Nightwish | 11.11.2014 12:21 | Vielen Dank für Deine prompte Hilfe!
Hier nun zuerst das Malwarebyte-Log. (Hatte ich vorhin leider vergessen) Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11.11.2014
Scan Time: 09:36:39
Logfile: Malwarebytes Log.txt
Administrator: Yes
Version: 2.00.3.1025
Malware Database: v2014.11.11.03
Rootkit Database: v2014.11.10.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Georgina
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 347765
Time Elapsed: 4 min, 42 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 5
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, 1296, Delete-on-Reboot, [512e201a66167db94a18b3ef986950b0]
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-6.exe, 3684, Delete-on-Reboot, [e09f7ac00a72c96d4222472d8a7b748c]
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\2a1718c1-62b6-4c24-91cd-b14e9446afec.exe, 3832, Delete-on-Reboot, [1e6182b85725d26497cd94e056af11ef]
PUP.Optional.VOPackage.A, C:\Users\Georgina\AppData\Roaming\VOPackage\VOsrv.exe, 1916, Delete-on-Reboot, [2956b189b7c54cea7446f044c53ed927]
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\89c6bc78-cdc5-491c-8953-85b87df0296a.exe, 3328, Delete-on-Reboot, [9be4201ae6965ed8608d52c5db28639d]
Modules: 1
PUP.Optional.Nova.A, C:\Program Files (x86)\HDtubeV1.6V11.11\a2620298-bc75-4a34-8aa9-19743147bd95.dll, Delete-on-Reboot, [a4dbe3579ede67cf39f83aa70001cb35],
Registry Keys: 66
PUP.Optional.WPM.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, Quarantined, [512e201a66167db94a18b3ef986950b0],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WindowsMangerProtect, Quarantined, [512e201a66167db94a18b3ef986950b0],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110611171168}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{11111111-1111-1111-1111-110611171168}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440644174468}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550655175568}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660666176668}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550655175568}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660666176668}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440644174468}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.BHO.1, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110611171168}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110611171168}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.BHO, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.BHO, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.BHO.1, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKU\S-1-5-21-3369756559-1339453816-443426222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110611171168}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{22222222-2222-2222-2222-220622172268}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.Sandbox.1, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.Sandbox, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.Sandbox, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\c2eb4bc0f328013184de5118752c52d60061768.Sandbox.1, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\CLSID\{22222222-2222-2222-2222-220622172268}, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110611171168}\INPROCSERVER32, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.VOPackage.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\VOPackage, Quarantined, [2956b189b7c54cea7446f044c53ed927],
PUP.Optional.VOPackage.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\servervo, Quarantined, [2956b189b7c54cea7446f044c53ed927],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\19979, Quarantined, [4f30ea50116bd95d3c266ff04fb4d42c],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, Quarantined, [0877bf7b2f4df4427eee3657ae56f808],
PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}, Quarantined, [ef9044f6126a68ce768d9214e22222de],
PUP.Optional.SearchProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\INSTALLEDSDB\{cf2797aa-b7ec-e311-8ed9-005056c00008}, Quarantined, [7e01a1995c207bbbff03446284806f91],
PUP.Optional.HDPlus.A, HKLM\SOFTWARE\WOW6432NODE\HDtubeV1.6V11.11, Quarantined, [6a156fcb1f5d270f31de5aeefb08b64a],
PUP.Optional.HDPlus.A, HKLM\SOFTWARE\WOW6432NODE\HDtubeV1.6V11.11-nv, Quarantined, [aed176c4a6d63600907f59eff40fd12f],
PUP.Optional.MBot.A, HKLM\SOFTWARE\WOW6432NODE\MYBESTOFFERSTODAY, Quarantined, [d1aec07a067683b34146d06db25129d7],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, Quarantined, [186740fa532977bf0cc54e53d52f06fa],
PUP.Optional.WordProser.A, HKLM\SOFTWARE\WOW6432NODE\WordProser_1.10.0.2, Quarantined, [344b2614225a86b00506f042f310e61a],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE, Quarantined, [cbb494a65a226dc9fa6eb094c53e2cd4],
PUP.Optional.SmileysWeLove.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\fjbbjfdilbioabojmcplalojlmdngbjl, Quarantined, [dba4dc5e4f2dbe7845cb78d3ef14b64a],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\19979, Quarantined, [5f20da60d4a870c6164c302f17ec8e72],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, Quarantined, [cfb0bd7d215b3bfb52865c48ac589769],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, Quarantined, [027d98a2c7b52f07e9f0d5cf7c88e020],
