.0.0.10290 - Sony Corporation)
VAIO Hardware Diagnostics (Version: 3.9.1 - Sony Corporation) Hidden
VAIO Premium Partners (HKLM\...\VAIO Premium Partners) (Version: 1.0 - Sony Europe)
VAIO Smart Network (HKLM\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.3.1.08110 - Sony Corporation)
VAIO Update (HKLM\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.0.0.14270 - Sony Corporation)
VU5x86 (Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.500 - Broadcom Corporation)
Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) (HKLM\...\BFEE6FC237B51D7CD2E0A40D81E188A6ED95001F) (Version: 09/09/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\BF20603967CFDCB2BBF91950E8A56DFBC5C833FE) (Version: 07/28/2009 6.2.0.9800 - Broadcom)

==================== Restore Points =========================

16-01-2014 16:32:26 Removed Microsoft Silverlight
16-01-2014 16:32:46 avast! antivirus system restore point
16-01-2014 16:35:35 Microsoft Office PowerPoint Viewer 2007 (German) wird entfernt
16-01-2014 16:37:20 Entfernt VAIO Content Monitoring Settings
16-01-2014 16:38:04 削除 PMB
16-01-2014 16:40:16 Windows Live-Uploadtool wird entfernt
16-01-2014 16:40:57 Entfernt VAIO Gate
16-01-2014 16:42:20 Entfernt VAIO Original Function Settings
16-01-2014 16:44:55 Removed Evernote
16-01-2014 16:45:16 Windows Live Sync wird entfernt
16-01-2014 16:47:07 Entfernt Setting Utility Series
16-01-2014 16:53:48 Windows Live Anmelde-Assistent wird entfernt
16-01-2014 16:54:53 Windows Live Anmelde-Assistent wird entfernt
16-01-2014 16:56:52 Entfernt VAIO Transfer Support
16-01-2014 16:58:00 Entfernt VAIO Media plus Opening Movie
16-01-2014 16:59:24 Entfernt VAIO Media plus
16-01-2014 17:01:29 Entfernt VAIO Entertainment Platform
16-01-2014 17:02:59 Removed MusicStation.
16-01-2014 17:04:42 Entfernt VAIO Content Metadata Intelligent Analyzing Manager
16-01-2014 17:06:18 Entfernt VAIO Content Metadata Intelligent Network Service Managje½P
16-01-2014 17:07:29 Entfernt VAIO Content Metadata Manager Settings
16-01-2014 17:09:39 Entfernt VAIO Content Metadata XML Interface Library
16-01-2014 17:11:26 Entfernt VAIO Data Restore Tool
16-01-2014 17:16:12 Entfernt VAIO Event Service
16-06-2014 20:49:34 Windows Update
16-06-2014 20:50:46 Entfernt VAIO Update
16-06-2014 20:53:32 Installiert VAIO Update
16-06-2014 21:35:08 Uniblue SpeedUpMyPC installation
16-06-2014 21:45:01 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {055FA014-6B57-4D0C-B910-18350DB0340B} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-11-30] (Sony Corporation)
Task: {06D07928-E5E1-46E9-8501-29629BDCD547} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {2B3134E4-7350-43B1-963C-FA9A5EBA7E67} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2014-02-28] (Sony Corporation)
Task: {37CE6AD6-DE11-4F1D-B796-1D93A05555A1} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {3F6EB48C-6FE6-45FE-8F19-C263CB99D9F6} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2014-02-27] (Sony Corporation)
Task: {427BC80D-E50E-469F-9F2D-EBFB3143FEE1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-16] (AVAST Software)
Task: {42ED48AA-E864-4AA0-8782-6E9FA258DA71} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {57B47B96-660C-424D-848D-A57DC47C4E83} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {58CCAEFE-F4A8-44F5-87FB-9B27BDBA8A0B} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {65F0BEE3-FF62-47F5-AA28-0539A0E46D06} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {753B14BB-877D-4D0E-B867-45A97CE3DBB3} - \FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl No Task File <==== ATTENTION
Task: {765C2054-E5E2-4378-B533-13B31DF27B16} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {85A90B53-E702-4CB8-824A-F227A2E45A10} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-11-30] (Sony Corporation)
Task: {94E824F3-28D7-496D-B4C1-05227B2D8DC2} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {9EB37865-E0BC-46E9-BBE7-D3B299FE8D57} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {A758510B-A676-46DE-A640-F68EF0E9593B} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"
Task: {B2F37CDA-B49E-4609-8DB1-D9AFBE8A81B5} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2014-01-16] (Sony Corporation)
Task: {B534FF0E-7934-4944-86D7-52075C223D61} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-11-30] (Sony Corporation)
Task: {C5CE22AA-0878-485D-8CB3-54DDCDC85312} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {CE8D5BF0-CDEA-4184-8550-457B9B9AE4D7} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2014-02-27] (Sony Corporation)
Task: {E03A590D-676C-4EBD-A17F-F8762EFAA4DB} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-02-20] (Sony Corporation)
Task: {F000841C-4342-42F6-8DEB-8929BAFA38F6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-16] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-06-17 00:10 - 2014-06-17 00:10 - 02789376 _____ () C:\Program Files\AVAST Software\Avast\defs\14063001\algo.dll
2014-06-16 23:54 - 2014-06-16 23:54 - 00374272 _____ () C:\Users\DESIDERABILIS\AppData\Roaming\Win System\sub\default.dll
2014-01-16 18:36 - 2014-01-16 18:36 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-16 23:40 - 2014-06-16 23:40 - 03852912 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: SOHCImp => 3
MSCONFIG\Services: SOHDBSvr => 3
MSCONFIG\Services: SOHDms => 3
MSCONFIG\Services: SOHDs => 3
MSCONFIG\Services: SOHPlMgr => 3
MSCONFIG\Services: uCamMonitor => 2
MSCONFIG\Services: VcmIAlzMgr => 3
MSCONFIG\Services: VcmINSMgr => 3
MSCONFIG\Services: VcmXmlIfHelper => 3

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (06/16/2014 11:34:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Energy Server Service" wurde mit folgendem Fehler beendet:
%%268439612

Error: (06/16/2014 11:32:01 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 70%
Total physical RAM: 1013.11 MB
Available physical RAM: 299.57 MB
Total Pagefile: 7013.11 MB
Available Pagefile: 6233.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1917.07 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:226 GB) (Free:191.77 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 233 GB) (Disk ID: BC28DEF7)
Partition 1: (Not Active) - (Size=7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=226 GB) - (Type=07 NTFS)

==================== End Of Log ===========================
hier ist der zweite log, FRST.txt:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:28-06-2014 02
Ran by DESIDERABILIS (administrator) on DESIDERABILIS83 on 16-06-2014 23:43:15
Running from C:\Users\DESIDERABILIS\Downloads
Platform: Microsoft Windows 7 Starter  Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool 
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Handle) C:\Users\DESIDERABILIS\AppData\Roaming\Win System\handle.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Oceanis) C:\Program Files\Oceanis\SystemSetting\WallPaperAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-01-16] (AVAST Software)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7703072 2009-09-08] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1557800 2009-10-13] (Synaptics Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll (Sony Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [280576 2013-06-06] (Microsoft Corporation)
HKU\S-1-5-21-2398524569-3030390016-3527150408-1000\...\Winlogon: [Shell] C:\Program Files\Oceanis\SystemSetting\WallPaperAgent.exe [115888 2009-12-10] (Oceanis) <==== ATTENTION 
IFEO\DatamngrCoordinator.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
BootExecute: autocheck autochk * autocheck iolorgdf32 C:\Users\DESIDERABILIS\AppData\Roaming\iolo\

==================== Internet (Whitelisted) ====================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1402954425&from=tugs&uid=TOSHIBAXMK2565GSX_6028C0FPTXX6028C0FPT&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - {05022ED8-5124-48F2-85CA-357D1195F5C6} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=56eaeaf3-91b5-453c-90dc-cef74b84b753&apn_sauid=0D34198F-312C-4816-A2CB-50680207FA46
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.iminent.com/?appId=03FBFF9F-5F8B-488E-A978-2FF5E7DD4413&ref=toolbox&q={searchTerms}
SearchScopes: HKCU - {2B271B78-8101-48CD-86EC-D7B768B7BDB5} URL = Shopping.com Deutschland - der große Produkt- und Preisvergleich
SearchScopes: HKCU - {460C3D19-B3D4-4964-A550-77D263B0CCCB} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=foxysecurity
SearchScopes: HKCU - {9DCF2AF7-6CD0-4EC0-BA4B-279DC8D92715} URL = hxxp://www.zinio.com/search/index.jsp?s={searchTerms}&rf=sonyie8search
SearchScopes: HKCU - {CA312EE5-C420-4FF0-98BA-9C748B74695E} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-0/4?satitle={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows 7 Starter Helper - {D381FF29-7CFB-4D4E-B92A-C4EDDC696614} - C:\Program Files\Oceanis\SystemSetting\StarterHelper.dll (Oceanis)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: webssearches
FF SelectedSearchEngine: webssearches
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\Sony\MSS\3.8.130\npMcAfeeMss.dll No File
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\user.js
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Foxy Secure - C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\Extensions\admin@foxysecure.com [2014-06-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-16]

========================== Services (Whitelisted) =================

ATTENTION: => Could not perform signature verification. Cryptographic Service is not running.

