Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
IStartSurf!

IStartSurf!


Plagegeister aller Art und deren Bekämpfung: IStartSurf!

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 21.05.2015, 10:41   #1
Atalon
 
IStartSurf! - Standard

IStartSurf!


Sehr geehrtes Team vom Trojaner Board!

Habe Malwarebytes drüberlaufen lassen und andschließend adw cleaner. Hier die Logs. Vorab. ich würde mich über weitere Tips freuen.

Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlauf Datum: 21.05.2015
Suchlauf-Zeit: 10:56:14
Logdatei: Istart.txt
Administrator: Ja

Version: 2.01.6.1022
Malware Datenbank: v2015.05.20.06
Rootkit Datenbank: v2015.05.16.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Grisu

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 489340
Verstrichene Zeit: 20 Min, 3 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 7
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\ProtectService.exe, 1892, , [e8fe266fabdf86b0901e0a0ba55da45c]
PUP.Optional.Giner, C:\Program Files (x86)\XTab\CmdShell.exe, 3708, , [84623c591c6e8fa776708ed1ee18a65a]
PUP.Optional.Giner, C:\Program Files (x86)\XTab\HPNotify.exe, 3876, , [6284b7de5238c2746b7ba4bbce38bd43]
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\InternetEnhancerService.exe, 2304, , [6a7c237217732511c2cbe38f679e6b95]
PUP.Optional.WindowsMangerProtect.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, 1368, , [509696ff6c1ed462d10d0be2b54e936d]
PUP.Optional.IStartSurf.A, C:\Users\Grisu\AppData\Roaming\istartsurf\UninstallManager.exe, 2236, , [d4128b0a5436b0864f8702bc8f744fb1]
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\InternetEnhancer.exe, 2464, , [36b04c494743fc3a8646a434a55efe02]

Module: 13
PUP.Optional.SearchProtect, C:\Program Files (x86)\XTab\BrowserAction.dll, , [5690672ef09ae650947488be7092fd03],
PUP.Optional.Giner, C:\Program Files (x86)\XTab\IeWatchDog.dll, , [18cefe9792f848eeb135c49b43c331cf],
PUP.Optional.Browserwatch, C:\Program Files (x86)\XTab\BrowerWatchFF.dll, , [7a6c2273c1c9280e67b78b8af0168779],
PUP.Optional.Browserwatch, C:\Program Files (x86)\XTab\BrowerWatchCH.dll, , [24c2f4a1464460d6819dc84d62a4c33d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcp110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcp110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcp110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcr110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcr110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcr110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\ApiHandlr.dll, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\FiddlerCore.dll, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\Newtonsoft.Json.dll, , [36b04c494743fc3a8646a434a55efe02],

