cleo1504 | 02.07.2014 21:27 | Bei mir lässt sich die zoek.exe nicht öffnen...
hab es auch schon mit einer Neuinstallation versucht.
Woran kann das liegen?
Problem gelöst, es hat nur sehr lange gebraucht...sorry :)
Sodele, ich hab nun auch alles beisammen :) zoek.exe Code:
Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by Alle on 02.07.2014 at 21:09:02,16.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Alle\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
02.07.2014 21:12:15 Zoek.exe System Restore Point Created Succesfully.
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2075940210-4241511631-315471388-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8087BF27-866D-4268-B483-E96E390F47D4} deleted successfully
HKEY_USERS\S-1-5-21-2075940210-4241511631-315471388-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8697DAC2-4EB9-43DE-919F-D1CE6810D654} deleted successfully
HKEY_USERS\S-1-5-21-2075940210-4241511631-315471388-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
HKEY_USERS\S-1-5-21-2075940210-4241511631-315471388-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
HKEY_USERS\S-1-5-21-2075940210-4241511631-315471388-1000\HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{769a91da-209f-47fe-88b9-b0321b0982c8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{769a91da-209f-47fe-88b9-b0321b0982c8} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{41564952-412D-5637-00A7-7A786E7484D7} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\APNMCP deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\APNMCP deleted successfully
==== FireFox Fix ======================
Deleted from C:\Users\Alle\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\prefs.js:
Added to C:\Users\Alle\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\prefs.js:
user_pref("browser.startup.homepage", "hxxp://www.google.com");
user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "hxxp://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);
ProfilePath: C:\Users\Alle\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}
user.js not found
---- FireFox user.js and prefs.js backups ----
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Swift Browse deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\PROGRA~2\Yahoo! deleted
C:\Program Files\Zapp deleted
C:\PROGRA~2\Zapp deleted
C:\Users\Alle\AppData\Roaming\Yahoo! deleted
C:\Users\Alle\AppData\Roaming\ICQ Search deleted
C:\PROGRA~3\AskPartnerNetwork deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\Yahoo! Companion deleted
C:\PROGRA~3\Nico Mak Computing\WinZip Malware Protector deleted
C:\PROGRA~3\ICQ deleted
C:\Users\Alle\AppData\Local\CRE deleted
C:\Users\Alle\AppData\Local\APN deleted
C:\Users\Alle\AppData\Local\avgchrome deleted
C:\Users\Alle\AppData\Local\AskPartnerNetwork deleted
C:\Windows\SysNative\wsusnative64.exe deleted
C:\Users\Public\AlexaNSISPlugin.4812.dll deleted
C:\Users\Alle\Searches deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter (1).exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter (2).exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter (3).exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter (4).exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter (5).exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter (6).exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter (7).exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter.exe deleted
C:\Users\Alle\Downloads\FreeYouTubeToMP3Converter_3.11.35.1031.exe deleted
C:\Users\Alle\Downloads\SoftonicDownloader_fuer_stronghold-2.exe deleted
C:\Windows\wininit.ini deleted
C:\Windows\tasks\weDownload Manager Pro-chromeinstaller.job deleted
C:\Windows\tasks\weDownload Manager Pro-codedownloader.job deleted
C:\Windows\tasks\weDownload Manager Pro-firefoxinstaller.job deleted
C:\Windows\Launcher.exe deleted
C:\windows\SysNative\drivers\{2b4fc5ce-fd26-493c-97d3-e808aab73013}w64.sys deleted
C:\Windows\Syswow64\shoF391.tmp deleted
C:\Windows\Syswow64\shoFC55.tmp deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
"C:\Users\Alle\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\extensions\toolbar_AVIRA-V7@apn.ask.com.xpi" deleted
"C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" deleted
"C:\PROGRA~2\AskPartnerNetwork" deleted
"C:\PROGRA~2\AskPartnerNetwork\Toolbar" deleted