PUP.Optional.WordProser.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wpnfd_1_10_0_2, Quarantined, [96e9fe3c8fed83b31befe84a4cb723dd],
PUP.Optional.IEPluginServices.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\IePluginServices, Quarantined, [126d50ea225aef4737ebb87946bddc24],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, Quarantined, [601f2812710b44f25ac9b9780201867a],
PUP.Optional.HDPlus.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\HDtubeV1.6V11.11, Quarantined, [16692119fd7f280e36dbbb8d1ee5c23e],
PUP.Optional.HDVid.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\TheHDvid-Codec V10, Quarantined, [205fa99198e4a195fd675be82cd75ba5],
PUP.Optional.SmileysWeLove.A, HKU\S-1-5-21-3369756559-1339453816-443426222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SmileysWeLove, Quarantined, [d8a7a694f3892a0caa3f7bcf2cd724dc],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3369756559-1339453816-443426222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [750a47f3304c68ceb45ddcba9a6a23dd],
PUP.Optional.HDPlus.A, HKU\S-1-5-21-3369756559-1339453816-443426222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\HDtubeV1.6V11.11, Quarantined, [b2cddc5e6a12171f12ff92b6bb48f50b],
PUP.Optional.SuperFish.A, HKU\S-1-5-21-3369756559-1339453816-443426222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Quarantined, [e897fb3f7c002f07250cb98fdf24718f],
PUP.Optional.HDPlus.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\HDtubeV1.6V11.11, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdate, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdatem, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickCtrl.10, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\globalUpdate.OneClickCtrl.10, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.Update3WebControl.4, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\globalUpdate.Update3WebControl.4, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
Registry Values: 3
PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\WOW6432NODE\GLOBALUPDATE\UPDATE|path, C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe, Quarantined, [cbb494a65a226dc9fa6eb094c53e2cd4]
PUP.Optional.MBot.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|mbot_de_241, Quarantined, [d7a8c674027aa6900383f04d9073a858],
PUP.Optional.VOPackage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\VOPACKAGE|UninstallString, "C:\Users\Georgina\AppData\Roaming\VOPackage\uninstall.exe", Quarantined, [3946a19983f925117057cf747f84e31d]
Registry Data: 15
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851),Replaced,[750a60dab5c74cea1ad9cc6c61a4d030]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}),Replaced,[6d1238025626231320ca6bcddf26be42]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851),Replaced,[4a35ab8ff488b2848f59e6526f96a957]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851),Replaced,[6619310994e8320429c3cf69a85dd12f]
PUP.Optional.WebSearches, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}),Replaced,[98e75ddd7606d1657ba4b4053fc218e8]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[5a2566d4fc8055e17d8fda693bcae818]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851, Good: (iexplore.exe), Bad: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851),Replaced,[d0af8dad3c4038fe6a89a098c73e9967]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}),Replaced,[651a69d1d0aced499258ca6edb2ac43c]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851),Replaced,[d1ae34063646ef47ba2e8cacef1639c7]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851),Replaced,[a7d8eb4f037979bd3cb0c67293725aa6]
PUP.Optional.WebSearches, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}),Replaced,[324dbc7eef8daa8cba654079b150857b]
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Replaced,[0b74a991b2ca55e17e8e32119b6a12ee]
PUP.Optional.Trovi.A, HKU\S-1-5-21-3369756559-1339453816-443426222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.trovi.com/?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=M1D6D3646-5C50-4B6A-A7A8-646F7C0B1784&SearchSource=55&CUI=&UM=2&UP=SP6589DCDE-AA50-4D9F-806C-C75D6ABDFEB4&SSPV=, Good: (www.google.com), Bad: (hxxp://www.trovi.com/?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=M1D6D3646-5C50-4B6A-A7A8-646F7C0B1784&SearchSource=55&CUI=&UM=2&UP=SP6589DCDE-AA50-4D9F-806C-C75D6ABDFEB4&SSPV=),Replaced,[84fb2f0b7dff003669fc1f196c99649c]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-3369756559-1339453816-443426222-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851, Good: (www.google.com), Bad: (hxxp://istart.webssearches.com/?type=hp&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851),Replaced,[aad5f446f488f73f1ccd4bedc73e718f]
PUP.Optional.Trovi.A, HKU\S-1-5-21-3369756559-1339453816-443426222-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.trovi.com/?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=M1D6D3646-5C50-4B6A-A7A8-646F7C0B1784&SearchSource=55&CUI=&UM=2&UP=SP6589DCDE-AA50-4D9F-806C-C75D6ABDFEB4&SSPV=, Good: (www.google.com), Bad: (hxxp://www.trovi.com/?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=M1D6D3646-5C50-4B6A-A7A8-646F7C0B1784&SearchSource=55&CUI=&UM=2&UP=SP6589DCDE-AA50-4D9F-806C-C75D6ABDFEB4&SSPV=),Replaced,[0b74ab8fff7de94d6afb5ade2fd61fe1]