S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-02-06] (ArcSoft Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-16] (AVAST Software)
S2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [350120 2013-05-29] (Intel Corporation)
R2 HandleService; C:\Users\DESIDERABILIS\AppData\Roaming\Win System\handle.exe [637952 2014-06-10] (Handle)
S3 McComponentHostServiceSony; C:\Program Files\Sony\MSS\3.8.130\McCHSvc.exe [235216 2013-10-16] (McAfee, Inc.)
R3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [350120 2013-05-29] (Intel Corporation)
R3 VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [513392 2009-11-30] (Sony Corporation)
R3 VCService; C:\Program Files\Sony\VAIO Care\VCService.exe [60504 2014-02-20] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [708608 2010-08-11] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1228336 2014-02-27] (Sony Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-01-16] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-01-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-01-16] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-01-16] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2014-01-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2014-01-16] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [68312 2014-01-16] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-01-16] ()
R2 rimspci; C:\Windows\system32\drivers\rimssne86.sys [73216 2009-10-29] (REDC)
R2 risdsnpe; C:\Windows\system32\drivers\risdsne86.sys [46592 2009-10-29] (REDC)
S4 MpKslf3e71aee; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CF850DEE-C819-42D6-A3AD-2150FEF0034E}\MpKslf3e71aee.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-16 23:57 - 2014-06-16 23:57 - 00002008 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oceanis Change Background W7.lnk
2014-06-16 23:57 - 2014-06-16 23:57 - 00000000 ____D () C:\Program Files\Oceanis
2014-06-16 23:54 - 2014-06-16 23:54 - 00000000 __SHD () C:\Users\DESIDERABILIS\AppData\Local\EmieUserList
2014-06-16 23:54 - 2014-06-16 23:54 - 00000000 __SHD () C:\Users\DESIDERABILIS\AppData\Local\EmieSiteList
2014-06-16 23:54 - 2014-06-16 23:54 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\Win System
2014-06-16 23:54 - 2014-06-16 23:31 - 00000000 ____D () C:\Program Files\Common Files\Umbrella
2014-06-16 23:54 - 2014-06-16 23:31 - 00000000 ____D () C:\Program Files\Common Files\IMGUpdater
2014-06-16 23:53 - 2014-06-16 23:54 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\Security Systems
2014-06-16 23:43 - 2014-06-16 23:44 - 00010467 _____ () C:\Users\DESIDERABILIS\Downloads\FRST.txt
2014-06-16 23:42 - 2014-06-16 23:43 - 00000000 ____D () C:\FRST
2014-06-16 23:42 - 2014-06-16 23:42 - 00078760 _____ () C:\Users\DESIDERABILIS\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-16 23:42 - 2014-06-16 23:40 - 00000030 _____ () C:\AVScanner.ini
2014-06-16 23:41 - 2014-06-16 23:41 - 02083328 _____ (Farbar) C:\Users\DESIDERABILIS\Downloads\FRST64.exe
2014-06-16 23:40 - 2014-06-16 23:40 - 01073664 _____ (Farbar) C:\Users\DESIDERABILIS\Downloads\FRST.exe
2014-06-16 23:40 - 2014-06-16 23:40 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-16 23:40 - 2014-06-16 23:31 - 00000000 ____D () C:\Program Files\Bench
2014-06-16 23:38 - 2014-06-16 23:38 - 00013566 _____ () C:\Users\DESIDERABILIS\Desktop\msconfig - Verknüpfung.lnk
2014-06-16 23:38 - 2014-06-16 23:38 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Local\com
2014-06-16 23:38 - 2014-06-16 23:36 - 00202204 _____ () C:\Windows\WindowsUpdate.log
2014-06-16 23:36 - 2014-06-16 23:37 - 00004192 _____ () C:\Users\DESIDERABILIS\Documents\cc_20140616_233642.reg
2014-06-16 23:36 - 2014-06-16 23:36 - 00001063 _____ () C:\Users\Public\Desktop\NewPlayer.lnk
2014-06-16 23:36 - 2014-06-16 23:36 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\SupTab
2014-06-16 23:36 - 2014-06-16 23:36 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-06-16 23:36 - 2014-06-16 23:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
2014-06-16 23:36 - 2014-06-16 23:31 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\VOPackage
2014-06-16 23:35 - 2014-06-16 23:35 - 00013341 _____ () C:\Users\DESIDERABILIS\Desktop\Festplatte defragmentieren - Verknüpfung.lnk
2014-06-16 23:32 - 2014-06-16 23:32 - 00000000 _____ () C:\END
2014-06-16 23:31 - 2014-06-16 23:31 - 00332264 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-16 23:31 - 2014-06-16 23:31 - 00046396 _____ () C:\Windows\PFRO.log
2014-06-16 23:31 - 2014-06-16 23:31 - 00000056 _____ () C:\Windows\setupact.log
2014-06-16 23:31 - 2014-06-16 23:31 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-16 23:10 - 2014-06-16 23:10 - 00002108 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
2014-06-16 23:10 - 2014-06-16 23:10 - 00000000 __RHD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2014-06-16 22:55 - 2014-06-16 22:55 - 00001145 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-06-16 22:50 - 2014-06-16 22:50 - 00000000 ___SD () C:\Windows\system32\CompatTel

==================== One Month Modified Files and Folders =======

2014-06-17 00:10 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-06-17 00:06 - 2009-07-14 04:04 - 00000537 _____ () C:\Windows\win.ini
2014-06-16 23:57 - 2014-06-16 23:57 - 00002008 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oceanis Change Background W7.lnk
2014-06-16 23:57 - 2014-06-16 23:57 - 00000000 ____D () C:\Program Files\Oceanis
2014-06-16 23:54 - 2014-06-16 23:54 - 00000000 __SHD () C:\Users\DESIDERABILIS\AppData\Local\EmieUserList
2014-06-16 23:54 - 2014-06-16 23:54 - 00000000 __SHD () C:\Users\DESIDERABILIS\AppData\Local\EmieSiteList
2014-06-16 23:54 - 2014-06-16 23:54 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\Win System
2014-06-16 23:54 - 2014-06-16 23:53 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\Security Systems
2014-06-16 23:52 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-06-16 23:49 - 2013-11-17 20:39 - 00000000 ____D () C:\Windows\pss
2014-06-16 23:48 - 2009-11-27 00:11 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-16 23:47 - 2013-05-27 09:58 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-16 23:44 - 2014-06-16 23:43 - 00010467 _____ () C:\Users\DESIDERABILIS\Downloads\FRST.txt
2014-06-16 23:43 - 2014-06-16 23:42 - 00000000 ____D () C:\FRST
2014-06-16 23:42 - 2014-06-16 23:42 - 00078760 _____ () C:\Users\DESIDERABILIS\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-16 23:41 - 2014-06-16 23:41 - 02083328 _____ (Farbar) C:\Users\DESIDERABILIS\Downloads\FRST64.exe
2014-06-16 23:41 - 2014-01-16 18:49 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-16 23:40 - 2014-06-16 23:42 - 00000030 _____ () C:\AVScanner.ini
2014-06-16 23:40 - 2014-06-16 23:40 - 01073664 _____ (Farbar) C:\Users\DESIDERABILIS\Downloads\FRST.exe
2014-06-16 23:40 - 2014-06-16 23:40 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-16 23:40 - 2013-05-27 09:58 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-16 23:40 - 2013-05-27 09:58 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-16 23:39 - 2009-07-14 06:34 - 00010464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-16 23:39 - 2009-07-14 06:34 - 00010464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-16 23:38 - 2014-06-16 23:38 - 00013566 _____ () C:\Users\DESIDERABILIS\Desktop\msconfig - Verknüpfung.lnk
2014-06-16 23:38 - 2014-06-16 23:38 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Local\com
2014-06-16 23:38 - 2013-07-31 22:15 - 00000000 ____D () C:\Users\DESIDERABILIS\Desktop\Untermietvertrag
2014-06-16 23:38 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-06-16 23:37 - 2014-06-16 23:36 - 00004192 _____ () C:\Users\DESIDERABILIS\Documents\cc_20140616_233642.reg
2014-06-16 23:36 - 2014-06-16 23:38 - 00202204 _____ () C:\Windows\WindowsUpdate.log
2014-06-16 23:36 - 2014-06-16 23:36 - 00001063 _____ () C:\Users\Public\Desktop\NewPlayer.lnk
2014-06-16 23:36 - 2014-06-16 23:36 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\SupTab
2014-06-16 23:36 - 2014-06-16 23:36 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-06-16 23:36 - 2014-06-16 23:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
2014-06-16 23:36 - 2013-07-31 00:44 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-06-16 23:35 - 2014-06-16 23:35 - 00013341 _____ () C:\Users\DESIDERABILIS\Desktop\Festplatte defragmentieren - Verknüpfung.lnk
2014-06-16 23:34 - 2013-05-26 18:20 - 00001335 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-16 23:34 - 2013-05-26 18:17 - 00001627 _____ () C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-16 23:32 - 2014-06-16 23:32 - 00000000 _____ () C:\END
2014-06-16 23:32 - 2013-05-26 17:31 - 00000000 ____D () C:\Update
2014-06-16 23:31 - 2014-06-16 23:54 - 00000000 ____D () C:\Program Files\Common Files\Umbrella
2014-06-16 23:31 - 2014-06-16 23:54 - 00000000 ____D () C:\Program Files\Common Files\IMGUpdater
2014-06-16 23:31 - 2014-06-16 23:40 - 00000000 ____D () C:\Program Files\Bench
2014-06-16 23:31 - 2014-06-16 23:36 - 00000000 ____D () C:\Users\DESIDERABILIS\AppData\Roaming\VOPackage
2014-06-16 23:31 - 2014-06-16 23:31 - 00332264 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-16 23:31 - 2014-06-16 23:31 - 00046396 _____ () C:\Windows\PFRO.log
2014-06-16 23:31 - 2014-06-16 23:31 - 00000056 _____ () C:\Windows\setupact.log
2014-06-16 23:31 - 2014-06-16 23:31 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-16 23:31 - 2013-05-26 18:20 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-16 23:31 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-16 23:31 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-06-16 23:10 - 2014-06-16 23:10 - 00002108 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
2014-06-16 23:10 - 2014-06-16 23:10 - 00000000 __RHD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2014-06-16 23:08 - 2014-01-16 18:29 - 00000000 ____D () C:\ProgramData\Sony
2014-06-16 22:56 - 2013-03-22 21:55 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-06-16 22:55 - 2014-06-16 22:55 - 00001145 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-06-16 22:54 - 2013-03-22 21:49 - 00000000 ____D () C:\Program Files\Sony
2014-06-16 22:54 - 2009-11-27 00:55 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-06-16 22:50 - 2014-06-16 22:50 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-08 10:48 - 2014-01-16 18:44 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 10:43 - 2014-01-16 18:44 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-01 18:18 - 2013-07-31 22:00 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-30 11:18 - 2014-01-16 18:50 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 11:02 - 2014-01-16 18:50 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 11:02 - 2014-01-16 18:50 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 10:44 - 2014-01-16 18:50 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 10:43 - 2014-01-16 18:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 10:42 - 2014-01-16 18:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 10:38 - 2014-01-16 18:50 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 10:34 - 2014-01-16 18:50 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 10:33 - 2014-01-16 18:50 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 10:30 - 2014-01-16 18:50 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 10:28 - 2014-01-16 18:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 10:28 - 2014-01-16 18:50 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 10:27 - 2014-01-16 18:50 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 10:21 - 2014-01-16 18:50 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 10:16 - 2014-01-16 18:50 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 10:10 - 2014-01-16 18:50 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-01-16 18:50 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:04 - 2014-01-16 18:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:02 - 2014-01-16 18:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 09:57 - 2014-01-16 18:50 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 09:56 - 2014-01-16 18:50 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 09:54 - 2014-01-16 18:50 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 09:50 - 2014-01-16 18:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 09:49 - 2014-01-16 18:50 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 09:40 - 2014-01-16 18:50 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:21 - 2014-01-16 18:50 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:15 - 2014-01-16 18:50 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:13 - 2014-01-16 18:50 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