Registrierungsschlüssel: 47
PUP.Optional.XTab.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IHProtect Service, , [e8fe266fabdf86b0901e0a0ba55da45c],
PUP.Optional.Giner, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.Giner, HKLM\SOFTWARE\CLASSES\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.Giner, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.Giner, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.Giner, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.Giner, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.Giner, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.Giner, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [479f5c3907835ed84912b0bb9e67b14f],
PUP.Optional.FFPluginHp.A, HKLM\SOFTWARE\WOW6432NODE\FFPluginHp, , [2db92570afdb1e18fadbeeebed16d52b],
PUP.Optional.IHProtect.A, HKLM\SOFTWARE\WOW6432NODE\IHProtect, , [a6400c8907831125f6a607e3ff04d32d],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\Iminent, , [bd29a3f239518ea89fbc3dec9f656d93],
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\istartsurfSoftware, , [f9ed692c64260234aa5941bf20e4ce32],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, , [974f5441b5d58fa7a399b4a907fefe02],
PUP.Optional.WajaWebEnhance.A, HKLM\SOFTWARE\WOW6432NODE\WajaWebEnhance, , [a73fc5d0513963d36f444a287392ff01],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\WajIntEnhance, , [3ea812837911a591114442a570938f71],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, , [5c8ab0e5fc8eb3833042459f63a02ad6],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, , [1acc365fa2e80d29da97f9eb25def808],
PUP.Optional.Vosteran, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, , [786efb9a2466f640ff2cb53db15246ba],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, , [ce185144ee9c082ed897a53fc1429d63],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB, , [1ec8dcb90f7b181ea8d0d12d679c60a0],
PUP.Optional.Wajam.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WajaWebEnhance Service, , [6a7c237217732511c2cbe38f679e6b95],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, , [509696ff6c1ed462d10d0be2b54e936d],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, , [d115cec72c5e2b0bfe8d17dd23e019e7],
PUP.Optional.HomeTab.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\HomeTab, , [9f476f261278211532443ed13bc91be5],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\SearchProtectWS, , [56909ff692f82412b1c3925234cf23dd],
PUP.Optional.TNT.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\TNT2, , [a4427d18eb9fb581fb28d214fa095aa6],
PUP.Optional.WajaWebEnhance.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\WajaWebEnhance, , [76701c797119a2949d15a1d1937214ec],
PUP.Optional.Wajam.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\WajIEnhance, , [af370e874446e0567db47d6faa5915eb],
PUP.Optional.Wajam.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\WajIntEnhance, , [f4f2dfb67119ff3774e2569117ec946c],
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, , [ce18316446440531d288ea811fe654ac],
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{1777DF54-E8B2-492D-B105-29E5DDFE1C81}, , [5d89098c84069e98afab75f69c694ab6],
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}, , [9c4ab0e5a3e753e3e575303bd72e9967],
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [e7ff573eee9c58de2931fc6f73926d93],
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}, , [b630d1c42961072f76e44f1cb74e1ee2],
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E733165D-CBCF-4FDA-883E-ADEF965B476C}, , [994db6df4545a19595c574f7778e8977],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, , [faec5d38fd8d979fe7225091669d3dc3],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, , [8066fe975832dd59977303de2ed551af],
PUP.Optional.Linkey.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, , [14d2b2e377138caa878427ba8083a957],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, , [974f01942e5cd363f1bcdd92e124fb05],
PUP.Optional.Vosteran.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, , [ad393b5a0f7b37ff9a726978a162b24e],
PUP.Optional.Wajam.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, , [ad396d28a4e683b39974ecf5897a26da],
PUP.Optional.FastSearch.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MOZILLA\EXTENDS, , [9452f69f35551125cf865a7fa95a7b85],
PUP.Optional.Wajam.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\SIMPLYTECH\HomeTabWajIEnhance, , [7c6a1a7b6228c6708fe12cb88281bc44],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajaWebEnhance, , [a93dc4d16c1e52e48f67891d8a796a96],
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\istartsurf uninstall, , [d4128b0a5436b0864f8702bc8f744fb1],