Folders: 32
PUP.Optional.VOPackage.A, C:\Users\Georgina\AppData\Roaming\VOPackage, Delete-on-Reboot, [2956b189b7c54cea7446f044c53ed927],
PUP.Optional.VOPackage, C:\Users\Georgina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage, Quarantined, [9de24eecdd9fa6903a8edf64a162ca36],
Rogue.Multiple, C:\ProgramData\374311380, Quarantined, [354a0a3087f589ad03f41fd1ff035ca4],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\x86, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11, Delete-on-Reboot, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.Extutil.A, C:\Users\Georgina\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B, Quarantined, [91ee64d6e29a0d2914553ddb1fe45fa1],
PUP.Optional.Managera.A, C:\Users\Georgina\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42, Quarantined, [ee9174c68defad891555051331d2cd33],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, Delete-on-Reboot, [92ed4ded3c401521770250c80ef5847c],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\log, Quarantined, [92ed4ded3c401521770250c80ef5847c],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, Quarantined, [92ed4ded3c401521770250c80ef5847c],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Download, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Install, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Offline, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\Offline\{88F4AB16-B95F-4719-977D-76D1133B6BDC}, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\userCode, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\icons, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\icons\actions, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\api, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\popupResource, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ofaemmlijemfcopjandkcndefpnacabg_0, Quarantined, [93ec1c1efb81e84eda1a54ccb64d2ed2],
Files: 225
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, Delete-on-Reboot, [512e201a66167db94a18b3ef986950b0],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-6.exe, Delete-on-Reboot, [e09f7ac00a72c96d4222472d8a7b748c],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\2a1718c1-62b6-4c24-91cd-b14e9446afec.exe, Delete-on-Reboot, [1e6182b85725d26497cd94e056af11ef],
PUP.Optional.Nova.A, C:\Program Files (x86)\HDtubeV1.6V11.11\a2620298-bc75-4a34-8aa9-19743147bd95.dll, Quarantined, [a4dbe3579ede67cf39f83aa70001cb35],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\HDtubeV1.6V11.11-bho64.dll, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\HDtubeV1.6V11.11-bho.dll, Quarantined, [413e58e2146876c04123de968e774ab6],
PUP.Optional.HDVid.A, C:\Users\Georgina\AppData\Roaming\BRABQ.exe, Quarantined, [9ae5ac8e4a32e94deebdc0ed07fadc24],
PUP.Optional.HDVid.A, C:\Users\Georgina\AppData\Roaming\OHWA.exe, Quarantined, [9de240fa89f393a36c3f9b1244bdbe42],
PUP.Optional.HDTube.A, C:\Users\Georgina\AppData\Roaming\ORQD.exe, Quarantined, [82fd9d9d91eb221495cf9ed62ed7b947],
PUP.Optional.HDTube.A, C:\Users\Georgina\AppData\Roaming\WLX.exe, Quarantined, [1669db5f611b330389dbd79dfc09ae52],
PUP.Optional.Nova.A, C:\Program Files (x86)\4cfcc15e-0926-47e0-814b-27b70b64568b\e3efa897-e72b-4258-91dd-77ccbb56f7e5.dll, Quarantined, [b4cbb4869be16ec8b081637e738e9868],
PUP.Optional.Nova.A, C:\Program Files (x86)\globalUpdate\c199a51e-751b-480d-877e-96b23f85b383.dll, Quarantined, [136cad8df18bba7c171a677a09f8ae52],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-2.exe, Quarantined, [bcc33406c7b5bd792440eb89c045eb15],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-5.exe, Quarantined, [0c73d3674e2e90a6a4c0cca81aeb718f],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-64.exe, Quarantined, [e6994eec1d5fb97d8ada95df709559a7],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-7.exe, Quarantined, [d0af96a4c5b72d0933311f559471dd23],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\HDtubeV1.6V11.11-bg.exe, Quarantined, [324d51e929539c9a5e06264ea263d32d],
PUP.Optional.HDTube.A, C:\Program Files (x86)\HDtubeV1.6V11.11\HDtubeV1.6V11.11-codedownloader.exe, Quarantined, [a8d751e94f2d61d5d68ebabaa85dcf31],
PUP.Optional.CrossRider.A, C:\Program Files (x86)\HDtubeV1.6V11.11\utils.exe, Quarantined, [5827f149fd7f65d112fc63ddc43c09f7],
PUP.Optional.RelevantKnowledge, C:\Windows\System32\rlls64.dll, Quarantined, [daa5fb3f7705d95dff0ecb8c0df8ba46],
PUP.Optional.RelevantKnowledge, C:\Windows\SysWOW64\rlls.dll, Quarantined, [611ee555c5b750e6e22b58ff20e5b749],
PUP.Optional.MyPCBackup.A, C:\Users\Georgina\AppData\Local\Temp\BackupSetup.exe, Quarantined, [146b2515fa822214d9b49d4032cf08f8],
PUP.Optional.Conduit.A, C:\Users\Georgina\AppData\Local\Temp\verifier.exe, Quarantined, [b3cc62d80973a98ddb039da5d32da65a],
PUP.Optional.LiMo, C:\Users\Georgina\AppData\Local\Temp\ET\pjr_webssearches.exe, Quarantined, [f28d6cce13693df9fb1d46ed020329d7],