Some content of TEMP:
====================
C:\Users\DESIDERABILIS\AppData\Local\Temp\BackupSetup.exe
C:\Users\DESIDERABILIS\AppData\Local\Temp\FoxySecure_IE_FF_12-02-2014_Version_5_Setup.exe
C:\Users\DESIDERABILIS\AppData\Local\Temp\vcredist_x86.exe
C:\Users\Gast\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-06-17 00:02

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 30.06.2014, 23:13   #2
deside
 
laptop sehr langsam, definitiver befall von plagegeistern - Daumen hoch

laptop sehr langsam, definitiver befall von plagegeistern



hier ist noch der log von MBAM, den ich vorher durchgeführt habe:

Zitat:
Malwarebytes Anti-Malware
Malwarebytes | Free Anti-Malware & Internet Security Software

Scan Date: 16.06.2014
Scan Time: 23:50:31
Logfile: MBAM-16.06.2014.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.16.06
Rootkit Database: v2014.06.02.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: DESIDERABILIS

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 280504
Time Elapsed: 23 min, 29 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 10
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, 1624, Delete-on-Reboot, [f92dc8b1daa10b2beacdbb9e12ef09f7]
PUP.Optional.IMGUpdater.A, C:\Program Files\Common Files\IMGUpdater\IMGUpdater.exe, 2028, Delete-on-Reboot, [b27415647b0080b652e39fe858a949b7]
PUP.Optional.Iminent, C:\Program Files\Common Files\Umbrella\Umbrella286.exe, 2588, Delete-on-Reboot, [5acc2a4fabd0e551f63351ba7a87c937]
PUP.Optional.Iminent, C:\Program Files\Common Files\Umbrella\Umbrella286.exe, 2708, Delete-on-Reboot, [5acc2a4fabd0e551f63351ba7a87c937]
Adware.Tuto4PC, C:\Program Files\fst_de_55\fst_de_55.exe, 3392, Delete-on-Reboot, [200611681c5f92a4e9248f7d3bc61ae6]
PUP.Optional.VOPackage.A, C:\Users\DESIDERABILIS\AppData\Roaming\VOPackage\VOsrv.exe, 2536, Delete-on-Reboot, [f5316316cbb0e94d7123e2bfe0229a66]
PUP.Optional.FirstSeenToday.A, C:\Program Files\fst_de_55\fst_de_55.exe, 3392, Delete-on-Reboot, [ec3a1762d2a947ef40a68c2225ddf808]
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bservice.exe, 3540, Delete-on-Reboot, [b76fadcc91ea39fde8d4eecddf23cf31]
PUP.Optional.Bench.A, C:\Program Files\Bench\Wd\wd.exe, 2752, Delete-on-Reboot, [02243841f685c6703c816556e41ef709]
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\upfst_de_55.exe, 2304, Delete-on-Reboot, [86a076035229c96d383bb0e346bc926e]

Modules: 10
PUP.Optional.Skytech.A, C:\Program Files\SupTab\DpInterface32.dll, Delete-on-Reboot, [a086a1d895e6191df6c4c0c88f7208f8],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],