Registrierungswerte: 15
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, istartsurf, , [479f5c3907835ed84912b0bb9e67b14f]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, hxxp://www.istartsurf.com/web/?type=dspp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, , [776f385d25659b9b5efd4625b74e26da]
PUP.Optional.SweetSearch.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|sweetsearch@gmail.com, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com, , [e9fdd4c1890167cf2e9b59814db654ac]
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\SUPTAB|ptid, smt, , [1ec8dcb90f7b181ea8d0d12d679c60a0]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=smt&utm_campaign=install_ie&utm_content=ds&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&ts=1432195423&type=default&q={searchTerms}, , [ce18316446440531d288ea811fe654ac]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{1777DF54-E8B2-492D-B105-29E5DDFE1C81}|URL, hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=smt&utm_campaign=install_ie&utm_content=ds&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&ts=1432195423&type=default&q={searchTerms}, , [5d89098c84069e98afab75f69c694ab6]
PUP.Optional.Spigot.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{1777DF54-E8B2-492D-B105-29E5DDFE1C81}|TopResultURL, https://at.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=501549&p={searchTerms}, , [2cba7a1b25659a9c7bbb0bd1ee154ab6]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}|URL, hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=smt&utm_campaign=install_ie&utm_content=ds&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&ts=1432195423&type=default&q={searchTerms}, , [9c4ab0e5a3e753e3e575303bd72e9967]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}|FaviconURL, hxxp://www.istartsurf.com//favicon.ico, , [ecfaf89d6b1f80b6da80fe6d8283a45c]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|DisplayName, istartsurf, , [e7ff573eee9c58de2931fc6f73926d93]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|URL, hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=smt&utm_campaign=install_ie&utm_content=ds&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&ts=1432195423&type=default&q={searchTerms}, , [7274662f4941251199c1bfac3dc860a0]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}|TopResultURL, hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, , [cc1af5a04347989edf7bb3b8897c14ec]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}|URL, hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=smt&utm_campaign=install_ie&utm_content=ds&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&ts=1432195423&type=default&q={searchTerms}, , [b630d1c42961072f76e44f1cb74e1ee2]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{E733165D-CBCF-4FDA-883E-ADEF965B476C}|URL, hxxp://www.istartsurf.com/web/?utm_source=b&utm_medium=smt&utm_campaign=install_ie&utm_content=ds&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&ts=1432195423&type=default&q={searchTerms}, , [994db6df4545a19595c574f7778e8977]
PUP.Optional.FastSearch.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MOZILLA\EXTENDS|appid, searchffv2@gmail.com, , [9452f69f35551125cf865a7fa95a7b85]

Registrierungsdaten: 13
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}),,[a244d2c3d6b49c9a60c3a77153b39e62]
PUP.Optional.HttpBreaker.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936),,[d115791c6f1bb77fd2e991860105cd33]
PUP.Optional.HttpBreaker.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936),,[44a27520c7c392a4873497806b9b9e62]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}),,[ce18078e8efc8babb073fc1ce1255fa1]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|CustomizeSearch, hxxp://www.istartsurf.com/web/?type=dspp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=dspp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}),,[9155aee7eaa0340254d046d2bd49b749]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH|SearchAssistant, hxxp://www.istartsurf.com/web/?type=dspp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=dspp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}),,[13d3286dbad0f442f331c0580ff7ee12]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Gut: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Schlecht: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),,[34b26530484270c6e52ec262a3637f81]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}),,[4e98cdc8eaa0ac8a3ce7ac6ca462837d]
PUP.Optional.HttpBreaker.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936),,[7274583d9cee8da9a11a63b43ec8db25]
PUP.Optional.HttpBreaker.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936),,[a541f79ee1a9c4722596090ec640a957]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936&q={searchTerms}),,[4c9af4a1f9912a0cf52efb1da660cb35]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.istartsurf.com/?type=hp&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hp&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936),,[ac3a2d684c3e171f44dd23f512f44fb1]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-2002501991-1074103417-190154067-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.istartsurf.com/?type=hp&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hp&ts=1432195371&z=4f5a8c812e3b76383a5c360g1z4c6o0g9tewfcam1g&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936),,[d016badba0ea072f031ecf497d89936d]

Ordner: 44
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Uninstall Wajam, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\image, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\en-US, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-419, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-ES, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-BE, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CA, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CH, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-FR, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-LU, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-CH, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-IT, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pl, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt-BR, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru-MO, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\tr-TR, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\vi-VI, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-CN, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-TW, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam, , [a93dc4d16c1e52e48f67891d8a796a96],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, , [5690ace9b1d961d5d976a9115da626da],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, , [5690ace9b1d961d5d976a9115da626da],
PUP.Optional.IStartSurf.A, C:\Users\Grisu\AppData\Roaming\istartsurf, , [d4128b0a5436b0864f8702bc8f744fb1],
PUP.Optional.AppsHat.A, C:\Users\Grisu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat, , [14d2f1a40189f14507897b4f56adb34d],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate, , [c81e286d0d7df73f1eac458a9d6651af],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate\update, , [c81e286d0d7df73f1eac458a9d6651af],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\chrome, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\chrome\content, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\chrome\skin, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer, , [36b04c494743fc3a8646a434a55efe02],