"C:\PROGRA~2\AskPartnerNetwork\Toolbar\Updater" deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [12.02.2012 11:26]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{B64D9B05-48E1-4CEB-BF58-E0643994E900}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" [14.01.2014 21:16]
==== Firefox Extensions ======================
==== Firefox Plugins ======================
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaaacalgebmfelllfiaoknifldpngjh - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx[]
jlkealnllhajodlnhmfjfmnhelpbaaem - C:\Program Files (x86)\Zapp\chrome\Zapp.crx[]
oolkekjjhnaeaahibbnfebmogackofpf - C:\Users\Alle\AppData\Local\CRE\oolkekjjhnaeaahibbnfebmogackofpf.crx[]
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
oolkekjjhnaeaahibbnfebmogackofpf - C:\Users\Alle\AppData\Local\CRE\oolkekjjhnaeaahibbnfebmogackofpf.crx[]
==== Chrome Fix ======================
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.pricegong.com_0.localstorage deleted successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.pricegong.com_0.localstorage-journal deleted successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage deleted successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage-journal deleted successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.webssearches.com_0.localstorage deleted successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.webssearches.com_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://rts.dsrlte.com"
"Start Page Restore"="hxxp://www.google.com"
"Default_Page_URL"="hxxp://www.google.com"
"Search Page"="hxxp://www.google.com"
"Search Bar"="hxxp://www.google.com"
"ICQ Search"="hxxp://www.google.com"
"Use Search Asst"="yes"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://www.google.com"
"Default_Page_URL"="hxxp://www.google.com"
"Start Page"="hxxp://www.google.com"
"Search Page"="hxxp://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://www.google.com"
"Default_Page_URL"="hxxp://www.google.com"
"Start Page"="hxxp://www.google.com"
"Search Page"="hxxp://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="hxxp://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"Default"="hxxp://www.google.com"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"Default"="hxxp://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="C:\\ProgramData\\ICQ\\ICQNewTab\\newTab.html"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="C:\\ProgramData\\ICQ\\ICQNewTab\\newTab.html"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://www.google.com"
"SearchAssistant"="hxxp://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"ICQ Search"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="hxxp://rts.dsrlte.com"
"Start Page Restore"="hxxp://rts.dsrlte.com"
"Use Search Asst"="no"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="hxxp://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{DC8BB78A-D77B-4794-A666-A79657C0FFF9} Yahoo! Search Url="hxxp://rts.dsrlte.com/?q={searchTerms}&r=632"
==== Reset Google Chrome ======================
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2075940210-4241511631-315471388-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{e6eeb20c-cf4a-4789-becf-64f78340708f} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{e6eeb20c-cf4a-4789-becf-64f78340708f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{e6eeb20c-cf4a-4789-becf-64f78340708f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e6eeb20c-cf4a-4789-becf-64f78340708f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e6eeb20c-cf4a-4789-becf-64f78340708f} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{e6eeb20c-cf4a-4789-becf-64f78340708f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{e6eeb20c-cf4a-4789-becf-64f78340708f} deleted successfully
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaaacalgebmfelllfiaoknifldpngjh deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jlkealnllhajodlnhmfjfmnhelpbaaem deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\oolkekjjhnaeaahibbnfebmogackofpf deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\oolkekjjhnaeaahibbnfebmogackofpf deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinZip Malware Protector_is1 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{447f77b7-9433-4a8b-b657-79e1c71898f6}_is1 deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Alle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Alle\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Alle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V469PTNA will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Cache found
