Ahoj, moc prosím o kontrolu logu, v Mozille mi vyskakují reklamní okna, nemůžu se jich zbavit. Děkuju moc za pomoc, M
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:34:28, on 1. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
FIREFOX: 29.0.1 (cs)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe
C:\Users\Martin\Desktop\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: qualitink - {73ad5d47-66e5-4127-80ca-c0eedabafbcc} - C:\Program Files (x86)\qualitink\qualitinkbho.dll
O2 - BHO: qualitink - {a973aa1b-7a77-4c77-9933-fa6d170c5696} - C:\Program Files (x86)\qualitink\qualitinkBHO.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [BtTray] "c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [CLWCSM] "c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [File Sanitizer] c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKCU\..\Run: [icq] C:\Users\Martin\AppData\Roaming\ICQM\icq.exe -CU
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Martin\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Martin\AppData\Roaming\ICQM\icq.exe (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files (x86)\BitComet\tools\BitCometService.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: DigitalPersona Ověřovací služba (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem2.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Update qualitink - Unknown owner - C:\Program Files (x86)\qualitink\updatequalitink.exe
O23 - Service: Util qualitink - Unknown owner - C:\Program Files (x86)\qualitink\bin\utilqualitink.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13396 bytes
Vyskakovací okna-prosím o kontrolu
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Vyskakovací okna-prosím o kontrolu
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/
Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.
Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.
Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/
Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na b] Kopírovat do schránky [/b]a a vlož sem celý log.
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Vyskakovací okna-prosím o kontrolu
Ahoj, díky moc, posílám log z Adw, prosím o kontrolu. Díky!
# AdwCleaner v3.211 - Report created 01/06/2014 at 22:58:03
# Updated 26/05/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Martin - MARTAS
# Running from : C:\Users\Martin\Desktop\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : APNMCP
***** [ Files / Folders ] *****
File Found : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\searchplugins\ask-search.xml
Folder Found : C:\Program Files (x86)\AskPartnerNetwork
Folder Found : C:\Program Files (x86)\TornTV.com
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\AskPartnerNetwork
Folder Found : C:\Users\Martin\AppData\Local\Temp\apn
Folder Found : C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Found : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AskPartnerNetwork
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\installedbrowserextensions
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\AskPartnerNetwork
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\installedbrowserextensions
Key Found : HKLM\Software\AskPartnerNetwork
Key Found : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17037
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\prefs.js ]
Line Found : user_pref("extensions.crossrider.bic", "14256b3fdd12340fa8963ee2a4f8062d");
-\\ Google Chrome v35.0.1916.114
[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Extension] : bopakagnckmlgajfccecajhnimjiiedh
*************************
AdwCleaner[R0].txt - [3421 octets] - [01/06/2014 22:58:03]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3481 octets] ##########
# AdwCleaner v3.211 - Report created 01/06/2014 at 22:58:03
# Updated 26/05/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Martin - MARTAS
# Running from : C:\Users\Martin\Desktop\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : APNMCP
***** [ Files / Folders ] *****
File Found : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\searchplugins\ask-search.xml
Folder Found : C:\Program Files (x86)\AskPartnerNetwork
Folder Found : C:\Program Files (x86)\TornTV.com
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\AskPartnerNetwork
Folder Found : C:\Users\Martin\AppData\Local\Temp\apn
Folder Found : C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Found : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AskPartnerNetwork
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\installedbrowserextensions
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\AskPartnerNetwork
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\installedbrowserextensions
Key Found : HKLM\Software\AskPartnerNetwork
Key Found : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17037
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\prefs.js ]
Line Found : user_pref("extensions.crossrider.bic", "14256b3fdd12340fa8963ee2a4f8062d");
-\\ Google Chrome v35.0.1916.114
[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Extension] : bopakagnckmlgajfccecajhnimjiiedh
*************************
AdwCleaner[R0].txt - [3421 octets] - [01/06/2014 22:58:03]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3481 octets] ##########
Re: Vyskakovací okna-prosím o kontrolu
a ještě log z Malwarebytes
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 1. 6. 2014
Scan Time: 23:04:57
Logfile:
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.06.01.08
Rootkit Database: v2014.05.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Martin
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 284995
Time Elapsed: 14 min, 46 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 4
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, 2148, , [95b72a49e99282b4350d9eb822dfcd33]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, 2716, , [b795aac99eddf73fec56c096f9082cd4]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe, 932, , [c686de9513681125573038a3bb48b050]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe, 2440, , [c686de9513681125573038a3bb48b050]
Modules: 1
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.dll, , [c686de9513681125573038a3bb48b050],
Registry Keys: 51
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update qualitink, , [95b72a49e99282b4350d9eb822dfcd33],
