AxelWartburg | 23.06.2014 21:30 | Hallo Schrauber!
Herzlichen Dank, mal wieder! ♥
Hier die erwünschten Protokolle: Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlauf Datum: 23.06.2014
Suchlauf-Zeit: 21:56:07
Logdatei: mbam.txt
Administrator: Ja
Version: 2.00.2.1012
Malware Datenbank: v2014.06.23.12
Rootkit Datenbank: v2014.06.20.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert
Betriebssystem: Windows 7 Service Pack 1
CPU: x86
Dateisystem: NTFS
Benutzer: Axel Wartburg
Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 285184
Verstrichene Zeit: 12 Min, 0 Sek
Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registrierungsschlüssel: 3
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, In Quarantäne, [a93f94e7ec8f25116d791d2a709207f9],
PUP.Optional.IMGUpdater.A, HKLM\SOFTWARE\IMGUPDATER, In Quarantäne, [8365fd7ee09bb2841e0dd1dae022db25],
PUP.Optional.Iminent.A, HKU\S-1-5-21-2484145685-346988029-2140834265-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\Iminent, Löschen bei Neustart, [9256710ab8c386b002d2a51161a17888],
Registrierungswerte: 4
PUP.Optional.IMGUpdater.A, HKLM\SOFTWARE\IMGUPDATER|ConfigBlockJSN, {
"MAIN_SWITCH" : true,
"UPDATABLE" : {
"064A36CC-4404-42F9-B26E-3BFD515F2447" : {
"lastupdated" : 0,
"mindeltatime" : 259200
},
"2C200CBA-D536-40C8-902D-9C34FD10AD85" : {
"lastupdated" : 0,
"localversion" : "0",
"mindeltatime" : 259200
},
"4C973056-22D8-488C-A358-AEA00CC2EC7D" : {
"lastupdated" : 0,
"mindeltatime" : 259200
}
}
}
, In Quarantäne, [8365fd7ee09bb2841e0dd1dae022db25]
PUP.Optional.FastStart.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|faststartff@gmail.com, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com, In Quarantäne, [aa3ea1da6b108aac0c4fb64b7094db25]
PUP.Optional.IMGUpdater.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\GLOBALUPDATER|ImagePath, C:\Program Files\Common Files\IMGUpdater\IMGUpdater.exe, In Quarantäne, [0ddb3645e2990135df1d812a34ce5ba5]
PUP.Optional.Spigot.A, HKU\S-1-5-21-2484145685-346988029-2140834265-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Browser Extensions, "C:\Users\Axel Wartburg\AppData\Roaming\Browser Extensions\CouponsHelper.exe", Löschen bei Neustart, [2fb9ef8c7209ee483dab619ad92a0000]
Registrierungsdaten: 0
(No malicious items detected)
Ordner: 39
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome\content, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\include, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\module, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\en, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\en-US, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\es, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\es-419, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-BE, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CA, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CH, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-LU, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\it, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\it-CH, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\pl, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\pt-BR, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\ru, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\ru-MO, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\tr, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\vi, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-CN, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-TW, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\defaults, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\defaults\preferences, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
Dateien: 101
PUP.Optional.RegCleanPro, C:\$RECYCLE.BIN\S-1-5-21-2484145685-346988029-2140834265-1001\$RIQKUUX.exe, In Quarantäne, [47a13645592279bd821dfe36ff014bb5],
PUP.Optional.Solimba, C:\$RECYCLE.BIN\S-1-5-21-2484145685-346988029-2140834265-1001\$RDUTVIY.exe, In Quarantäne, [1eca2e4ddba08caaae01c9afe3217e82],
PUP.Optional.Skytech.A, C:\$RECYCLE.BIN\S-1-5-21-2484145685-346988029-2140834265-1001\$R9MGTE3\UninstallManager.exe, In Quarantäne, [1bcd502bc8b3cb6b47958801a35e14ec],
PUP.Optional.IePluginService.A, C:\Users\Axel Wartburg\AppData\Local\temp\2403343\2403343.zipDir\tmp\SupTab_Setup302.exe, In Quarantäne, [6880daa12a5142f4c702d4866c958c74],
PUP.Optional.IePluginService.A, C:\Users\Axel Wartburg\AppData\Local\temp\2917375\2917375.zipDir\tmp\SupTab_Setup302.exe, In Quarantäne, [d711057698e3df57775298c28978d12f],
PUP.Optional.WPM.A, C:\Users\Axel Wartburg\AppData\Local\temp\2917375\2917375.zipDir\tmp\wpm_v20.0.0.401.exe, In Quarantäne, [0eda94e7f6855bdbfe88c5c824dde41c],
PUP.Optional.NewPlayer.A, C:\Users\Axel Wartburg\AppData\Local\temp\4BD7tmp\newvideoplayersetup.exe, In Quarantäne, [30b8d5a66714290d9d47364cb0518c74],
PUP.Optional.Elex.A, C:\Users\Axel Wartburg\AppData\Local\temp\4BE9tmp\lly_v9.exe, In Quarantäne, [0eda611ad1aab77f5b3689bf709026da],
PUP.Optional.FreeSoftToday.A, C:\Users\Axel Wartburg\AppData\Local\temp\abfaaa79-9c5d-4e12-993c-f3fcbf8f1ce3\software\Freesofttoday.exe, In Quarantäne, [6b7daecd9edd50e651c4711b2bd6837d],
PUP.Optional.BundleInstaller, C:\Users\Axel Wartburg\AppData\Local\temp\abfaaa79-9c5d-4e12-993c-f3fcbf8f1ce3\software\JFileManager.exe, In Quarantäne, [c721dc9f146747ef4494651544bd4fb1],
PUP.Optional.CrossRider.A, C:\Users\Axel Wartburg\AppData\Local\temp\abfaaa79-9c5d-4e12-993c-f3fcbf8f1ce3\software\setup.exe, In Quarantäne, [3bad4c2f27546cca055f0e3a6f9159a7],
PUP.Optional.GenericExt.A, C:\Users\Axel Wartburg\AppData\Local\temp\igdhbblpcellaljokkpfhcjlagemhgjl1aac2\minibarchrome.exe, In Quarantäne, [7771c3b8a1daa096b395300d67992cd4],
PUP.Optional.Iminent.A, C:\Users\Axel Wartburg\AppData\Local\temp\n9563\Iminent_1712-b2fcad5e.exe, In Quarantäne, [ab3d87f4fe7d4aeccbb071d7e21f4db3],
PUP.Optional.BundleInstaller.A, C:\Users\Axel Wartburg\AppData\Local\temp\n9563\s9563.exe, In Quarantäne, [f8f0c8b34a312115a43fcc7df20e936d],
PUP.Optional.DomaIQ, C:\Users\Axel Wartburg\Downloads\jvlsetup.exe, In Quarantäne, [5b8d04779cdf74c2d77eafde6d942dd3],