Dateien: 161
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\ProtectService.exe, , [e8fe266fabdf86b0901e0a0ba55da45c],
PUP.Optional.Giner, C:\Program Files (x86)\XTab\CmdShell.exe, , [84623c591c6e8fa776708ed1ee18a65a],
PUP.Optional.Giner, C:\Program Files (x86)\XTab\HPNotify.exe, , [6284b7de5238c2746b7ba4bbce38bd43],
PUP.Optional.SearchProtect, C:\Program Files (x86)\XTab\BrowserAction.dll, , [5690672ef09ae650947488be7092fd03],
PUP.Optional.Giner, C:\Program Files (x86)\XTab\IeWatchDog.dll, , [18cefe9792f848eeb135c49b43c331cf],
PUP.Optional.Browserwatch, C:\Program Files (x86)\XTab\BrowerWatchFF.dll, , [7a6c2273c1c9280e67b78b8af0168779],
PUP.Optional.Browserwatch, C:\Program Files (x86)\XTab\BrowerWatchCH.dll, , [24c2f4a1464460d6819dc84d62a4c33d],
PUP.Optional.Giner, C:\Program Files (x86)\XTab\SupTab.dll, , [e501474e2a60a591a73f3b24f80eff01],
PUP.Optional.IStartSurf.A, C:\Users\Grisu\AppData\Local\Temp\smt_istartsurf.exe, , [22c4aaeb8208c4720a7a520c15f1946c],
PUP.Optional.Wajam.A, C:\Users\Grisu\AppData\Local\Temp\setup.exe, , [da0c5e372961191d003467f94bbbb749],
PUP.Optional.Downloader, C:\Users\Grisu\Downloads\Firefox - CHIP-Installer.exe, , [29bd4352fd8d54e2283e8de0867aef11],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Wajam Website.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Settings.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\SignIn with Facebook.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\SignIn with Twitter.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search\Ask.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search\Google.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search\IMDb.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search\Shopping.com.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search\TripAdvisor.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search\Wikipedia.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Search\Yahoo!.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Amazon.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Argos.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Ebay.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Etsy.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\HomeDepot.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Ikea.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Lowe's.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Mercadolivre.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\MyShopping.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Sears.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Target.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Tesco.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Walmart.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Explore Social Shopping\Zalando.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.Wajam.A, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaWebEnhance\Uninstall Wajam\uninstall.lnk, , [2abc5b3a7515a98d2d5b6e6b669da25e],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\uninstall.exe, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\conf, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\ffsearch_toolbar!1.0.0.1031.xpi, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\install.data, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcp110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\msvcr110.dll, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\searchProvider.xml, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\about.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\about_bk.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\btn.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\btn_apply.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\close.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\conf.xml, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\conf_back.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\input_bk.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\logo.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\main.xml, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\radio_1.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\radio_2.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\rigth_arrow.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\skin\settings.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\data.html, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\indexIE.html, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\indexIE8.html, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\main.css, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\ver.txt, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\google_trends.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\icon128.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\icon16.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\icon48.png, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\loading.gif, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\img\logo32.ico, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\common.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\ga.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\jquery-1.11.0.min.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\jquery.autocomplete.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\jquery.xdomainrequest.min.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\js.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\library.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\xagainit-ie8.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\xagainit2.0.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\js\xdomain.min.js, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\en-US\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-419\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\es-ES\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-BE\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CA\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-CH\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-FR\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\fr-LU\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-CH\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\it-IT\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pl\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\pt-BR\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\ru-MO\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\tr-TR\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\vi-VI\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-CN\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.XTab.A, C:\Program Files (x86)\XTab\web\_locales\zh-TW\messages.json, , [2abcc0d5f09a290d059834b611f2936d],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\InternetEnhancerService.exe, , [6a7c237217732511c2cbe38f679e6b95],