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util qualitink, , [b795aac99eddf73fec56c096f9082cd4],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [58f4db9876050531e706a2c5af533fc1],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [58f4db9876050531e706a2c5af533fc1],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{a973aa1b-7a77-4c77-9933-fa6d170c5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\TYPELIB\{94DC4AA7-8299-4D7D-8F4D-48ACF05E08BA}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{94DC4AA7-8299-4D7D-8F4D-48ACF05E08BA}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [87c5462dbfbcba7c0f10d990d032eb15],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{94dc4aa7-8299-4d7d-8f4d-48acf05e08ba}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{94dc4aa7-8299-4d7d-8f4d-48acf05e08ba}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{a973aa1b-7a77-4c77-9933-fa6d170c5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\qualitink, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\qualitink, , [a3a9e58eadce66d0daaf4299c3401ce4],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\Torntv V6.0, , [3b11e78cc3b8ca6cc69f8e21946ee719],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, , [70dc274c6c0ffa3c89f1497b38cb5ba5],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, , [ca82b7bcf8838ea8c71e01c3bd46a55b],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\qualitink, , [b4989ad9a6d56bcb77114398f310c937],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\installdaddy, , [f15b8be8c8b3c86e3e39f1d3df248b75],
PUP.Optional.SweetIM.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM, , [b19bc0b37ffc2511f782596bc0437c84],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Torntv V6.0, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\1ClickDownload, , [1339066df08b02346776671a7092669a],
Registry Values: 2
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, 229371978962054078795682710529151416635, , [70dc274c6c0ffa3c89f1497b38cb5ba5]
PUP.Optional.SweetIM.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM|simapp_id, 229371978962054078795682710529151416635, , [b19bc0b37ffc2511f782596bc0437c84]
Registry Data: 0
(No malicious items detected)
Folders: 21
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\TEMP, , [c686de9513681125573038a3bb48b050],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\defaults, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\defaults\preferences, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\userCode, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\locale, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\locale\en-US, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\log, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\Torrents, , [1339066df08b02346776671a7092669a],
Files: 179
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, , [95b72a49e99282b4350d9eb822dfcd33],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, , [b795aac99eddf73fec56c096f9082cd4],
Adware.Superweb, C:\Program Files (x86)\qualitink\qualitinkBHO.dll, , [87c5462dbfbcba7c0f10d990d032eb15],
PUP.Optional.OneClickDownloader.A, C:\Users\Martin\Downloads\Dark_Of_The_Sun_1968_Mercenaries_Rod_Taylor_Jim_Brown_Yvette_Mim.exe, , [da729ad92e4d8bab6cf2888b0af730d0],
PUP.Optional.Superfish.A, C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, , [2b219ed5bac1a98df4ac5f3519e9c33d],
PUP.Optional.Superfish.A, C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, , [e26a680bd3a839fd930d1183ee14b848],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job, , [8dbf175ceb901b1b095ec7e85ba7b24e],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-updater.job, , [ec603d36d4a7330399ce604fc0423fc1],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\qualitink.ico, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\qualitinkBHO.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\qualitinkUninstall.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\sqlite3.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.InstallState, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\7za.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\BrowserAdapterS.7z, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowseG.zip, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitinkBAApp.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\sqlite3.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.InstallState, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.16.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.Bromon.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.BroStats.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.BrowserAdapterS.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.CompatibilityChecker.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.FFUpdate.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.GCUpdate.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.IEUpdate.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.PurBrowseG.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\45960.xpi, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Uninstall.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\utils.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome.manifest, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\install.rdf, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\background.html, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\baseObject.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\browser.xul, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\dialog.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\main.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\options.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\options.xul, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\search_dialog.xul, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\asyncDB.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\background.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\browserAction.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\contextMenu.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\dbManager.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\dom_bg.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\fileManager.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\firefox.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\firefoxNotifications.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\firefoxOmnibox.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\message.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\pageAction.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\request.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\tabs.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\webRequest.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\console.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\consts.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\delegate.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\extensionDataStore.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\folderIOWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\httpObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\IDBWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\installer.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\logFile.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\prefs.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\progressListenerObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\registry.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\reloadObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\reports.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\requestObject.