PUP.Optional.WordProser.A, C:\Users\Georgina\AppData\Local\Temp\ZOG\Setup.exe, Quarantined, [8ff026147dff35016d515186bc45916f],
PUP.Optional.VOPackage.A, C:\Users\Georgina\AppData\Roaming\VOPackage\Uninstall.exe, Quarantined, [2956b189b7c54cea7446f044c53ed927],
PUP.Optional.VOPackage.A, C:\Users\Georgina\AppData\Roaming\VOPackage\runasu.exe, Quarantined, [2956b189b7c54cea7446f044c53ed927],
PUP.Optional.VOPackage.A, C:\Users\Georgina\AppData\Roaming\VOPackage\VOPackage.exe, Quarantined, [2956b189b7c54cea7446f044c53ed927],
PUP.Optional.VOPackage.A, C:\Users\Georgina\AppData\Roaming\VOPackage\VOsrv.exe, Delete-on-Reboot, [2956b189b7c54cea7446f044c53ed927],
PUP.Optional.VOPackage, C:\Users\Georgina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage\Configure.lnk, Quarantined, [9de24eecdd9fa6903a8edf64a162ca36],
PUP.Optional.WebSearchs.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage, Quarantined, [bec1ec4e4f2de25456d1ef55c142a858],
PUP.Optional.WebSearchs.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_istart.webssearches.com_0.localstorage-journal, Quarantined, [fd82bb7f097372c4a78088bca360966a],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-1, Quarantined, [81fed06aadcf50e65310182c857eb749],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-11, Quarantined, [e49b4eec5e1eaf87045f5aeaf90a5aa6],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-2, Quarantined, [156a2d0dfe7eea4c5c07a2a2f310a55b],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-3, Quarantined, [f9866ecc5b21ee480261ce7632d18f71],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-4, Quarantined, [dda2f1499ce04fe76df6f153b44f6a96],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-5, Quarantined, [710ebf7bbcc09e98d68de06425de31cf],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-5_user, Quarantined, [a7d8e55568141b1bca99e361c83b9868],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-6, Quarantined, [b2cd34066b114de9e47ffe465da6f907],
PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-7, Quarantined, [4d3293a78cf0f244e2814bf951b217e9],
PUP.Optional.SelectNGo.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage, Quarantined, [5c23a49690ecba7c166f0a469b6813ed],
PUP.Optional.SelectNGo.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage-journal, Quarantined, [b0cf8fab3943013551341838778cb54b],
PUP.Optional.LiveLyrics.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.livelyrics00.live-lyrics.com_0.localstorage, Quarantined, [7f002416bfbd21152ea5ce83c3409f61],
PUP.Optional.LiveLyrics.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.livelyrics00.live-lyrics.com_0.localstorage-journal, Quarantined, [dba44cee0d6f7abc23b099b83fc43dc3],
PUP.Optional.Trovi.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage, Quarantined, [daa51f1be9932c0a5c49cf8350b38d73],
PUP.Optional.Trovi.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.trovi.com_0.localstorage-journal, Quarantined, [403fef4b93e966d07233bd95f70cb947],
Trojan.Agent, C:\Windows\SysWOW64\rlls.dll, Quarantined, [e09f78c2ef8d79bd1684bffeee15e917],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-1.job, Quarantined, [700f92a8ee8ec96d9bd3c3dfb05407f9],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-11.job, Quarantined, [770869d1e59779bdee808a1821e3d927],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-2.job, Quarantined, [e19e3703c1bb32049ad47032fc08a957],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-3.job, Quarantined, [f6898cae156759dd75f9871b9173f30d],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-4.job, Quarantined, [ceb12119a9d35cdab5b9287a8a7ae719],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-5.job, Quarantined, [bdc272c8f48842f48be3960c53b1e020],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-5_user.job, Quarantined, [fc8308326b1176c0115dbfe31de70ff1],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-6.job, Quarantined, [9de2d46690ec989e214d465cce36cf31],
PUP.Optional.CrossRider.T, C:\Windows\Tasks\8cfb6d15-c92f-43f5-b424-993b4eefc8e7-7.job, Quarantined, [c9b60d2dcab22a0c9ad4c3df877df907],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job, Quarantined, [a5da2119b3c969cd166e01a1fa0a8779],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore, Quarantined, [aad59aa0b7c5c86edda8554d7391b749],
PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job, Quarantined, [d1ae3109215bbd795d29e4be45bf5fa1],
PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA, Quarantined, [a2ddf8428cf042f4a2e52c76f212aa56],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ofaemmlijemfcopjandkcndefpnacabg_0.localstorage, Quarantined, [dfa03406d3a9da5c4d785153bb49ec14],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ofaemmlijemfcopjandkcndefpnacabg_0.localstorage-journal, Quarantined, [d5aab288d8a4dd59ae17dacae0244cb4],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\2a1718c1-62b6-4c24-91cd-b14e9446afec.job, Quarantined, [156a12287dff56e0dafcedb772925ea2],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\89c6bc78-cdc5-491c-8953-85b87df0296a.job, Quarantined, [a8d7b48624581f1730a60d97b351dd23],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\2a1718c1-62b6-4c24-91cd-b14e9446afec, Quarantined, [344bc1798defe254f7e0891bdf25a759],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\89c6bc78-cdc5-491c-8953-85b87df0296a, Quarantined, [84fb9f9bd1ab46f0e0f7b6ee51b3fe02],