PUP.Optional.WindowsMangerProtect.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, , [509696ff6c1ed462d10d0be2b54e936d],
PUP.Optional.Wajam.A, C:\Program Files (x86)\Wajam\uninstall.exe, , [a93dc4d16c1e52e48f67891d8a796a96],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update\conf, , [5690ace9b1d961d5d976a9115da626da],
PUP.Optional.IStartSurf.A, C:\Users\Grisu\AppData\Roaming\istartsurf\UninstallManager.exe, , [d4128b0a5436b0864f8702bc8f744fb1],
PUP.Optional.AppsHat.A, C:\Users\Grisu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat\AppsHat.lnk, , [14d2f1a40189f14507897b4f56adb34d],
PUP.Optional.AppsHat.A, C:\Users\Grisu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat\Uninstall.lnk, , [14d2f1a40189f14507897b4f56adb34d],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate\update\conf, , [c81e286d0d7df73f1eac458a9d6651af],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\chrome.manifest, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\install.rdf, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\chrome\content\toolbar.js, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\chrome\content\toolbar.xul, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.SweetSearch.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\extensions\sweetsearch@gmail.com\chrome\skin\icon.png, , [70767322a0eace68f2469641ac57d12f],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\uninstall.exe, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\amazon.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\argos.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\ask.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\bestbuy.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\ebay.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\etsy.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\facebook.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\favicon.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\google.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\homedepot.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\ikea.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\imdb.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\lowes.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\mercado.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\mysearchweb.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\myshopping.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\searchresult.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\sears.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\setting.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\settings.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\shopping.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\target.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\tesco.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\tripadvisor.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\twitter.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\wajam.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\walmart.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\wiki.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\yahoo.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\Logos\zalando.ico, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\007290c6eaab8e3f7a895162dbe596bc, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\27a3e026958775027c50df2378a10264, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\ApiHandlr.dll, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\fb1623258fb090ed627ec29d474d4763, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\fdc5ec3a7e8363c7ed9df3c277fa7597, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\FiddlerCore.dll, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\HtmlAgilityPack.dll, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\InternetEnhancer.exe, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\lan-proxy-settings.dat, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\makecert.exe, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\Newtonsoft.Json.dll, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\wie, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.Wajam.A, C:\Program Files (x86)\WajaWebEnhance\WajaWebEnhance Internet Enhancer\WJManifest, , [36b04c494743fc3a8646a434a55efe02],
PUP.Optional.IStartSurf.A, C:\Users\Grisu\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Gut: (), Schlecht: ( "homepage": "hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936",), ,[0dd91c795b2f191d77c8baaa5fa7f10f]
PUP.Optional.Spigot.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\prefs.js, Gut: (), Schlecht: (user_pref("keyword.URL", "https://at.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=501549&p="), ,[fde9d1c4612995a1ba195a072dd96997]
PUP.Optional.HttpBreaker.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.startup.homepage", "hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936"), ,[5d891c79315988aef8dc9fc26b9bea16]
PUP.Optional.IStartSurf.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.search.defaultenginename", "istartsurf"), ,[d313791c94f638feb92170f1818511ef]
PUP.Optional.IStartSurf.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.search.selectedEngine", "istartsurf"), ,[30b61c79187293a38a51ce93a5617090]
PUP.Optional.QuickStart.A, C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.newtab.url", "chrome://quick_start/content/index.html"), ,[796d8015b3d70f27031b570d5da926da]