Registry Keys: 99
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, Quarantined, [f92dc8b1daa10b2beacdbb9e12ef09f7],
PUP.Optional.IMGUpdater.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GlobalUpdater, Quarantined, [b27415647b0080b652e39fe858a949b7],
PUP.Optional.Iminent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SProtection, Quarantined, [5acc2a4fabd0e551f63351ba7a87c937],
IPH.GenericBHO, HKLM\SOFTWARE\CLASSES\CLSID\{01F29AE5-D48D-417B-9D00-8A115C23A0EB}, Quarantined, [64c2c2b7215afd394474bb4557a902fe],
IPH.GenericBHO, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{01F29AE5-D48D-417B-9D00-8A115C23A0EB}, Quarantined, [64c2c2b7215afd394474bb4557a902fe],
IPH.GenericBHO, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{01F29AE5-D48D-417B-9D00-8A115C23A0EB}, Quarantined, [64c2c2b7215afd394474bb4557a902fe],
IPH.GenericBHO, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{01F29AE5-D48D-417B-9D00-8A115C23A0EB}, Quarantined, [64c2c2b7215afd394474bb4557a902fe],
IPH.GenericBHO, HKLM\SOFTWARE\CLASSES\CLSID\{01F29AE5-D48D-417B-9D00-8A115C23A0EB}\INPROCSERVER32, Quarantined, [64c2c2b7215afd394474bb4557a902fe],
PUP.Optional.Findopolis.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util findopolis, Quarantined, [6bbbef8ab2c926107ca792d8ec15936d],
PUP.Optional.NewPlayer.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NewPlayerUpdaterService, Quarantined, [ef3736434536e94d7b4b5c25fe0316ea],
PUP.Optional.Findopolis.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update findopolis, Quarantined, [f0364138205bf73f37ec195148b9bb45],
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{112BA211-334C-4A90-90EC-2AD1CDAB287C}, Quarantined, [d056da9f0972ef47e2ae4ee747b953ad],
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\iminent.iminentHlpr.1, Quarantined, [d056da9f0972ef47e2ae4ee747b953ad],
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\iminent.iminentHlpr, Quarantined, [d056da9f0972ef47e2ae4ee747b953ad],
PUP.Optional.Iminent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{112BA211-334C-4A90-90EC-2AD1CDAB287C}, Quarantined, [d056da9f0972ef47e2ae4ee747b953ad],
PUP.Optional.Iminent, HKLM\SOFTWARE\CLASSES\CLSID\{112BA211-334C-4A90-90EC-2AD1CDAB287C}\INPROCSERVER32, Quarantined, [d056da9f0972ef47e2ae4ee747b953ad],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.SupTab.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}\INPROCSERVER32, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\CLSID\{ccfd8427-0c44-4b91-abbb-d6aa65f7d2a1}, Quarantined, [58ce2059c4b758dec85a690131d0cb35],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{4911c564-1cde-44cc-92ed-6da256c696dc}, Quarantined, [58ce2059c4b758dec85a690131d0cb35],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A807F3B8-4DB5-473D-A4D5-6F0853F6CAA7}, Quarantined, [58ce2059c4b758dec85a690131d0cb35],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{CCFD8427-0C44-4B91-ABBB-D6AA65F7D2A1}, Quarantined, [58ce2059c4b758dec85a690131d0cb35],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\CLSID\{CCFD8427-0C44-4B91-ABBB-D6AA65F7D2A1}\INPROCSERVER32, Quarantined, [58ce2059c4b758dec85a690131d0cb35],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\APPID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}, Quarantined, [988e69104833db5bf3f155ed6f937f81],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\CLSID\{1FAFD711-ABF9-4F6A-8130-5166C7371427}, Quarantined, [2ef8ceab81fa57df9d437cfa9f632ad6],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\iminent.iminentdskBnd.1, Quarantined, [2ef8ceab81fa57df9d437cfa9f632ad6],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\iminent.iminentdskBnd, Quarantined, [2ef8ceab81fa57df9d437cfa9f632ad6],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, Quarantined, [9e88f782b0cb54e242e1d4a3ce34e21e],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C58D664A-3DBC-4925-AE74-0382007DF113}, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\IminentWebBooster.ScriptExtender.1, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\IminentWebBooster.ScriptExtender, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}\INPROCSERVER32, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\IminentWebBooster.BrowserHelperObject.1, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\IminentWebBooster.BrowserHelperObject, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\CLASSES\CLSID\{EA34C851-D481-49F5-A356-3A8B0A8F3B7E}, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\CLASSES\CLSID\{BE496A80-8F51-461F-B3D7-88A258A60541}, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{88B0BAE0-649E-42F2-A573-54AA3F7B969E}, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{BE206A57-8F61-467F-B689-D0A2B7A63941}, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAE7C81D-D450-49CF-8498-4C8BE88FEA7E}, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\CLASSES\CLSID\{EA34C851-D481-49F5-A356-3A8B0A8F3B7E}\INPROCSERVER32, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{EA34C851-D481-49F5-A356-3A8B0A8F3B7E}, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.DiscountDragon.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EA34C851-D481-49F5-A356-3A8B0A8F3B7E}, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{68B81CCD-A80C-4060-8947-5AE69ED01199}, Quarantined, [4adcb8c1fa81132397b2d2a54cb68977],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}, Quarantined, [94922d4c3e3d96a02a204532788a9b65],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}, Quarantined, [8a9c99e095e694a29a44ff778a78f50b],
PUP.Optional.Skytech.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\webssearches uninstaller, Quarantined, [7aac5a1f1962a78f47732068d0311be5],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\38900_Discount Dragon, Quarantined, [899dbabfea9126101038700b629f956b],
PUP.Optional.VOPackage.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\servervo, Quarantined, [f5316316cbb0e94d7123e2bfe0229a66],
PUP.Optional.NewPlayer.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\NewPlayer, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.DiscountDragon, HKLM\SOFTWARE\CLASSES\TYPELIB\{857679D5-419F-4FDC-979E-D6CCE207D76F}, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, HKLM\SOFTWARE\CLASSES\INTERFACE\{95AD5C6E-268C-4250-BEBF-1488FDFC82E5}, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\findopolis, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.DiscountDragon.A, HKLM\SOFTWARE\Discount Dragon, Quarantined, [919553262358ed49c139dbcde2200df3],
PUP.Optional.Findopolis.A, HKLM\SOFTWARE\findopolis, Quarantined, [1412f881f88375c1c3b721d180834fb1],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\Iminent, Quarantined, [9f872a4ffe7dfd39b2ef586be81a0ff1],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\IminentToolbar, Quarantined, [39ed3d3c6d0ec670c7cd2f958e74e11f],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\webssearchesSoftware, Quarantined, [65c11267a9d267cf54acb7ff5ea4d030],
PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\BService, Quarantined, [d74fd4a51f5c5ed8dd5ca105ab579f61],
PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\InstalledExtensions, Quarantined, [4dd9c2b72358979f330781256e94c13f],
PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\NmHost, Quarantined, [e046d6a383f87db987b4cdd97a88c739],
PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\Updater, Quarantined, [1b0b83f64833b77fc9730a9caa58df21],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\esrv.iminentESrvc, Quarantined, [a97da6d32f4ca09692c303c02dd57987],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\esrv.iminentESrvc.1, Quarantined, [9690f782ccaf2115cd8893305ca614ec],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\iminent.iminentappCore, Quarantined, [141258213c3fe65081d5d1f2748ee917],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\iminent.iminentappCore.1, Quarantined, [d353caaf5526cf6777df0bb80ff3a45c],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\APPID\Iminent.WebBooster.InternetExplorer.DLL, Quarantined, [9e8874053546aa8ca60730b1e61dcd33],
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\FREE_SOFT_TODAY\fst_de_55, Quarantined, [78ae324748330f27598c0ea061a157a9],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\igdhbblpcellaljokkpfhcjlagemhgjl, Quarantined, [de4823564b30a294910fb90a07fb8779],
PUP.Optional.Bench.A, HKLM\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\com.bench.nmhost, Quarantined, [2cfac8b1bac1cd697ab89c55956e41bf],
PUP.Optional.IMGUpdater.A, HKLM\SOFTWARE\IMGUPDATER, Quarantined, [e73f334695e624120d183f6304fe669a],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [61c55425245741f5cca89c48da29b050],
PUP.Optional.Umbrella.A, HKLM\SOFTWARE\UMBRELLA, Quarantined, [2204aacf6a113600f05ea337df2454ac],
PUP.Optional.Findopolis.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\findopolis, Quarantined, [0323e495354653e32e4d886aec17ea16],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Iminent, Quarantined, [94925722cbb08caac1e1fac9ef1331cf],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\IminentToolbar, Quarantined, [eb3be7929dde1d191b7a8b397e84f709],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\Iminent, Quarantined, [b670cbae8dee80b67d51416cfa0807f9],
PUP.Optional.Qone8, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [f43288f1accf9c9a21522aba699a3ac6],
PUP.Optional.Softonic.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, Quarantined, [f5314c2df685be7868ef7a37a35f23dd],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\CLSID\{A2CC3C46-143B-4142-9D5A-B8543F0A6F55}, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\CLSID\{9FD0C1D9-180B-4834-B80B-4B7325AF90E1}, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\i, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\iminent, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
Adware.EoRezo, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\fst_de_55_is1, Quarantined, [6cbababf14670f27f48294ff51b140c0],

Registry Values: 13
Adware.Tuto4PC, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_de_55, "C:\Program Files\fst_de_55\fst_de_55.exe", Quarantined, [200611681c5f92a4e9248f7d3bc61ae6]
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{1FAFD711-ABF9-4F6A-8130-5166C7371427}, Iminent Toolbar, Quarantined, [2ef8ceab81fa57df9d437cfa9f632ad6]
PUP.Optional.Iminent.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{84FF7BD6-B47F-46F8-9130-01B2696B36CB}, Quarantined, [8a9c99e095e694a29a44ff778a78f50b],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}, Quarantined, [a77fec8db3c8270f8e50acca857da858],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{1FAFD711-ABF9-4F6A-8130-5166C7371427}, Quarantined, [db4b47321764f145cd1360167b878f71],
PUP.Optional.IMGUpdater.A, HKLM\SOFTWARE\IMGUPDATER|ConfigBlockJSN, {
"MAIN_SWITCH" : true,
"UPDATABLE" : {
"064A36CC-4404-42F9-B26E-3BFD515F2447" : {
"lastupdated" : 0,
"mindeltatime" : 259200
},
"2C200CBA-D536-40C8-902D-9C34FD10AD85" : {
"lastupdated" : 0,
"localversion" : "0",
"mindeltatime" : 259200
},
"4C973056-22D8-488C-A358-AEA00CC2EC7D" : {
"lastupdated" : 0,
"mindeltatime" : 259200
}
}
}
, Quarantined, [e73f334695e624120d183f6304fe669a]
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_de_55, "C:\Program Files\fst_de_55\fst_de_55.exe", Quarantined, [ec3a1762d2a947ef40a68c2225ddf808]
PUP.Optional.Bench.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|BService, C:\Program Files\Bench\BService\bservice.exe, Quarantined, [b76fadcc91ea39fde8d4eecddf23cf31]
PUP.Optional.Bench.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Wd, C:\Program Files\Bench\Wd\wd.exe, Quarantined, [02243841f685c6703c816556e41ef709]
PUP.Optional.SmartApps, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Discount Dragon-repairJob, wscript.exe "C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\repair.js" "Discount Dragon-repairJob", Quarantined, [190d1d5cbebd3105c62e1ed3df241fe1]
PUP.Optional.Umbrella.A, HKLM\SOFTWARE\UMBRELLA|MUpdBlock, {
"MASSUPDATE" : {
"CHROME_MBAR" : {
"Checked" : 1,
"RetryIdx" : 0,
"Version" : 1
},
"FIREFOX_MBAR" : {
"Checked" : 1,
"RetryIdx" : 0,
"Version" : 1
},
"IEXPLORE_BHO" : {
"Checked" : 1,
"RetryIdx" : 0,
"Version" : 4
}
}
}
, Quarantined, [2204aacf6a113600f05ea337df2454ac]
PUP.Optional.IMGUpdater.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GLOBALUPDATER|ImagePath, C:\Program Files\Common Files\IMGUpdater\IMGUpdater.exe, Quarantined, [4dd999e01a61ff376591336f4fb3817f]
Adware.EoRezo, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|upfst_de_55.exe, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\upfst_de_55.exe -runonce, Quarantined, [86a076035229c96d383bb0e346bc926e]

