Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   win 8, maleware gefunden. (https://www.trojaner-board.de/165007-win-8-maleware-gefunden.html)

spinweb 12.03.2015 13:56
win 8, maleware gefunden.
 
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlauf Datum: 10.03.2015
Suchlauf-Zeit: 16:25:44
Logdatei: log mbam 1.txt
Administrator: Ja

Version: 2.00.4.1028
Malware Datenbank: v2015.02.24.05
Rootkit Datenbank: v2015.02.22.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: *******

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 435547
Verstrichene Zeit: 22 Min, 30 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(Keine schädliche Elemente erkannt)

Module: 0
(Keine schädliche Elemente erkannt)

Registrierungsschlüssel: 2
PUP.Optional.SearchApp.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\aaaaaiabcopkplhgaedhbloeejhhankf, In Quarantäne, [0d38ba688dfdea4cd3012d85f01358a8],
PUP.Optional.SearchApp.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\aaaaaiabcopkplhgaedhbloeejhhankf, In Quarantäne, [e16446dccbbfda5caa2aebc7fd060af6],

Registrierungswerte: 0
(Keine schädliche Elemente erkannt)

Registrierungsdaten: 0
(Keine schädliche Elemente erkannt)

Ordner: 104
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\avira, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\imesh, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\plain, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\taskbar, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\v5parity, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\ask-homepage, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\search-box-DLA, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-images, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-news, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-QA, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-video, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-web, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-hide, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\shims, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab\js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\settings, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\images, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\_metadata, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\avira, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\imesh, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\plain, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\taskbar, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\v5parity, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\ask-homepage, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\search-box-DLA, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-images, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-news, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-QA, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-video, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-web, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-hide, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\shims, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab\js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\settings, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\images, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\_metadata, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],