Physische Sektoren: 0
(Keine schädliche Elemente gefunden)


(end)



Und hier das von adw Cleaner :

# AdwCleaner v4.204 - Bericht erstellt 21/05/2015 um 11:28:29
# Aktualisiert 12/05/2015 von Xplode
# Datenbank : 2015-05-20.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Grisu - GRISU-PC
# Gestarted von : C:\Users\Grisu\Downloads\AdwCleaner_4.204.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : IHProtect Service
[#] Dienst Gelöscht : WindowsMangerProtect

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\WindowsMangerProtect
Ordner Gelöscht : C:\ProgramData\ytd video downloader
Ordner Gelöscht : C:\ProgramData\IHProtectUpDate
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
Ordner Gelöscht : C:\Program Files (x86)\GreenTree Applications
Ordner Gelöscht : C:\Program Files (x86)\Wajam
Ordner Gelöscht : C:\Program Files (x86)\XTab
Ordner Gelöscht : C:\Program Files (x86)\DriverTuner
Ordner Gelöscht : C:\Users\Grisu\AppData\Local\webplayer
Ordner Gelöscht : C:\Users\Grisu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
Ordner Gelöscht : C:\Users\Grisu\AppData\Roaming\Mozilla\Firefox\Profiles\e9dof2pq.default\Extensions\sweetsearch@gmail.com
Datei Gelöscht : C:\Users\Public\Desktop\DriverTuner.lnk
Datei Gelöscht : C:\Users\Public\Desktop\YTD Video Downloader.lnk
Datei Gelöscht : C:\Users\Grisu\AppData\Local\Temp\Uninstall.exe

***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [sweetsearch@gmail.com]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\speedupmypc
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338A754C-B46E-4BF2-8AC8-23DE36862AD3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1777DF54-E8B2-492D-B105-29E5DDFE1C81}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\HomeTab
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\simplytech
Schlüssel Gelöscht : HKCU\Software\WajIEnhance
Schlüssel Gelöscht : HKCU\Software\TNT2
Schlüssel Gelöscht : HKCU\Software\WajIntEnhance
Schlüssel Gelöscht : HKCU\Software\SearchProtectWS
Schlüssel Gelöscht : HKCU\Software\Linkey
Schlüssel Gelöscht : HKLM\SOFTWARE\AskPartnerNetwork
Schlüssel Gelöscht : HKLM\SOFTWARE\Conduit
Schlüssel Gelöscht : HKLM\SOFTWARE\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\istartsurfSoftware
Schlüssel Gelöscht : HKLM\SOFTWARE\SafetyNut
Schlüssel Gelöscht : HKLM\SOFTWARE\SearchProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\SupDp
Schlüssel Gelöscht : HKLM\SOFTWARE\SupTab
Schlüssel Gelöscht : HKLM\SOFTWARE\supWindowsMangerProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\Uniblue
Schlüssel Gelöscht : HKLM\SOFTWARE\IHProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\DriverTuner_Init
Schlüssel Gelöscht : HKLM\SOFTWARE\DriverTuner
Schlüssel Gelöscht : HKLM\SOFTWARE\WajIntEnhance
Schlüssel Gelöscht : HKLM\SOFTWARE\SpeedBit
Schlüssel Gelöscht : HKLM\SOFTWARE\AIM Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\FFPluginHp
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{520C1D80-935C-42B9-9340-E883849D804F}_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\istartsurf.com
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.istartsurf.com
Daten Gelöscht : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxp=127.0.0.1:55205;hxxps=127.0.0.1:55205
Daten Gelöscht : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
Daten Gelöscht : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>
Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxp=127.0.0.1:55205;hxxps=127.0.0.1:55205
Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17801

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v38.0.1 (x86 de)

[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.defaultenginename", "istartsurf");
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.alias", "istartsurf");
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.iconURL", "hxxp://www.istartsurf.com/web/favicon.ico");
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.name", "istartsurf");
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.url", "hxxp://www.istartsurf.com/web/?type=dspp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936[...]
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.selectedEngine", "istartsurf");
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("browser.startup.homepage", "hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936");
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("extensions.quick_start.enable_search1", false);
[e9dof2pq.default\prefs.js] - Zeile Gelöscht : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

-\\ Google Chrome v

[C:\Users\Grisu\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Gelöscht [Extension] : amfclgbdpgndipgoegfpkkgobahigbcl
[C:\Users\Grisu\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Gelöscht [Homepage] : hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936
[C:\Users\Grisu\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Gelöscht [Startup_URLs] : hxxp://www.istartsurf.com/?type=hppp&ts=1432195416&z=78ab1b27ccd2424f30608bagbz2c0o1g8t4wbzbg5q&from=smt&uid=WDCXWD20EARX-00PASB0_WD-WCAZAA51993619936