Registry Data: 8
PUP.Optional.Skytech.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~1\SupTab\SEARCH~1.DLL, Good: (), Bad: (C:\PROGRA~1\SupTab\SEARCH~1.DLL),Replaced,[72b43a3f3249bb7b5862a8e0a16015eb]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe WebSearches, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe WebSearches,[d452b6c3fb80e254cb49f07fa262d22e]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1402954425&from=tugs&uid=TOSHIBAXMK2565GSX_6028C0FPTXX6028C0FPT&q={searchTerms}, Good: (Google), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1402954425&from=tugs&uid=TOSHIBAXMK2565GSX_6028C0FPTXX6028C0FPT&q={searchTerms}),Replaced,[03236b0e2655cb6b33d8f57a5aaa857b]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, WebSearches, Good: (Google), Bad: (WebSearches,[1e0805740477b185be4b0c639d67c33d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, WebSearches, Good: (Google), Bad: (WebSearches,[3ee85722b2c9ea4cda3399d655af8977]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[de484732adcea88e211b0178848033cd]
PUP.Optional.Iminent.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, Start Search, Good: (Google), Bad: (Start Search,[78ae97e29cdf0333b7f9ef8af80ccf31]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-2398524569-3030390016-3527150408-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, WebSearches, Good: (Google), Bad: (WebSearches,[45e121583843fc3ac7430a65a55f1ce4]

Folders: 84
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Windows, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Users\DESIDERABILIS\AppData\Local\newplayer, Quarantined, [2600b0c94536bd79c083c0e72ad8a15f],
PUP.Optional.NewPlayer.A, C:\Users\DESIDERABILIS\AppData\Local\newplayer\config, Quarantined, [2600b0c94536bd79c083c0e72ad8a15f],
PUP.Optional.NewPlayer.A, C:\Users\DESIDERABILIS\AppData\Local\newplayer\Playlists, Quarantined, [2600b0c94536bd79c083c0e72ad8a15f],
PUP.Optional.NewPlayer.A, C:\Users\DESIDERABILIS\AppData\Local\newplayer\Snap, Quarantined, [2600b0c94536bd79c083c0e72ad8a15f],
Adware.EoRezo, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FREE_SOFT_TODAY, Quarantined, [be6808713645b383a109664b7e8418e8],
PUP.Optional.SupTab.A, C:\Program Files\SupTab, Delete-on-Reboot, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\weather, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\en-US, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-419, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-ES, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-BE, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CA, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CH, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-FR, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-LU, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-CH, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-IT, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pl, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt-BR, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru-MO, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\tr-TR, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\vi-VI, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-CN, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-TW, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\assets, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\CanvasFramework, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\icons, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.BenchUpdater, C:\Program Files\Bench\NmHost, Quarantined, [cf57a5d480fb83b34afb982b8082e719],
PUP.Optional.BenchUpdater.A, C:\Users\DESIDERABILIS\AppData\Local\BenchUpdater, Quarantined, [ec3a81f82c4fe5512531289c20e2a759],
PUP.Optional.Iminent.A, C:\Program Files\Iminent, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\Bootstrapper, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl, Quarantined, [9b8b1c5d06753cfa9450830619e9669a],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar\1.8.28.3, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar\1.8.28.3\bh, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater, Quarantined, [ef37b3c63a415dd9cd800a81e71b867a],
PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\1.7.0.0, Quarantined, [ef37b3c63a415dd9cd800a81e71b867a],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Bench.A, C:\Program Files\Bench\Wd, Delete-on-Reboot, [14122356fc7fd5611b1e26685ca6dc24],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\components, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55, Delete-on-Reboot, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\Download, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\fst_de_55, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\fst_de_55\1.10, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Program Files\fst_de_55, Delete-on-Reboot, [6cbababf14670f27f48294ff51b140c0],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\assets, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\CanvasFramework, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\icons, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices, Delete-on-Reboot, [ef3773064c2fca6c48bedcc40200a957],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update, Quarantined, [ef3773064c2fca6c48bedcc40200a957],
PUP.Optional.SearchProtect.A, C:\Users\DESIDERABILIS\AppData\Local\SearchProtect, Quarantined, [6cba0c6df784ed495daaaff1ac5605fb],
PUP.Optional.SearchProtect.A, C:\Users\DESIDERABILIS\AppData\Local\SearchProtect\Logs, Quarantined, [6cba0c6df784ed495daaaff1ac5605fb],