Dateien: 385
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\icon.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\manifest.json, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\init-bg-messaging.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\background-options.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\background.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\background.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\browser-action.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\cache-config.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\cookies.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\feeds.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\fixup-jquery-for-ie.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\history.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\ie-bg-shim.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\install-api.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\lifecycle.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\localStorage.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\OneTimeCode.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\popup.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\preference.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\rebuttal.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\registry.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\reporting.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\search.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\security.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\sideByside.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\tabs.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\utils.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\build.json, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\lang-config.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\tb-config.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\test-widget-config.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\widget-config.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\widget-config.jse, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\chrome-options.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\content-script.xul, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\init-tb-stuff.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\newtab-overlay.xul, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\newtab-subscript.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\toolbar.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\toolbar.xul, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widget-bundled.xul, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widget-hosted.xul, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\bl-new-tab.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\chrome-options.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\containers.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\hp-new-tab.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\new-tab.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\searchbox.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\toolbar.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\avira\avira.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\imesh\imesh.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark\mindspark.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark\new-search-button-mid.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark\new-search-button-sides.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\plain\plain.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\taskbar\taskbar.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\v5parity\v5parity.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\IDR_WEBSTORE_ICON.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\ask_flat_20x.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_128x.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_19x.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_19x_grey.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_24x.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_32x.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\newtablogo.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\toolbar-icon-ask.ico, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\toolbar-icons.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\bl-homepage_logo.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\btn_x.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\homepage_logo.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\manifier.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\thirdparty_icons.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\btn_search_ask_taskbar.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\logo_cobrand_18px.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\logo_cobrand_24px.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\new-search-button-mid.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\new-search-button-sides.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\search-button-mid.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\search-button-sides.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_1.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_10.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_10plus.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_2.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_3.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_4.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_5.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_6.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_7.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_8.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_9.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_exclaim.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_numbers.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\bdg-gradient.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\bg.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\curved-divider.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\left-bg.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\ask-homepage\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-images\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-news\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-QA\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-video\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-web\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-hide\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\options.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\css\options.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\button-blue-1x20.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\button-grey-1x26.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\icons.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\lightblue-1x43.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\trans-big.gif, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\js\options.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\js\translations.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\content-script.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\injector.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\inline-html.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\notify-presence.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\positioning.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\toolbar.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\widget-hosted.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\widget.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack\facebook.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack\relative.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack\static.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\removeFromToolbar.py, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\button.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\ClassTreeView.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace-bindings.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace-bindings.xml, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace.xul, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\Tracer.jsm, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\async-gate.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\browser-shim.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\constant.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\DataStore.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\default-config.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\i18n.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\jquery.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\json.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\logger.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\polyfill.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\protocol.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\state-machine.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\tb-config-update.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\tb-message.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\widget-config-update.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\widget-messaging.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\window-position.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\shims\console.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab\newtab.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab\js\newtab.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\settings\assets.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\settings\redirect.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\bl-new-tab-page.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\chrome-options.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\ieCS.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\IFrameButton.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\init-toolbar.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\new-tab-page.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\rebuttal.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\reel.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\searchbox.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\shimIE.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\SimpleButton.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\toolbar.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\options.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\options.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\options.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\button-blue-1x20.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\button-grey-1x26.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\button.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\icons.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\lightblue-1x43.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\rebuttal.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\rebuttal.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\rebuttal.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\images\warning.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion\search-suggestion.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion\search-suggestion.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion\search-suggestion.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\feed.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\menu.html, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\menu.css, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\footer_gradient.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\footer_shadow.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\image_placeholder.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\item-bg.png, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js\api.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js\feed.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js\menu.js, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\Liane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\_metadata\verified_contents.json, In Quarantäne, [073e1d0516749b9b022e4042887bb64a],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\icon.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\manifest.json, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\init-bg-messaging.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\background-options.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\background.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\background.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\browser-action.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\cache-config.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\cookies.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\feeds.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\fixup-jquery-for-ie.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\history.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\ie-bg-shim.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\install-api.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\lifecycle.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\localStorage.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\OneTimeCode.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\popup.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\preference.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\rebuttal.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\registry.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\reporting.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\search.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\security.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\sideByside.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\tabs.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\background\utils.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\build.json, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\lang-config.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\tb-config.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\test-widget-config.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\widget-config.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\widget-config.jse, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\chrome-options.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\content-script.xul, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\init-tb-stuff.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\newtab-overlay.xul, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\newtab-subscript.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\toolbar.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\toolbar.xul, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widget-bundled.xul, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widget-hosted.xul, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\bl-new-tab.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\chrome-options.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\containers.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\hp-new-tab.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\new-tab.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\searchbox.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\toolbar.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\avira\avira.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\imesh\imesh.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark\mindspark.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark\new-search-button-mid.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\mindspark\new-search-button-sides.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\plain\plain.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\taskbar\taskbar.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\css\themes\v5parity\v5parity.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\IDR_WEBSTORE_ICON.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\ask_flat_20x.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_128x.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_19x.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_19x_grey.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_24x.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\logo_32x.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\newtablogo.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\toolbar-icon-ask.ico, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\logo\toolbar-icons.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\bl-homepage_logo.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\btn_x.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\homepage_logo.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\manifier.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\newtab\thirdparty_icons.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\btn_search_ask_taskbar.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\logo_cobrand_18px.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\logo_cobrand_24px.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\new-search-button-mid.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\new-search-button-sides.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\search-button-mid.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\search\search-button-sides.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_1.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_10.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_10plus.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_2.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_3.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_4.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_5.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_6.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_7.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_8.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_9.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_exclaim.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\badge_numbers.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\bdg-gradient.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\bg.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\curved-divider.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\images\vanilla\left-bg.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\ask-homepage\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-images\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-news\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-QA\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-video\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\searchTheme-web\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-hide\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\options.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\css\options.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\button-blue-1x20.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\button-grey-1x26.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\icons.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\lightblue-1x43.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\images\trans-big.gif, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\js\options.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\config\skin\widgets\SPE-options\js\translations.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\content-script.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\injector.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\inline-html.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\notify-presence.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\positioning.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\toolbar.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\widget-hosted.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\widget.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack\facebook.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack\relative.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\content_script\hack\static.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\removeFromToolbar.py, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\button.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\ClassTreeView.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace-bindings.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace-bindings.xml, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\logtrace.xul, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\devtools\logtrace\Tracer.jsm, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\async-gate.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\browser-shim.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\constant.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\DataStore.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\default-config.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\i18n.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\jquery.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\json.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\logger.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\polyfill.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\protocol.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\state-machine.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\tb-config-update.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\tb-message.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\widget-config-update.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\widget-messaging.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\window-position.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\lib\shims\console.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab\newtab.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\newtab\js\newtab.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\settings\assets.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\settings\redirect.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\bl-new-tab-page.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\chrome-options.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\ieCS.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\IFrameButton.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\init-toolbar.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\new-tab-page.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\rebuttal.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\reel.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\searchbox.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\shimIE.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\SimpleButton.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\tb_ux\toolbar.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\options.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\options.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\options.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\button-blue-1x20.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\button-grey-1x26.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\button.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\icons.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\options\images\lightblue-1x43.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\rebuttal.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\rebuttal.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\rebuttal.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\rebuttal\images\warning.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion\search-suggestion.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion\search-suggestion.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\search-suggestion\search-suggestion.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\feed.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\menu.html, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\menu.css, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\footer_gradient.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\footer_shadow.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\image_placeholder.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\css\images\item-bg.png, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js\api.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js\feed.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\widgets\templates\js\menu.js, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\_metadata\computed_hashes.json, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],
PUP.Optional.SearchApp.A, C:\Users\*******\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\55.11_0\_metadata\verified_contents.json, In Quarantäne, [d17457cbdbafa195939d9ae8c14225db],