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\searchSettings.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\uninstallObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\updateManager.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\utils.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\xhr.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\defaults\preferences\prefs.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\manifest.xml, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins.json, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1000020_analytics.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1000025_analyticsFront.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1000030_mz.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\102_dealply_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\103_intext_5_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\104_jollywallet_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\105_corticas_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\108_icm_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\117_coupons_intext_ads_5_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\119_similar_web_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\120_luck_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\123_intext_adv_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\125_arcadi2_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\64_appApiMessage.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\72_appApiValidation.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\78_CrossriderInfo.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\7_hooks.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\87_ginyas_wrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\91_monetizationLoader.js.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\93_superfish_no_coupons_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\98_omniCommands.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\9_search_engine_hook.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\179_revizer_p_dynamic_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\17_jQuery.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\180_bpo_serp_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\182_openUrl.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\183_tabsWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\184_noproblemppc_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\189_active_sanity.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\190_pops_5_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\191_ciuvo_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\14_CrossriderUtils.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\155_ibario_pops_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\159_cortica_rollover_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\16_FFAppAPIWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\171_arcadi2_sourceID_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\175_coolmirage_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\177_crossriderDashboard.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\178_revizer_ws_dynamic_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\126_revizer_ws_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\127_revizer_p_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\128_superfish_pricora_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\135_arcadi3_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\138_getdeal_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\13_CrossriderAppUtils.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\141_corticas_ru_m.js.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\142_intext_fa_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\194_retargeting_bi_m.js.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\195_icm_convertmedia_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\197_kreapixel_pops_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\198_superfish_no_search_no_coupons_plushd_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\199_superfish_no_coupons_plushd_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1_base.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\200_foxydeal_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\204_pricedetect_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\21_debug.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\22_resources.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\28_initializer.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\47_resources_background.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\4_jquery_1_7_1.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\userCode\background.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\userCode\extension.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\locale\en-US\translations.dtd, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button1.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button2.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button3.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button4.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button5.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\crossrider_statusbar.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon128.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon16.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon24.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon48.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\panelarrow-up.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\popup.html, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\skin.css, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\update.css, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\CMUtils.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\fastresume.data, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\linker.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\MonoTorrent.Dht.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\MonoTorrent.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\nodes.dht, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\TornTV Downloader.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\trtextsetup.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\uninst.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\Updater.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\log\20131114.log, , [1339066df08b02346776671a7092669a],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\prefs.js, Good: (), Bad: (user_pref("extensions.crossrider.bic", "14256b3fdd12340fa8963ee2a4f8062d");), ,[f25a343f65163402612498f5bd473ec2]
Physical Sectors: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 1. 6. 2014
Scan Time: 23:04:57
Logfile:
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.06.01.08
Rootkit Database: v2014.05.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Martin
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 284995