Files: 429
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, Delete-on-Reboot, [f92dc8b1daa10b2beacdbb9e12ef09f7],
PUP.Optional.Skytech.A, C:\Program Files\SupTab\DpInterface32.dll, Delete-on-Reboot, [a086a1d895e6191df6c4c0c88f7208f8],
PUP.Optional.IMGUpdater.A, C:\Program Files\Common Files\IMGUpdater\IMGUpdater.exe, Delete-on-Reboot, [b27415647b0080b652e39fe858a949b7],
PUP.Optional.Iminent, C:\Program Files\Common Files\Umbrella\Umbrella286.exe, Delete-on-Reboot, [5acc2a4fabd0e551f63351ba7a87c937],
Adware.Tuto4PC, C:\Program Files\fst_de_55\fst_de_55.exe, Delete-on-Reboot, [200611681c5f92a4e9248f7d3bc61ae6],
IPH.GenericBHO, C:\Users\DESIDERABILIS\AppData\LocalLow\systems ie bho\bho.dll, Quarantined, [64c2c2b7215afd394474bb4557a902fe],
PUP.Optional.Skytech.A, C:\Program Files\SupTab\SearchProtect32.dll, Quarantined, [72b43a3f3249bb7b5862a8e0a16015eb],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\utilfindopolis.exe, Quarantined, [6bbbef8ab2c926107ca792d8ec15936d],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\NewPlayerUpdaterService.exe, Quarantined, [ef3736434536e94d7b4b5c25fe0316ea],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\updatefindopolis.exe, Quarantined, [f0364138205bf73f37ec195148b9bb45],
PUP.Optional.Iminent, C:\Program Files\IminentToolbar\1.8.28.3\bh\iminent.dll, Quarantined, [d056da9f0972ef47e2ae4ee747b953ad],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\SupTab.dll, Quarantined, [0e181d5c116a31051346191cd12f18e8],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\findopolisBHO.dll, Quarantined, [58ce2059c4b758dec85a690131d0cb35],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar\1.8.28.3\iminentTlbr.dll, Quarantined, [2ef8ceab81fa57df9d437cfa9f632ad6],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\Minibar.InternetExplorer.BHOx86.dll, Quarantined, [7da92b4e3a412313412f1d5932d053ad],
PUP.Optional.DiscountDragon.A, C:\Program Files\Discount Dragon\FrameworkBHO.dll, Quarantined, [180ecaaf3348989ea783a4d62ed437c9],
PUP.Optional.GenericExt.A, C:\Users\DESIDERABILIS\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl\MinibarChrome.exe, Quarantined, [34f21f5a92e90135bb86b08d9e62ef11],
PUP.Optional.Skytech.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\UninstallManager.exe, Quarantined, [7aac5a1f1962a78f47732068d0311be5],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Local\Temp\IminentSetup-NewVer_22april.exe, Quarantined, [8b9b98e1ee8dff37fa6ec6818879a858],
PUP.Optional.Conduit.A, C:\Users\DESIDERABILIS\AppData\Local\Temp\CD0Atmp\spidentifierimpl.exe, Quarantined, [ce583247c0bbfc3a4a6c176f867b18e8],
PUP.Optional.NewPlayer.A, C:\Users\DESIDERABILIS\AppData\Local\Temp\73DBtmp\newvideoplayersetup.exe, Quarantined, [1313ea8fde9db680facc1d64db269f61],
PUP.Optional.FreeSoftToday.A, C:\Users\DESIDERABILIS\AppData\Local\Temp\73FEtmp\freesofttoday.exe, Quarantined, [a87e3445a7d479bd4b9dee9c7a8723dd],
PUP.Optional.OptimumInstaller.A, C:\Users\DESIDERABILIS\Downloads\Drivers_Setup.exe, Quarantined, [2afc7efb700b66d050c2d37e39c86997],
PUP.Optional.Softonic.A, C:\Users\DESIDERABILIS\Downloads\SoftonicDownloader_fuer_oceanis-change-background.exe, Quarantined, [62c43f3a2d4e3105621178ab6a9713ed],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\uninstall.exe, Quarantined, [899dbabfea9126101038700b629f956b],
PUP.Optional.FreeSoft, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\Download\majfst.exe, Quarantined, [9d89b5c4f982e84e6a5a9be128d959a7],
PUP.Optional.VOPackage.A, C:\Users\DESIDERABILIS\AppData\Roaming\VOPackage\VOsrv.exe, Delete-on-Reboot, [f5316316cbb0e94d7123e2bfe0229a66],
PUP.Optional.Findopolis.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\{c486bc7a-4f2c-4a8b-ac38-4952f70809b9}.xpi, Quarantined, [7caa8eeb2754f442d79f2382a55dc937],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\NewPlayerUpdaterService.InstallLog, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\dotNetFx40_Full_setup.exe, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\icon.ico, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\LTV.exe, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\NewPlayer.exe, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\NewPlayer.uidnum, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\NewPlayerUpdater.exe, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\NewPlayerUpdaterService.InstallState, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Newtonsoft.Json.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\PhotoLoader.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\policy.2.0.taglib-sharp.config, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\policy.2.0.taglib-sharp.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\taglib-sharp.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\uninstall.exe, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Hindi.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Arabic.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Bulgarian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Catalan.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\ChineseS.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\ChineseT.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Czech.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Danish.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Dutch.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\English.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Estonian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Finnish.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\French.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\German.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Greek.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\HaitianCreole.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Hebrew.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Hungarian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Indonesian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Italian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Japanese.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Korean.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Latvian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Lithuanian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Norwegian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Polish.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Portuguese.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Romanian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Russian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Slovak.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Slovenian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Spanish.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Swedish.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Thai.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Turkish.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Ukrainian.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Languages\Vietnamese.ini, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\extaudio.png, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\extvideo.png, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\ffmpeg.exe, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\folder.png, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\Interop.SHDocVw.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\libreria.png, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\NDde.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\NewPlayerChecker.exe, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\Newtonsoft.Json.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\PhotoLoader.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\policy.2.0.taglib-sharp.config, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\policy.2.0.taglib-sharp.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\taglib-sharp.dll, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\references\Thumbs.db, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Windows\icon-play.ico, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Windows\ifishplayer-icon.ico, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Program Files\NewPlayer\Windows\Thumbs.db, Quarantined, [4cdad3a67a0147ef4ef0e2c57f8337c9],
PUP.Optional.NewPlayer.A, C:\Users\DESIDERABILIS\AppData\Local\newplayer\log.txt, Quarantined, [2600b0c94536bd79c083c0e72ad8a15f],
PUP.Optional.NewPlayer.A, C:\Users\DESIDERABILIS\AppData\Local\newplayer\config\config.ini, Quarantined, [2600b0c94536bd79c083c0e72ad8a15f],
PUP.Optional.Iminent.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage, Quarantined, [c660c5b44b3011258724fab1649ebe42],
Adware.EoRezo, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FREE_SOFT_TODAY\Freesofttoday.lnk, Quarantined, [be6808713645b383a109664b7e8418e8],
PUP.Optional.WebsSearches.A, C:\Program Files\Mozilla Firefox\browser\searchplugins\webssearches.xml, Quarantined, [84a294e5ec8faa8cd32f4472000207f9],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\webbooster@iminent.com.xpi, Quarantined, [b274c6b36b10181e868746727191ef11],
PUP.Optional.Iminent.A, C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\qeknea54.default\extensions\webbooster@iminent.com.xpi, Quarantined, [15112158b5c64ee8759802b6a75b916f],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\install.data, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\DpInterface64.dll, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\DpInterfacef32.dll, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\ient.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\RSHP.exe, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\SearchProtect64.dll, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\SpAPPSv32.dll, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\SpAPPSv64.dll, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\uninstall.exe, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\WebDataJs, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\data.html, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\indexIE.html, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\indexIE8.html, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\main.css, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\ver.txt, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\arrow.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\default_add_logo.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\default_add_logo_hover.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\default_logo.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\googlelogo.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\googlelogo2.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\google_trends.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon128.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon16.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon48.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\loading.gif, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\logo32.ico, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\weather\0.png, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\common.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\ga.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\ie8.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\jquery-1.11.0.min.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\jquery.autocomplete.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\js.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\library.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\xagainit.js, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\en-US\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-419\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-ES\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-BE\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CA\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CH\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-FR\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-LU\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-CH\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-IT\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pl\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt-BR\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru-MO\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\tr-TR\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\vi-VI\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-CN\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-TW\messages.json, Quarantined, [f333166393e8c07695d9b50a25dd6898],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\config.xml, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\background.html, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\extension_info.json, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\FrameworkBHO64.dll, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\FrameworkEngine.exe, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\icon.ico, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework\appAPI_bg.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework\appAPI_browseraction.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework\appAPI_common.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework\appAPI_content.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework\appAPI_settings.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework\appAPI_webrequest.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\AppFramework\jquery.min.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\CanvasFramework\canvasscript_engine.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\CanvasFramework\canvas_bg.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\CanvasFramework\md5.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\CanvasFramework\registry.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\CanvasFramework\webrequest.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\backgroundscript_engine.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\base.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\browser.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\console.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\framework.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\global.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\i18n.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\initialize.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\invoke_async.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\io.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\json2.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\lang.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\legacy.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\message_target.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\messaging.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\storage.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\timer.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\updater.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\userscript_client.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\userscript_engine.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\utils.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework\xhr.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\browser_button.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\context_menu.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\context_menu_item_handler.html, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\framework_api.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\notification.html, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\notifications.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\options.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\ui_base.js, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\bottom-left.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\bottom-middle.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\bottom-right.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\middle-left.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\middle-right.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\tail-bottom.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\tail-left.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\tail-right.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\tail-top.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\top-left.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\top-middle.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\framework-ui\theme\bubble\top-right.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\icons\button.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\icons\icon100.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\icons\icon128.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\icons\icon32.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.DiscountDragon, C:\Program Files\Discount Dragon\icons\icon48.png, Quarantined, [47dff188adcecf67dbff0eb19e64f20e],
PUP.Optional.Iminent.A, C:\Program Files\Mozilla Firefox\browser\searchplugins\StartWeb.xml, Quarantined, [2bfbc0b9a9d2ed495eb68141a75b8080],
PUP.Optional.BenchUpdater, C:\Program Files\Bench\NmHost\nmhost.exe, Quarantined, [cf57a5d480fb83b34afb982b8082e719],
PUP.Optional.BenchUpdater, C:\Program Files\Bench\NmHost\manifest.json, Quarantined, [cf57a5d480fb83b34afb982b8082e719],
PUP.Optional.BenchUpdater.A, C:\Windows\Tasks\bench-S-1-5-21-2398524569-3030390016-3527150408-1000.job, Quarantined, [9b8b4c2d3d3e59dd0f460eb626dcd62a],
PUP.Optional.BenchUpdater.A, C:\Windows\Tasks\bench-sys.job, Quarantined, [83a31960403b68ce0f4608bcb34f867a],
PUP.Optional.BenchUpdater.A, C:\Users\DESIDERABILIS\AppData\Local\BenchUpdater\products.xml, Quarantined, [ec3a81f82c4fe5512531289c20e2a759],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\SearchTheWeb.xml, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\StartWeb.xml, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\USearch.xml, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\main.ico, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\SearchTheWeb.ico, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\Universely.ico, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\Bootstrapper\CustomActionsIminent.dll, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\Bootstrapper\IminentUninstall.exe, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\Bootstrapper\MetroConfig.JSON, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Iminent\inst\Bootstrapper\uninstall.exe, Quarantined, [889e4534e794df57e6214195d52ed030],
PUP.Optional.Iminent.A, C:\Program Files\Mozilla Firefox\defaults\pref\all-iminent.js, Quarantined, [ad79c4b5daa1f442ec299d395aa9a759],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\findopolis.ico, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\0, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\7za.exe, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\findopolisUninstall.exe, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\updatefindopolis.InstallState, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\7za.exe, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\BrowserAdapterS.7z, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\findopolis.BrowserAdapter.exe, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\findopolis.PurBrowse.exe, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\findopolis.PurBrowseG.zip, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\findopolisBAApp.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\sqlite3.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\utilfindopolis.InstallState, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\{c486bc7a-4f2c-4a8b-ac38-4952f70809b9}.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins\findopolis.Bromon.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins\findopolis.BroStats.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins\findopolis.BrowserAdapterS.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins\findopolis.CompatibilityChecker.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins\findopolis.FFUpdate.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins\findopolis.IEUpdate.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.Findopolis.A, C:\Program Files\findopolis\bin\plugins\findopolis.PurBrowseG.dll, Quarantined, [58ce8eebd9a2f93d80f9f8fa6c97d12f],
PUP.Optional.FirstSeenToday.A, C:\Program Files\fst_de_55\fst_de_55.exe, Delete-on-Reboot, [ec3a1762d2a947ef40a68c2225ddf808],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bservice.exe, Delete-on-Reboot, [b76fadcc91ea39fde8d4eecddf23cf31],
PUP.Optional.Bench.A, C:\Program Files\Bench\Wd\wd.exe, Delete-on-Reboot, [02243841f685c6703c816556e41ef709],
PUP.Optional.SmartApps, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\repair.js, Quarantined, [190d1d5cbebd3105c62e1ed3df241fe1],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl\empty.localstorage, Quarantined, [9b8b1c5d06753cfa9450830619e9669a],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar\1.8.28.3\iminentApp.dll, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar\1.8.28.3\iminentEng.dll, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar\1.8.28.3\iminentsrv.exe, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.Iminent.A, C:\Program Files\IminentToolbar\1.8.28.3\uninstall.exe, Quarantined, [b175d6a3c8b31224e918a8e2aa58718f],
PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\products.xml, Quarantined, [ef37b3c63a415dd9cd800a81e71b867a],
PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\updater.exe, Quarantined, [ef37b3c63a415dd9cd800a81e71b867a],
PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\1.7.0.0\updater.exe, Quarantined, [ef37b3c63a415dd9cd800a81e71b867a],
PUP.Optional.Bench.A, C:\Program Files\Bench\BService\bhelper.dll, Delete-on-Reboot, [2402a7d2b7c45adc79bf3c52db2726da],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\chrome.manifest, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\install.rdf, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\uninstall.exe, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\components\FFDisp.dll, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\dpk.htm, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\hlprs.js, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\iminent.css, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\iminent.xul, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\loader.xul, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\mtstart.js, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\serp.js, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\tmplt.js, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\arwDwn.gif, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\closeo.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\help_16.gif, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\home.gif, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\icon_seperator.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\logo.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\privecy_16_hot.gif, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\sign.jpg, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\specialoffer.gif, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\tellafriend.gif, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\uninstall.gif, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\ae.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\bg.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\ch.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\cn.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\cz.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\de.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\eg.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\en.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\es.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\fr.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\gr.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\he.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\il.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\it.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\ja.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\jp.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\nl.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\no.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\pl.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\pt.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\ro.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\ru.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\sa.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\se.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\sv.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\tr.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\ua.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.Iminent.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\extensions\ffxtlbr@iminent.com\content\imgs\flgs\us.png, Quarantined, [48de1861de9dc96dd6ec98f744be6b95],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\124.json, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\MessageBox.xml, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\uninstallDlg2.xml, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\bg.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\bg1.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\bk_shadow.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\button.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\button1.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\checkbox.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\checkbox_select.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\checked.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\close.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\loading_bg.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\loading_light.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\min.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\scrollbar.bmp, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\Thumbs.db, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\unchecked.png, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code\code1.jpg, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code\code2.jpg, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code\code3.jpg, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code\code4.jpg, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code\code5.jpg, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code\code6.jpg, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\webssearches\images\code\Thumbs.db, Quarantined, [2df9bbbeb3c86dc95b73aee2e51de719],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\upfst_de_55.cyl, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\upfst_de_55.exe, Delete-on-Reboot, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\user_profil.cyp, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\Download\majfst.exe, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\fst_de_55\1.10\cnf.cyl, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Users\DESIDERABILIS\AppData\Local\fst_de_55\fst_de_55\1.10\eorezo.cyl, Quarantined, [86a076035229c96d383bb0e346bc926e],
Adware.EoRezo, C:\Program Files\fst_de_55\freeSoftToday_widget.exe, Quarantined, [6cbababf14670f27f48294ff51b140c0],
Adware.EoRezo, C:\Program Files\fst_de_55\predm.exe, Quarantined, [6cbababf14670f27f48294ff51b140c0],
Adware.EoRezo, C:\Program Files\fst_de_55\unins000.dat, Quarantined, [6cbababf14670f27f48294ff51b140c0],
Adware.EoRezo, C:\Program Files\fst_de_55\unins000.exe, Quarantined, [6cbababf14670f27f48294ff51b140c0],
Adware.EoRezo, C:\Program Files\fst_de_55\unins000.msg, Quarantined, [6cbababf14670f27f48294ff51b140c0],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\chrome_gp_update.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\chrome_installer.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\common.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox_installer.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\gpedit.exe, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\icon.ico, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\ie_installer.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\installer.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\main_installer.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\migrate.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\projectInstaller.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\repair_data.json, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\SoftwareDetector.exe, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\sqlite3.exe, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\background.html, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\bootstrap.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\chrome.manifest, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\extension_info.json, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\install.rdf, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_bg.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_browseraction.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_common.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_content.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_settings.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_webrequest.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\AppFramework\jquery.min.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\CanvasFramework\canvasscript_engine.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\CanvasFramework\canvas_bg.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\CanvasFramework\md5.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\CanvasFramework\registry.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\CanvasFramework\webrequest.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\backgroundscript_engine.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\base.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\browser.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\chrome_windows.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\console.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\content_proxy.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\framework.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\i18n.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\invoke_async.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\io.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\lang.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\legacy.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\message_target.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\messaging.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\storage.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\timer.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\uninstall.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\userscript_client.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\userscript_engine.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\utils.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework\xhr.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\browser_button.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\contentNotification.tmpl, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\contentNotificationStyle.tmpl, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\content_notifications.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\context_menu.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\framework_api.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\notifications.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\options.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\framework-ui\ui_base.js, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\icons\button.png, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\icons\icon100.png, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\icons\icon128.png, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\icons\icon32.png, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.DiscountDragon.A, C:\Users\DESIDERABILIS\AppData\Local\Discount Dragon\firefox\icons\icon48.png, Quarantined, [47df4039accfd66094146b2e788a18e8],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update\conf, Quarantined, [ef3773064c2fca6c48bedcc40200a957],
PUP.Optional.WebsSearches.A, C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\prefs.js, Good: (), Bad: (user_pref("browser.startup.homepage", "hxxp://istart.webssearches.com/?type=hp&ts=1402954425&from=tugs&uid=TOSHIBAXMK2565GSX_6028C0FPTXX6028C0FPT"), Replaced,[a38386f3552674c2153fbceafd07a35d]