PUP.Optional.Downloader, C:\Users\Axel Wartburg\Downloads\Setup.exe, In Quarantäne, [18d02b5090eb49edef01404efd04d828],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome.manifest, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\icon.png, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\install.rdf, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome\content\config.json, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome\content\main.js, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome\content\prefs.txt, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome\content\savingsslider.js, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome\content\savingsslider.xul, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.SavingsSlider.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\savingsslider@mybrowserbar.com\chrome\content\spigot.js, In Quarantäne, [7e6aff7c3b4080b653672372b74be51b],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome.manifest, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\icon.png, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\install.rdf, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\config.json, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\main.js, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\main.xul, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\newtab.xul, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\prefs.txt, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\redirects.js, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\spigot.js, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.Spigot.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\{58d2a791-6199-482f-a9aa-9b725ec61362}\chrome\content\startpage.js, In Quarantäne, [74740e6d95e64aec892b91093ac8be42],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome.manifest, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\install.rdf, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\index.html, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\quick_start.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\quick_start.xul, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\include\speed_dial.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\about_blank_hook.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\misc.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\popup_image_helper.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\include\tools\urlrequestor.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\js.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib\doT.min.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery-2.1.0.min.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\lib\jquery.autocomplete.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\hotSearch.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\mostgrid.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\other.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\search.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\module\stat.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack\common.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack\ga.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\content\js\pack\xagainit.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\en\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\en-US\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\es\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\es-419\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-BE\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CA\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-CH\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\fr-LU\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\it\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\it-CH\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\pl\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\pt-BR\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\ru\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\ru-MO\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\tr\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\vi\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-CN\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\locale\zh-TW\locale.properties, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\default_add_logo.png, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\default_add_logo_hover.png, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\default_logo.png, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\googlelogo.png, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\google_trends.png, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\icon.png, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\loading.gif, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\logo.ico, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\logo.png, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\logo32.ico, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\simple.css, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\chrome\skin\style.css, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\defaults\preferences\fvd.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\defaults\preferences\preferences.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\addonmanager.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\aes.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\config.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\dialogs.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\last_tab.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\misc.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\properties.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\remoterequest.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\restoreprefs.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
PUP.Optional.FastStart.A, C:\Users\Axel Wartburg\AppData\Roaming\Mozilla\Firefox\Profiles\qpoy22qo.default\extensions\faststartff@gmail.com\modules\settings.js, In Quarantäne, [fcece596bebd0b2b5ba9792e887aba46],
Physische Sektoren: 0
(No malicious items detected)
(end) Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Home Premium x86
Ran by Axel Wartburg on 23.06.2014 at 22:23:28,12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ FireFox
Emptied folder: C:\Users\Axel Wartburg\AppData\Roaming\mozilla\firefox\profiles\qpoy22qo.default\minidumps [11 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.06.2014 at 22:27:48,96
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Herzliche Grüße
Axel |