Time Elapsed: 14 min, 46 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 4
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, 2148, , [95b72a49e99282b4350d9eb822dfcd33]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, 2716, , [b795aac99eddf73fec56c096f9082cd4]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe, 932, , [c686de9513681125573038a3bb48b050]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe, 2440, , [c686de9513681125573038a3bb48b050]
Modules: 1
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.dll, , [c686de9513681125573038a3bb48b050],
Registry Keys: 51
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update qualitink, , [95b72a49e99282b4350d9eb822dfcd33],
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util qualitink, , [b795aac99eddf73fec56c096f9082cd4],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [58f4db9876050531e706a2c5af533fc1],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, , [58f4db9876050531e706a2c5af533fc1],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{a973aa1b-7a77-4c77-9933-fa6d170c5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\TYPELIB\{94DC4AA7-8299-4D7D-8F4D-48ACF05E08BA}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{94DC4AA7-8299-4D7D-8F4D-48ACF05E08BA}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [87c5462dbfbcba7c0f10d990d032eb15],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [87c5462dbfbcba7c0f10d990d032eb15],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{94dc4aa7-8299-4d7d-8f4d-48acf05e08ba}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5A5776B9-C752-4AFE-81AF-2ABDD19E05A0}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{94dc4aa7-8299-4d7d-8f4d-48acf05e08ba}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{a973aa1b-7a77-4c77-9933-fa6d170c5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{34B4FBA0-2143-4E58-8EB1-B73E2F54D8B6}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{a6cdd239-81d7-4b92-88a2-96f1c5d6ef95}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{A973AA1B-7A77-4C77-9933-FA6D170C5696}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\qualitink, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\qualitink, , [a3a9e58eadce66d0daaf4299c3401ce4],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\Torntv V6.0, , [3b11e78cc3b8ca6cc69f8e21946ee719],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, , [70dc274c6c0ffa3c89f1497b38cb5ba5],
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, , [ca82b7bcf8838ea8c71e01c3bd46a55b],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\qualitink, , [b4989ad9a6d56bcb77114398f310c937],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\installdaddy, , [f15b8be8c8b3c86e3e39f1d3df248b75],
PUP.Optional.SweetIM.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM, , [b19bc0b37ffc2511f782596bc0437c84],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Torntv V6.0, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\1ClickDownload, , [1339066df08b02346776671a7092669a],
Registry Values: 2
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, 229371978962054078795682710529151416635, , [70dc274c6c0ffa3c89f1497b38cb5ba5]
PUP.Optional.SweetIM.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SWEETIM|simapp_id, 229371978962054078795682710529151416635, , [b19bc0b37ffc2511f782596bc0437c84]
Registry Data: 0
(No malicious items detected)
Folders: 21
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\TEMP, , [c686de9513681125573038a3bb48b050],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\defaults, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\defaults\preferences, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\userCode, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\locale, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\locale\en-US, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\log, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\Torrents, , [1339066df08b02346776671a7092669a],
Files: 179
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, , [95b72a49e99282b4350d9eb822dfcd33],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, , [b795aac99eddf73fec56c096f9082cd4],
Adware.Superweb, C:\Program Files (x86)\qualitink\qualitinkBHO.dll, , [87c5462dbfbcba7c0f10d990d032eb15],
PUP.Optional.OneClickDownloader.A, C:\Users\Martin\Downloads\Dark_Of_The_Sun_1968_Mercenaries_Rod_Taylor_Jim_Brown_Yvette_Mim.exe, , [da729ad92e4d8bab6cf2888b0af730d0],
PUP.Optional.Superfish.A, C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, , [2b219ed5bac1a98df4ac5f3519e9c33d],
PUP.Optional.Superfish.A, C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, , [e26a680bd3a839fd930d1183ee14b848],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job, , [8dbf175ceb901b1b095ec7e85ba7b24e],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-updater.job, , [ec603d36d4a7330399ce604fc0423fc1],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\qualitink.ico, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\qualitinkBHO.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\qualitinkUninstall.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\sqlite3.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.InstallState, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\7za.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\BrowserAdapterS.7z, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowseG.zip, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\qualitinkBAApp.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\sqlite3.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.InstallState, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\{50c078f1-4117-4aad-852a-0b3bbfb46b18}.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.16.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.Bromon.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.BroStats.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.BrowserAdapterS.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.CompatibilityChecker.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.FFUpdate.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.GCUpdate.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.IEUpdate.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\plugins\qualitink.PurBrowseG.dll, , [c686de9513681125573038a3bb48b050],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\45960.xpi, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Uninstall.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\utils.exe, , [db71551e7209e6504c22304c4cb64ab6],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome.manifest, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\install.rdf, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\background.html, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\baseObject.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\browser.xul, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\dialog.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\main.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\options.