Physical Sectors: 0
(No malicious items detected)


(end)
hoffe ihr könnt damit etwas anfangen und ich habe alles richtig gemacht. Vielen Dank im Vorraus schonmal!

ADWCleaner hat folgenden log ausgepuckt:

AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.214 - Bericht erstellt am 16/06/2014 um 23:48:16
# Aktualisiert 29/06/2014 von Xplode
# Betriebssystem : Windows 7 Starter Service Pack 1 (32 bits)
# Benutzername : DESIDERABILIS - DESIDERABILIS83
# Gestartet von : C:\Users\DESIDERABILIS\Downloads\adwcleaner_3.214.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Ask
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
Ordner Gelöscht : C:\Program Files\Bench
Ordner Gelöscht : C:\Program Files\Common Files\IMGUpdater
Ordner Gelöscht : C:\Program Files\Common Files\Umbrella
Ordner Gelöscht : C:\Users\DESIDERABILIS\AppData\Roaming\SupTab
Ordner Gelöscht : C:\Users\DESIDERABILIS\AppData\Roaming\VOPackage
Ordner Gelöscht : C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
Ordner Gelöscht : C:\Users\Gast\AppData\LocalLow\AskToolbar
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Public\Desktop\NewPlayer.lnk
Datei Gelöscht : C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\user.js

***** [ Verknüpfungen ] *****

Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Verknüpfung Desinfiziert : C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Verknüpfung Desinfiziert : C:\Users\DESIDERABILIS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk

***** [ Registrierungsdatenbank ] *****

[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{753B14BB-877D-4D0E-B867-45A97CE3DBB3}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{753B14BB-877D-4D0E-B867-45A97CE3DBB3}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\speedupmypc
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\speedupmypc_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\speedupmypc_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{208D4124-3895-4974-B293-A159BD306078}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{460C3D19-B3D4-4964-A550-77D263B0CCCB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{460C3D19-B3D4-4964-A550-77D263B0CCCB}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Schlüssel Gelöscht : HKCU\Software\FreeSoftToday
Schlüssel Gelöscht : HKCU\Software\Tutorials
Schlüssel Gelöscht : HKCU\Software\TutoTag
Schlüssel Gelöscht : HKLM\Software\NewPlayer
Schlüssel Gelöscht : HKLM\Software\SupDp
Schlüssel Gelöscht : HKLM\Software\SupTab
Schlüssel Gelöscht : HKLM\Software\Tutorials
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DatamngrCoordinator.exe

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17126

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v30.0 (de)

[ Datei : C:\Users\DESIDERABILIS\AppData\Roaming\Mozilla\Firefox\Profiles\c6vll6tw.default-1402954302832\prefs.js ]