PUP.Optional.SearchProtect, C:\Windows\apppatch\Custom\Custom64\{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb, Quarantined, [453af743720a54e22ed802a464a0966a],
PUP.Optional.ReMarkable.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Quarantined, [374805355d1f0f270be2b2f430d4c13f],
PUP.Optional.ReMarkable.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage-journal, Quarantined, [a3dce05ac9b379bddc11871f16ee8779],
Rogue.Multiple, C:\ProgramData\374311380\BIT116E.tmp, Quarantined, [354a0a3087f589ad03f41fd1ff035ca4],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\BrowserHelper.exe.config, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\BrowserHelper.pdb, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\browserhelperff.log, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\channel_generic.json.old, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\smileyswelove.xpi, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\smileyswelovetoolbar.crx, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.SmileysWeLove.A, C:\Users\Georgina\AppData\Local\Temp\swlfiles\x86\SQLite.Interop.dll, Quarantined, [f887261425570e28e1bbc6508182649c],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\1293297481.mxaddon, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\266ca2b0-43cf-4ba1-8d76-1aca05c6fb46.dll, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\6d781f7d-24fa-4986-86be-d2759274fc90.crx, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\89c6bc78-cdc5-491c-8953-85b87df0296a.exe, Delete-on-Reboot, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7.crx, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\8cfb6d15-c92f-43f5-b424-993b4eefc8e7.xpi, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\a2620298-bc75-4a34-8aa9-19743147bd95.crx, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\background.html, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\bgNova.html, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\HDtubeV1.6V11.11.ico, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\Interop.IWshRuntimeLibrary.dll, Delete-on-Reboot, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\Newtonsoft.Json.dll, Delete-on-Reboot, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\SuperSocket.ClientEngine.Common.dll, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\SuperSocket.ClientEngine.Core.dll, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\SuperSocket.ClientEngine.Protocol.dll, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.HDPlus.A, C:\Program Files (x86)\HDtubeV1.6V11.11\Uninstall.exe, Quarantined, [9be4201ae6965ed8608d52c5db28639d],
PUP.Optional.Extutil.A, C:\Users\Georgina\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js, Quarantined, [91ee64d6e29a0d2914553ddb1fe45fa1],
PUP.Optional.Extutil.A, C:\Users\Georgina\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js, Quarantined, [91ee64d6e29a0d2914553ddb1fe45fa1],
PUP.Optional.Extutil.A, C:\Users\Georgina\AppData\Local\Temp\D7ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json, Quarantined, [91ee64d6e29a0d2914553ddb1fe45fa1],
PUP.Optional.Managera.A, C:\Users\Georgina\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js, Quarantined, [ee9174c68defad891555051331d2cd33],
PUP.Optional.Managera.A, C:\Users\Georgina\AppData\Local\Temp\38fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json, Quarantined, [ee9174c68defad891555051331d2cd33],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\log\ProtectWindowsManager_2014-11-11[07-51-47-433].log, Quarantined, [92ed4ded3c401521770250c80ef5847c],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update\conf, Quarantined, [92ed4ded3c401521770250c80ef5847c],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateHelper.msi, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.T, C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll, Quarantined, [3b44f8423b41e74f1734a47662a155ab],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\GoogleCrashHandler.exe, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\GoogleUpdate.exe, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\GoogleUpdateBroker.exe, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\GoogleUpdateHelper.msi, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\GoogleUpdateOnDemand.exe, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\goopdate.dll, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\goopdateres_en.dll, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\npGoogleUpdate4.dll, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\psmachine.dll, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.122029\psuser.dll, Quarantined, [522d2812700cc86eef788595ff04b14f],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\GoogleCrashHandler.exe, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\GoogleUpdate.exe, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\GoogleUpdateBroker.exe, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