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\options.xul, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\search_dialog.xul, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\asyncDB.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\background.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\browserAction.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\contextMenu.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\dbManager.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\dom_bg.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\fileManager.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\firefox.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\firefoxNotifications.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\firefoxOmnibox.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\message.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\pageAction.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\request.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\tabs.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\api\webRequest.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\console.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\consts.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\delegate.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\extensionDataStore.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\folderIOWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\httpObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\IDBWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\installer.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\logFile.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\prefs.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\progressListenerObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\registry.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\reloadObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\reports.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\requestObject.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\searchSettings.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\uninstallObserver.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\updateManager.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\utils.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\chrome\content\core\xhr.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\defaults\preferences\prefs.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\manifest.xml, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins.json, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1000020_analytics.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1000025_analyticsFront.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1000030_mz.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\102_dealply_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\103_intext_5_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\104_jollywallet_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\105_corticas_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\108_icm_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\117_coupons_intext_ads_5_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\119_similar_web_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\120_luck_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\123_intext_adv_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\125_arcadi2_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\64_appApiMessage.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\72_appApiValidation.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\78_CrossriderInfo.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\7_hooks.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\87_ginyas_wrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\91_monetizationLoader.js.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\93_superfish_no_coupons_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\98_omniCommands.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\9_search_engine_hook.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\179_revizer_p_dynamic_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\17_jQuery.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\180_bpo_serp_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\182_openUrl.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\183_tabsWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\184_noproblemppc_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\189_active_sanity.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\190_pops_5_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\191_ciuvo_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\14_CrossriderUtils.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\155_ibario_pops_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\159_cortica_rollover_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\16_FFAppAPIWrapper.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\171_arcadi2_sourceID_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\175_coolmirage_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\177_crossriderDashboard.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\178_revizer_ws_dynamic_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\126_revizer_ws_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\127_revizer_p_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\128_superfish_pricora_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\135_arcadi3_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\138_getdeal_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\13_CrossriderAppUtils.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\141_corticas_ru_m.js.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\142_intext_fa_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\194_retargeting_bi_m.js.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\195_icm_convertmedia_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\197_kreapixel_pops_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\198_superfish_no_search_no_coupons_plushd_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\199_superfish_no_coupons_plushd_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\1_base.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\200_foxydeal_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\204_pricedetect_m.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\21_debug.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\22_resources.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\28_initializer.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\47_resources_background.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\plugins\4_jquery_1_7_1.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\userCode\background.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\extensionData\userCode\extension.js, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\locale\en-US\translations.dtd, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button1.