Zeile gelöscht : user_pref("browser.search.defaultenginename", "webssearches");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "webssearches");
Zeile gelöscht : user_pref("extensions.iminent.admin", false);
Zeile gelöscht : user_pref("extensions.iminent.aflt", "orgnl");
Zeile gelöscht : user_pref("extensions.iminent.appId", "{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}");
Zeile gelöscht : user_pref("extensions.iminent.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.iminent.dfltLng", "");
Zeile gelöscht : user_pref("extensions.iminent.excTlbr", false);
Zeile gelöscht : user_pref("extensions.iminent.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.iminent.id", "b45cbded0000000000000024be5c8734");
Zeile gelöscht : user_pref("extensions.iminent.instlDay", "16237");
Zeile gelöscht : user_pref("extensions.iminent.instlRef", "");
Zeile gelöscht : user_pref("extensions.iminent.newTab", false);
Zeile gelöscht : user_pref("extensions.iminent.prdct", "iminent");
Zeile gelöscht : user_pref("extensions.iminent.prtnrId", "iminent");
Zeile gelöscht : user_pref("extensions.iminent.rvrt", "false");
Zeile gelöscht : user_pref("extensions.iminent.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.iminent.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://start.iminent.com/?ref=toolbarm#q=");
Zeile gelöscht : user_pref("extensions.iminent.vrsn", "1.8.28.3");
Zeile gelöscht : user_pref("extensions.iminent.vrsnTs", "1.8.28.323:54:59");
Zeile gelöscht : user_pref("extensions.iminent.vrsni", "1.8.28.3");
Zeile gelöscht : user_pref("iminent.LayoutId", "28");
Zeile gelöscht : user_pref("iminent.ShowThankyouPixel", "0");
Zeile gelöscht : user_pref("iminent._oaZGabJJ8Q_", "{\"cpt\":0,\"cpr\":0.3427378351683974,\"s\":0,\"es\":1}");
Zeile gelöscht : user_pref("iminent.adapters", "{\"oceanis-change-background.softonic.de\":{\"CountryCode\":\"DE\",\"NoAds\":false,\"Status\":2,\"AdapterKey\":\"default_adapter\",\"v\":true,\"p\":0,\"t\":1,\"th\":0.22[...]
Zeile gelöscht : user_pref("iminent.enabledAds", "obsolete");
Zeile gelöscht : user_pref("iminent.externalScripts", "{\"value\":[{\"addonUid\":\"10bb6277-6b2b-413e-8d82-ad9398543254\",\"name\":\"Dealply\",\"addonId\":1,\"url\":\"//i.iminentjs.info/imitin/javascript.js\",\"queryS[...]
Zeile gelöscht : user_pref("iminent.newtabredirect", "true");
Zeile gelöscht : user_pref("iminent.nomsi", "true");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent102", "1402956617517");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent109", "1402956395873");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent110", "1402956584193");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent111", "1402956395516");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent112", "1402956416017");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent122", "1402956396062");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent140", "1402956243165");
Zeile gelöscht : user_pref("iminent.searchindex", "1");
Zeile gelöscht : user_pref("iminent.trackingInfo", "{\"state\":0,\"samplingRate\":0}");
Zeile gelöscht : user_pref("iminent.version", "8.25.2.1");
Zeile gelöscht : user_pref("iminent.versioning", "{\"CurrentVersion\":\"8.25.2.1\",\"InstallEventCTime\":1402956332896}");

[ Datei : C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\qeknea54.default\prefs.js ]

Zeile gelöscht : user_pref("browser.search.defaultengine", "Ask.com");
Zeile gelöscht : user_pref("browser.search.defaultenginename", "Ask.com");
Zeile gelöscht : user_pref("browser.search.order.1", "Ask.com");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Ask.com");
Zeile gelöscht : user_pref("browser.startup.homepage", "hxxp://search.avira.com/?l=dis&o=APN10261&gct=hp&dc=EU&locale=de_DE");
Zeile gelöscht : user_pref("extensions.asktb.ff-original-keyword-url", "");
Zeile gelöscht : user_pref("iminent.searchindex", "1");
Zeile gelöscht : user_pref("iminent.newtabredirect", "true");
Zeile gelöscht : user_pref("iminent.nomsi", "true");

*************************

AdwCleaner[R0].txt - [11018 octets] - [16/06/2014 23:44:47]
AdwCleaner[S0].txt - [10295 octets] - [16/06/2014 23:48:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10356 octets] ##########
         
--- --- ---


Danke!

danach habe ich jetzt "junkware removal tool" durchlaufen lassen.
hier der log:

Zitat:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Starter x86
Ran by DESIDERABILIS on 16.06.2014 at 23:41:26,52
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{05022ED8-5124-48F2-85CA-357D1195F5C6}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{9DCF2AF7-6CD0-4EC0-BA4B-279DC8D92715}



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\DESIDERABILIS\AppData\Roaming\mozilla\firefox\profiles\c6vll6tw.default-1402954302832\minidumps [6 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 16.06.2014 at 23:49:39,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
dankeschön!
__________________


Alt 05.08.2014, 08:12   #3
schrauber
/// the machine
/// TB-Ausbilder
 

laptop sehr langsam, definitiver befall von plagegeistern - Standard

laptop sehr langsam, definitiver befall von plagegeistern



hi,

Adware & Co. deinstallieren
  • Lade Dir bitte von hier Revo Uninstaller herunter.
  • Installiere und starte das Programm.
  • Suche im Uninstallerfeld nach den Programmen, die unter:

    diesen Zusatz haben:
  • Wähle die Programme nacheinander aus und klicke jedesmal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .



Downloade Dir bitte TFC ( von Oldtimer ) und speichere die Datei auf dem Desktop.
Schließe nun alle offenen Programme und trenne Dich von dem Internet.
Doppelklick auf die TFC.exe und drücke auf Start.
Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen.


Frisches FRST log bitte.
__________________
__________________

Antwort

Themen zu laptop sehr langsam, definitiver befall von plagegeistern
4d36e972-e325-11ce-bfc1-08002be10318, adware.eorezo, adware.tuto4pc, device driver, iph.genericbho, newtab, pup.optional.adwareplugin, pup.optional.bench.a, pup.optional.benchupdater, pup.optional.benchupdater.a, pup.optional.browsefox.a, pup.optional.conduit.a, pup.optional.discountdragon, pup.optional.discountdragon.a, pup.optional.findopolis.a, pup.optional.firstseentoday.a, pup.optional.freesoft, pup.optional.freesofttoday.a, pup.optional.genericext.a, pup.optional.imgupdater.a, pup.optional.newplayer.a, pup.optional.optimuminstaller.a, pup.optional.skytech.a, pup.optional.smartapps, pup.optional.suptab.a, pup.optional.umbrella.a, pup.optional.vopackage.a, pup.optional.webssearches.a, teredo, vcredist, wscript.exe



Ähnliche Themen: laptop sehr langsam, definitiver befall von plagegeistern


  1. Laptop von Schwester ist sehr langsam.
    Plagegeister aller Art und deren Bekämpfung - 06.09.2015 (11)
  2. WLAN auf Laptop sehr langsam
    Alles rund um Windows - 28.07.2015 (9)
  3. Laptop ist sehr langsam
    Alles rund um Windows - 22.06.2015 (5)
  4. PC seit geraumer Zeit sehr Langsam befall?
    Plagegeister aller Art und deren Bekämpfung - 29.12.2014 (8)
  5. Laptop sehr langsam und wird schnell heiß wenn man games zockt virus? internet spackt auch oft ab (nur laptop)
    Plagegeister aller Art und deren Bekämpfung - 06.12.2014 (3)
  6. Laptop WinVista sehr langsam
    Alles rund um Windows - 11.11.2014 (13)
  7. Laptop ist immer sehr sehr langsam
    Alles rund um Windows - 30.10.2014 (14)
  8. Laptop ist sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 30.07.2014 (3)
  9. Computer ist nach Viren befall sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 17.11.2013 (14)
  10. Mein Laptop fährt nur noch langsam hoch bzw. ist während des Gebrauchs sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 07.05.2013 (21)
  11. Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr
    Log-Analyse und Auswertung - 05.02.2013 (9)
  12. Laptop startet sehr langsam
    Alles rund um Windows - 28.12.2012 (10)
  13. Laptop sehr schnell, sehr langsam
    Log-Analyse und Auswertung - 15.10.2012 (27)
  14. Internet sehr langsam, Wlan schuld oder gar Befall ?
    Log-Analyse und Auswertung - 01.12.2010 (3)
  15. Laptop sehr langsam
    Log-Analyse und Auswertung - 19.09.2010 (1)
  16. Laptop plötzlich sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 06.07.2010 (1)
  17. Laptop plötzlich sehr sehr langsam
    Log-Analyse und Auswertung - 24.09.2008 (1)

Zum Thema laptop sehr langsam, definitiver befall von plagegeistern - Guten Abend, mein Laptop ist befallen mit vielen Plagegeistern. Deswegen bitte ich hier um Hilfe. Laut einer Anleitung aus dem Thread "Laptop wird immer langsamer" habe ich jetzt einen Scan - laptop sehr langsam, definitiver befall von plagegeistern...
Archiv
Du betrachtest: laptop sehr langsam, definitiver befall von plagegeistern auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.