\GoogleUpdateHelper.msi, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\GoogleUpdateOnDemand.exe, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\goopdate.dll, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\goopdateres_en.dll, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\npGoogleUpdate4.dll, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\psmachine.dll, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.GlobalUpdate.A, C:\Users\Georgina\AppData\Local\Temp\comh.436829\psuser.dll, Quarantined, [1c63b585b4c8c6703b2ca575a063c43c],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\background.html, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\chromeCoreFilesIndex.txt, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\manifest.json, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\popup.html, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\Settings.json, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\manifest.xml, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins.json, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\102.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\104.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\119.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\123.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\13.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\14.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\17.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\178.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\179.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\180.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\184.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\19.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\195.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\220.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\221.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\223.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\226.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\231.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\232.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\242.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\246.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\260.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\262.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\263.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\267.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\273.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\275.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\281.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\286.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\288.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\289.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\292.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\300.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\302.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\315.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\4.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\47.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\64.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\7.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\78.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\80.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\9.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\91.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\93.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\plugins\97.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\userCode\background.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\extensionData\userCode\extension.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\icons\icon128.png, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\icons\icon16.png, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\icons\icon48.png, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\icons\actions\1.png, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\eb2b44dc8a1a703b0fae1c52e31c574c.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\fc8c51fc751ecd7c7d12ed02cec6c412.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\main.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\api\13a912b9e7b7db070d4bb788506a5440.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\api\7a09f2565cf4de5ee8889ef7d2448ae6.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\api\b0e1a5f00c58835493646cf6f740d305.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\api\c1a89d4152a46207ede88474bf23ef11.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\api\df6b215b2a0a883091e59c68bba6a860.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\api\pageAction.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\09d36f761c944da155c4ec15985e8ae4.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\208c409a3fb46d556360d10476da047d.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\2eff64deaa3aa35539f5363cf9478742.