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button2.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button3.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button4.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\button5.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\crossrider_statusbar.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon128.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon16.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon24.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\icon48.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\panelarrow-up.png, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\popup.html, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\skin.css, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com\skin\update.css, , [b597cca70279cc6a86def789e121ea16],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\CMUtils.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\fastresume.data, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\linker.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\MonoTorrent.Dht.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\MonoTorrent.dll, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\nodes.dht, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\TornTV Downloader.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\trtextsetup.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\uninst.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\Updater.exe, , [1339066df08b02346776671a7092669a],
PUP.Optional.TornTV.A, C:\Program Files (x86)\TornTV.com\log\20131114.log, , [1339066df08b02346776671a7092669a],
PUP.Optional.CrossRider.A, C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\prefs.js, Good: (), Bad: (user_pref("extensions.crossrider.bic", "14256b3fdd12340fa8963ee2a4f8062d");), ,[f25a343f65163402612498f5bd473ec2]
Physical Sectors: 0
(No malicious items detected)
(end)
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Vyskakovací okna-prosím o kontrolu
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
. spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Vyskakovací okna-prosím o kontrolu
# AdwCleaner v3.212 - Report created 06/06/2014 at 20:45:11
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Martin - MARTAS
# Running from : C:\Users\Martin\Downloads\adwcleaner_3.212.exe
# Option : Clean
***** [ Services ] *****
Service Deleted : APNMCP
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\TornTV.com
Folder Deleted : C:\Users\Martin\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\searchplugins\ask-search.xml
File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\SweetIM
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\AskPartnerNetwork
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\SweetIM
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17037
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\prefs.js ]
Line Deleted : user_pref("extensions.crossrider.bic", "14256b3fdd12340fa8963ee2a4f8062d");
-\\ Google Chrome v35.0.1916.114
[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
*************************
AdwCleaner[R0].txt - [3589 octets] - [01/06/2014 22:58:03]
AdwCleaner[R1].txt - [3985 octets] - [06/06/2014 20:43:22]
AdwCleaner[S0].txt - [3731 octets] - [06/06/2014 20:45:11]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3791 octets] ##########
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Martin - MARTAS
# Running from : C:\Users\Martin\Downloads\adwcleaner_3.212.exe
# Option : Clean
***** [ Services ] *****
Service Deleted : APNMCP
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\TornTV.com
Folder Deleted : C:\Users\Martin\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\Extensions\e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\searchplugins\ask-search.xml
File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\updatequalitink_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\SweetIM
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\AskPartnerNetwork
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\SweetIM
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17037
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\6n9u944t.default\prefs.js ]
Line Deleted : user_pref("extensions.crossrider.bic", "14256b3fdd12340fa8963ee2a4f8062d");
-\\ Google Chrome v35.0.1916.114
[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
*************************
AdwCleaner[R0].txt - [3589 octets] - [01/06/2014 22:58:03]
AdwCleaner[R1].txt - [3985 octets] - [06/06/2014 20:43:22]
AdwCleaner[S0].txt - [3731 octets] - [06/06/2014 20:45:11]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3791 octets] ##########
Re: Vyskakovací okna-prosím o kontrolu
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by Martin on p 06. 06. 2014 at 21:05:10,19
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update qualitink
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a973aa1b-7a77-4c77-9933-fa6d170c5696}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{a973aa1b-7a77-4c77-9933-fa6d170c5696}
~~~ Files
~~~ Folders
Failed to delete: [Folder] "C:\Program Files (x86)\qualitink"
~~~ FireFox
Emptied folder: C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\6n9u944t.default\minidumps [60 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p 06. 06. 2014 at 21:10:15,91
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by Martin on p 06. 06. 2014 at 21:05:10,19
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update qualitink
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{73ad5d47-66e5-4127-80ca-c0eedabafbcc}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a973aa1b-7a77-4c77-9933-fa6d170c5696}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{a973aa1b-7a77-4c77-9933-fa6d170c5696}
~~~ Files
~~~ Folders
Failed to delete: [Folder] "C:\Program Files (x86)\qualitink"
~~~ FireFox
Emptied folder: C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\6n9u944t.default\minidumps [60 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p 06. 06. 2014 at 21:10:15,91
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: Vyskakovací okna-prosím o kontrolu
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 6. 6. 2014
Scan Time: 21:25:03
Logfile:
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.06.01.08
Rootkit Database: v2014.05.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Martin
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 284763
Time Elapsed: 17 min, 35 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 2
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, 2488, Delete-on-Reboot, [aca00f642d4ed75f8ab80b4b6f9203fd]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, 2772, Delete-on-Reboot, [b9935b18ef8c44f29ca694c2e1202ad6]
Modules: 0
(No malicious items detected)
Registry Keys: 8
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update qualitink, Quarantined, [aca00f642d4ed75f8ab80b4b6f9203fd],