*************************

AdwCleaner[R0].txt - [15007 Bytes] - [21/05/2015 11:25:49]
AdwCleaner[S0].txt - [11265 Bytes] - [21/05/2015 11:28:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11325 Bytes] ##########

 

Themen zu IStartSurf!
install.exe, installmanager.exe, pup.optional.appshat.a, pup.optional.browserwatch, pup.optional.fastsearch.a, pup.optional.ffpluginhp.a, pup.optional.giner, pup.optional.hometab.a, pup.optional.httpbreaker.a, pup.optional.ihprotect.a, pup.optional.iminent.a, pup.optional.istartsurf.a, pup.optional.linkey.a, pup.optional.qone8, pup.optional.searchprotect, pup.optional.searchprotect.a, pup.optional.spigot.a, pup.optional.suptab.a, pup.optional.sweetsearch.a, pup.optional.tnt.a, pup.optional.vosteran, pup.optional.vosteran.a, pup.optional.wajam.a, pup.optional.wajawebenhance.a, pup.optional.windowsmangerprotect.a, pup.optional.wpm.a, pup.optional.xtab.a


« Telekom Schreiben Trojaner Warnung | Computer hakt und ist langsam »


Ähnliche Themen: IStartSurf!


  1. istartsurf öffnet sich immer als 2. Tab
    Plagegeister aller Art und deren Bekämpfung - 06.01.2016 (21)
  2. Probleme mit Istartsurf
    Plagegeister aller Art und deren Bekämpfung - 26.10.2015 (9)
  3. Webssearches und istartsurf lassen sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 02.08.2015 (5)
  4. Win 7: istartsurf eingefangen/updates gehen nirgends mehr
    Log-Analyse und Auswertung - 07.06.2015 (10)
  5. Windows 8.1: iStartSurf Befall
    Log-Analyse und Auswertung - 15.05.2015 (27)
  6. PC langsam nach Installation über Chip.de und istartsurf Startseite
    Plagegeister aller Art und deren Bekämpfung - 11.05.2015 (12)
  7. OurSurfing.com Istartsurf und andere Infektionen eingefangen
    Plagegeister aller Art und deren Bekämpfung - 05.05.2015 (35)
  8. istartsurf
    Log-Analyse und Auswertung - 01.05.2015 (2)
  9. adsdelivery + iStartSurf
    Log-Analyse und Auswertung - 13.04.2015 (18)
  10. Webseiten werden umgeleitet - iStartSurf und mehr
    Log-Analyse und Auswertung - 07.04.2015 (20)
  11. istartsurf und Search Protect entfernen?
    Plagegeister aller Art und deren Bekämpfung - 17.02.2015 (11)
  12. Windows XP: Istartsurf und lahmer Rechner
    Plagegeister aller Art und deren Bekämpfung - 24.10.2014 (11)
  13. iStartSurf deinstallieren
    Log-Analyse und Auswertung - 22.10.2014 (38)
  14. iStartSurf / Goobzo eingefangen...
    Log-Analyse und Auswertung - 02.10.2014 (27)
  15. Spy Hunter 4 & iStartSurf
    Plagegeister aller Art und deren Bekämpfung - 20.09.2014 (14)
  16. Spyhunter 4 + istartsurf.com
    Plagegeister aller Art und deren Bekämpfung - 04.09.2014 (7)
  17. iStartSurf.com (iStartSurf) entfernen
    Anleitungen, FAQs & Links - 23.07.2014 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema IStartSurf! - Sehr geehrtes Team vom Trojaner Board! Habe Malwarebytes drüberlaufen lassen und andschließend adw cleaner. Hier die Logs. Vorab. ich würde mich über weitere Tips freuen. Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: - IStartSurf!...
Archiv
Du betrachtest: IStartSurf! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30