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\3659cec7d43ba670327fdb8231e0f9b8.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\3db0a06b1a40fe1cee0aef36c5226c95.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\6203d8c9f044e33608246aedf274f7bf.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\63fdb8c84c8a15cd08dc9c5a57620dd7.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\6aef5507d77152ba23875ef7b3f80f74.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\7a76959c2d2b1feb426c88cc2a7f9ca4.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\ab8476783cd73683f9e7dde9529ebcee.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\app_api.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\b806d0ce70a985839a4bbd567482db4a.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\f109caf6c767fe0426650bed12eab4b9.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\f1fe60f72060e4710bd3880ac2d3b548.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\ff6e65d6fc035bea5e985b3fdb067c9a.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\installer.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\popupResource\newPopup.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaemmlijemfcopjandkcndefpnacabg\1.26.77_0\js\lib\popupResource\popup.js, Quarantined, [e996003a34487eb8b43e50d0ce35d927],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg\000005.ldb, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg\000012.log, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg\CURRENT, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg\LOCK, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg\LOG, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg\LOG.old, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ofaemmlijemfcopjandkcndefpnacabg\MANIFEST-000010, Quarantined, [b1ce46f4f5876fc723d0f22e9a6953ad],
PUP.Optional.CrossRider.A, C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ofaemmlijemfcopjandkcndefpnacabg_0\7, Quarantined, [93ec1c1efb81e84eda1a54ccb64d2ed2],
Physical Sectors: 0
(No malicious items detected)
(end) und nun adw cleaner:
AdwCleaner Logfile: Code:
# AdwCleaner v4.101 - Bericht erstellt am 11/11/2014 um 11:44:55
# Aktualisiert 09/11/2014 von Xplode
# Database : 2014-11-10.9 [Live]
# Betriebssystem : Windows 8.1 Pro (64 bits)
# Benutzername : Georgina - GEORGINA-PC
# Gestartet von : C:\Users\Georgina\Downloads\AdwCleaner_4.101.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InetStat
Ordner Gelöscht : C:\Program Files (x86)\globalUpdate
Ordner Gelöscht : C:\Program Files (x86)\predm
Ordner Gelöscht : C:\Users\Georgina\AppData\Local\globalUpdate
Ordner Gelöscht : C:\Users\Georgina\AppData\Local\Temp\PCSpeedUp
Ordner Gelöscht : C:\Users\Georgina\AppData\Local\Temp\VuuPC
Ordner Gelöscht : C:\Users\Georgina\AppData\Roaming\Solvusoft
Ordner Gelöscht : C:\Users\Georgina\Documents\Optimizer Pro
Datei Gelöscht : C:\WINDOWS\System32\roboot64.exe
Datei Gelöscht : C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Datei Gelöscht : C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.livelyrics00.live-lyrics.com_0.localstorage
Datei Gelöscht : C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.livelyrics00.live-lyrics.com_0.localstorage-journal
***** [ Tasks ] *****
Task Gelöscht : Advanced System Protector
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Schlüssel Gelöscht : HKCU\Software\GlobalUpdate
Schlüssel Gelöscht : HKCU\Software\InetStat
Schlüssel Gelöscht : HKCU\Software\Popajar
Schlüssel Gelöscht : HKLM\SOFTWARE\GlobalUpdate
Schlüssel Gelöscht : HKLM\SOFTWARE\InstalledBrowserExtensions
Schlüssel Gelöscht : HKLM\SOFTWARE\Tutorials
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Daten Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\searchprotect\searchprotect\bin\spvc32loader.dll
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Google Chrome v38.0.2125.111
[C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=M1D6D3646-5C50-4B6A-A7A8-646F7C0B1784&SearchSource=58&CUI=&UM=2&UP=SP6589DCDE-AA50-4D9F-806C-C75D6ABDFEB4&q={searchTerms}&SSPV=
[C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3328140&octid=EB_ORIGINAL_CTID&ISID=M1D6D3646-5C50-4B6A-A7A8-646F7C0B1784&SearchSource=58&CUI=&UM=2&UP=SP6589DCDE-AA50-4D9F-806C-C75D6ABDFEB4&q={searchTerms}&SSPV=
[C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}
[C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}
[C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}
[C:\Users\Georgina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://istart.webssearches.com/web/?type=ds&ts=1415688678&from=pjr&uid=SAMSUNGXMZMTE256HMHP-000MV_S1F1NYAF658851&q={searchTerms}
*************************
AdwCleaner[R0].txt - [8338 octets] - [11/11/2014 11:42:56]
AdwCleaner[S0].txt - [8095 octets] - [11/11/2014 11:44:55]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8155 octets] ########## --- --- ---
JRT: Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.7 (11.08.2014:1)
OS: Windows 8.1 Pro x64
Ran by Georgina on 11.11.2014 at 11:54:08,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11.11.2014 at 11:55:50,09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ FRT folgt separat
Vielen Dank! |