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util qualitink, Quarantined, [b9935b18ef8c44f29ca694c2e1202ad6],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, Quarantined, [024ad2a15427e84e41de353448bae719],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, Quarantined, [024ad2a15427e84e41de353448bae719],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\qualitink, Quarantined, [a1ab730085f61323e3a6865534cffa06],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\Torntv V6.0, Quarantined, [50fc8ee51f5ccd694a1b535cda28bf41],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\qualitink, Quarantined, [be8e1a59f784cf67fa8e07d4eb1829d7],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Torntv V6.0, Quarantined, [65e7e2916a114de9066887f58f73946c],
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 1
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0, Quarantined, [65e7e2916a114de9066887f58f73946c],
Files: 10
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, Delete-on-Reboot, [aca00f642d4ed75f8ab80b4b6f9203fd],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, Delete-on-Reboot, [b9935b18ef8c44f29ca694c2e1202ad6],
PUP.Optional.OneClickDownloader.A, C:\Users\Martin\Downloads\Dark_Of_The_Sun_1968_Mercenaries_Rod_Taylor_Jim_Brown_Yvette_Mim.exe, Quarantined, [f05c165d8cef71c55b033bd831d0bf41],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job, Quarantined, [0f3dcfa4fd7e1b1b7cebe1ceee14de22],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-updater.job, Quarantined, [52fa165d81fa61d5392e8728b84a837d],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\45960.xpi, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Uninstall.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\utils.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 6. 6. 2014
Scan Time: 21:25:03
Logfile:
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.06.01.08
Rootkit Database: v2014.05.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Martin
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 284763
Time Elapsed: 17 min, 35 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 2
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, 2488, Delete-on-Reboot, [aca00f642d4ed75f8ab80b4b6f9203fd]
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, 2772, Delete-on-Reboot, [b9935b18ef8c44f29ca694c2e1202ad6]
Modules: 0
(No malicious items detected)
Registry Keys: 8
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update qualitink, Quarantined, [aca00f642d4ed75f8ab80b4b6f9203fd],
PUP.Optional.Qualitink.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util qualitink, Quarantined, [b9935b18ef8c44f29ca694c2e1202ad6],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, Quarantined, [024ad2a15427e84e41de353448bae719],
Adware.Superweb, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{73AD5D47-66E5-4127-80CA-C0EEDABAFBCC}, Quarantined, [024ad2a15427e84e41de353448bae719],
PUP.Optional.Qualitink.A, HKLM\SOFTWARE\WOW6432NODE\qualitink, Quarantined, [a1ab730085f61323e3a6865534cffa06],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\Torntv V6.0, Quarantined, [50fc8ee51f5ccd694a1b535cda28bf41],
PUP.Optional.Qualitink.A, HKU\S-1-5-21-95884617-4194005887-3323440248-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\qualitink, Quarantined, [be8e1a59f784cf67fa8e07d4eb1829d7],
PUP.Optional.TornTV.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Torntv V6.0, Quarantined, [65e7e2916a114de9066887f58f73946c],
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 1
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0, Quarantined, [65e7e2916a114de9066887f58f73946c],
Files: 10
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\updatequalitink.exe, Delete-on-Reboot, [aca00f642d4ed75f8ab80b4b6f9203fd],
PUP.Optional.Qualitink.A, C:\Program Files (x86)\qualitink\bin\utilqualitink.exe, Delete-on-Reboot, [b9935b18ef8c44f29ca694c2e1202ad6],
PUP.Optional.OneClickDownloader.A, C:\Users\Martin\Downloads\Dark_Of_The_Sun_1968_Mercenaries_Rod_Taylor_Jim_Brown_Yvette_Mim.exe, Quarantined, [f05c165d8cef71c55b033bd831d0bf41],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job, Quarantined, [0f3dcfa4fd7e1b1b7cebe1ceee14de22],
PUP.Optional.TornTV.A, C:\Windows\Tasks\Torntv V6.0-updater.job, Quarantined, [52fa165d81fa61d5392e8728b84a837d],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\45960.xpi, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\Uninstall.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
PUP.Optional.TornTV.A, C:\Program Files (x86)\Torntv V6.0\utils.exe, Quarantined, [65e7e2916a114de9066887f58f73946c],
Physical Sectors: 0
(No malicious items detected)
(end)
Re: Vyskakovací okna-prosím o kontrolu
RogueKiller V9.0.2.0 (x64) [Jun 3 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Kontrola -- Datum : 06/06/2014 21:58:22
¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[Suspicious.Path] icq.exe -- C:\Users\Martin\AppData\Roaming\ICQM\icq.exe[7] -> SMAZÁNO [TermThr]
¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Run | icq : C:\Users\Martin\AppData\Roaming\ICQM\icq.exe -CU -> NALEZENO
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Run | icq : C:\Users\Martin\AppData\Roaming\ICQM\icq.exe -CU -> NALEZENO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: HGST HTS 545050A7E380 SATA Disk Device +++++
--- User ---
[MBR] 5563ee86216a1c21e78cfa8297c1cea8
[BSP] 6a3125a7f090a24988d63ba5cae1a61d : Unknown MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Kontrola -- Datum : 06/06/2014 21:58:22
¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[Suspicious.Path] icq.exe -- C:\Users\Martin\AppData\Roaming\ICQM\icq.exe[7] -> SMAZÁNO [TermThr]
¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Run | icq : C:\Users\Martin\AppData\Roaming\ICQM\icq.exe -CU -> NALEZENO
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Run | icq : C:\Users\Martin\AppData\Roaming\ICQM\icq.exe -CU -> NALEZENO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] (X64) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> NALEZENO
[PUM.Policies] (X86) HKEY_USERS\S-1-5-21-95884617-4194005887-3323440248-1002\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: HGST HTS 545050A7E380 SATA Disk Device +++++
--- User ---
[MBR] 5563ee86216a1c21e78cfa8297c1cea8
[BSP] 6a3125a7f090a24988d63ba5cae1a61d : Unknown MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Vyskakovací okna-prosím o kontrolu
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat ".
- Označ všechny položky.
- Klikni na "Smazat".
- Počkej, dokud Status box zobrazuje "Smazání- Finished ".
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller.
====================================================
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat ".
- Označ všechny položky.
- Klikni na "Smazat".
- Počkej, dokud Status box zobrazuje "Smazání- Finished ".
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller.
====================================================
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Vyskakovací okna-prosím o kontrolu
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 96 hostů