==== Empty Chrome Cache ======================
C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=353 folders=91 479328484 bytes)
==== Empty Temp Folders ======================
C:\Users\Alle\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Alle\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Users\Alle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V469PTNA" not found
==== EOF on 02.07.2014 at 21:26:33,96 ====================== mbam Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlauf Datum: 02.07.2014
Suchlauf-Zeit: 21:33:56
Logdatei:
Administrator: Ja
Version: 2.00.2.1012
Malware Datenbank: v2014.07.02.06
Rootkit Datenbank: v2014.07.01.01
Lizenz: Testversion
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Self-protection: Deaktiviert
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Alle
Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 304725
Verstrichene Zeit: 18 Min, 36 Sek
Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 1
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe, 2332, Löschen bei Neustart, [0552a0faaecd3ff7d76fbe0038ccc13f]
Module: 2
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\chrmXtn.dll, Löschen bei Neustart, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\sqlite.dll, Löschen bei Neustart, [480f8416c4b7db5bb84e882734ce01ff],
Registrierungsschlüssel: 1
PUP.Optional.PayByAds.A, HKU\S-1-5-21-2075940210-4241511631-315471388-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Yahoo! Search, In Quarantäne, [0552a0faaecd3ff7d76fbe0038ccc13f],
Registrierungswerte: 1
PUP.Optional.PayByAds.A, HKU\S-1-5-21-2075940210-4241511631-315471388-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Yahoo! Search, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe, In Quarantäne, [0552a0faaecd3ff7d76fbe0038ccc13f]
Registrierungsdaten: 1
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Gut: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Schlecht: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Ersetzt,[70e7b7e39edd6ec8338ed6bada2aec14]
Ordner: 3
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads, Löschen bei Neustart, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search, Löschen bei Neustart, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2, Löschen bei Neustart, [480f8416c4b7db5bb84e882734ce01ff],
Dateien: 18
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe, Löschen bei Neustart, [0552a0faaecd3ff7d76fbe0038ccc13f],
PUP.Optional.Breitschopp, C:\Users\Alle\Downloads\soft32_Microsoft PowerPoint 2010_1.0.exe, In Quarantäne, [cd8a8e0c027948ee57b0a8cf6b994ab6],
PUP.Optional.BundleInstaller.A, C:\Users\Alle\Downloads\New player.exe, In Quarantäne, [56019dfd82f9cc6ae1f27b9d51b3669a],
PUP.Optional.DomaIQ, C:\Users\Alle\Downloads\Player Setup (1).exe, In Quarantäne, [7addd8c27ffc60d6721cdda9768bed13],
PUP.Optional.DomaIQ, C:\Users\Alle\Downloads\Player Setup.exe, In Quarantäne, [58ffc0dae7949e98a32e8005e12034cc],
PUP.Optional.BundleInstaller.A, C:\Users\Alle\Downloads\Java (1).exe, In Quarantäne, [9eb96931275469cd79f90d3e51b0857b],
PUP.Optional.DomaIQ, C:\Users\Alle\Downloads\Java (2).exe, In Quarantäne, [69eeff9b017a0f278433b291916f2dd3],
PUP.Optional.DomaIQ, C:\Users\Alle\Downloads\Java.exe, In Quarantäne, [78dfcad04536b87ede4d6eb833ce46ba],
PUP.Optional.Soft32.A, C:\Users\Alle\Downloads\microsoft powerpoint 2010 setup.exe, In Quarantäne, [2532a9f1ee8d0b2b7ebb34e2bc458878],
PUP.Optional.Trovi.A, C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage, In Quarantäne, [ef680199fe7d1b1b53c7b804ef132dd3],
PUP.Optional.Trovi.A, C:\Users\Alle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage-journal, In Quarantäne, [70e73664e299ae888b8f19a326dc26da],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\app.ini, In Quarantäne, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\chrmXtn.dll, Löschen bei Neustart, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\ffxtn.dll, In Quarantäne, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\ieds.xml, In Quarantäne, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\rvt.js, In Quarantäne, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\serp.js, In Quarantäne, [480f8416c4b7db5bb84e882734ce01ff],
PUP.Optional.PayByAds.A, C:\Users\Alle\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.8.2\sqlite.dll, Löschen bei Neustart, [480f8416c4b7db5bb84e882734ce01ff],
Physische Sektoren: 0
(No malicious items detected)
(end) |