Physische Sektoren: 0
(Keine schädliche Elemente erkannt)


(end)

schrauber 12.03.2015 14:14
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


spinweb 12.03.2015 14:21
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by ******* at 2015-03-12 14:19:05
Running from C:\Users\*******\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACID Music Studio 9.0 (HKLM-x32\...\{7943168F-18A0-11E2-9C81-F04DA23A5C58}) (Version: 9.0.35 - Sony)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10)  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Cliqz (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 0.5.53 - Cliqz.com)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2126 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6426.52 - CyberLink Corp.)
DVD Architect Studio 5.0 (HKLM-x32\...\{4347F591-C451-11E1-BA36-F04DA23A5C58}) (Version: 5.0.161 - Sony)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
FLV-Media-Player (HKLM-x32\...\{AB7A5DBA-BC45-489A-B4D2-2E8F8CABB9EA}) (Version: 2.0.3.2532 - HYBRIDWEB.de)
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.2.1128 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.41.623 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.41.623 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.17.1127 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.17.1127 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4693.1002 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\SkyDriveSetup.exe) (Version: 16.4.6012.0828 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Studio Platinum 12.0 (64-bit) (HKLM\...\{BFB6D89E-0BDF-11E2-A35E-F04DA23A5C58}) (Version: 12.0.530 - Sony)
Mozilla Firefox 36.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 de)) (Version: 36.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4693.1002 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28146 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C1801}) (Version: 12.24.1.51 - APN, LLC) <==== ATTENTION
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Sound Forge Audio Studio 10.0 (HKLM-x32\...\{7A9D3D30-BEEC-11E1-91CF-F04DA23A5C58}) (Version: 10.0.178 - Sony)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VAIO - Remote-Tastatur (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.2.0.09270 - Sony Corporation)
VAIO - Remote-Tastatur mit PlayStation®3 (HKLM-x32\...\{E682702C-609C-4017-99E7-3129C163955F}) (Version: 1.2.0.09210 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.3.2.07020 - Sony Corporation)
VAIO Care (HKLM\...\{EF649526-0134-46A8-8DF3-D7F9309E48DB}) (Version: 8.4.2.12046 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Care-Hardwarediagnose-Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.11.1.11210 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.1.0.10300 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.10.0.07270 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{14AC95A2-7675-4988-A5BD-3F5B943AED08}) (Version: 3.0.1.02270 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 3.1.0.10240 - Sony Corporation)
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.1.0.10220 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.1.0.10220 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.3.00.10220 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.1.0.10220 - Sony Corporation)
VAIO Media Server Settings (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.0.1.10170 - Sony Corporation)
VAIO Movie Creator (HKLM-x32\...\InstallShield_{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.3.01.11140 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.0.00.10170 - Sony Corporation) Hidden
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation) Hidden
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.0.1.02280 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.9.0.11060 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WEB.DE MailCheck für Mozilla Firefox (HKLM-x32\...\1&1 Mail & Media GmbH Toolbar FF) (Version: 2.10.1.1735 - 1&1 Mail & Media GmbH)
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\*******\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\*******\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\*******\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\*******\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

11-02-2015 23:14:01 Windows Modules Installer
26-02-2015 18:55:40 Windows Update
08-03-2015 21:42:12 Geplanter Prüfpunkt

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0C8EFD36-DFFA-4F86-9F73-8DDBECF67BC7} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {1127D9D8-52E7-4FD1-A8E9-A503AF1CF0EC} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {1E24FEB4-34B3-4831-890D-568968556902} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2013-02-21] (Sony Corporation)
Task: {26CA54E4-4323-48B3-A77E-B8D488F5D85C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-22] (Google Inc.)
Task: {31381CBF-72DD-4B33-A867-E78E47323DC5} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {3BFBB0CE-A043-4563-8280-B96B7BA618D8} - System32\Tasks\{CFE50C8D-7823-4C35-B050-A5B72811FA1D} => pcalua.exe -a C:\Users\*******\AppData\Local\SafetySearch\uninstall.exe
Task: {3CE639E2-D62E-471D-9B76-1E7B9E935545} - System32\Tasks\{95C02C15-C9D4-4AA2-A2C1-A09F605D934D} => pcalua.exe -a D:\setup.exe -d D:\
Task: {44E4FC09-D9FF-49D2-9144-48EB1765C27A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-22] (Google Inc.)
Task: {47868FBE-CCA7-4A0A-ADA7-660C56185EF0} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-04-03] (Sony Corporation)
Task: {50C4C078-6EA1-4956-A856-9F4006E771D5} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {52E44BC9-D164-48F3-BEED-B89AC2891425} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-10-23] (Sony Corporation)
Task: {58544191-DDC7-413F-926E-76773CD505C5} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-11-20] (Adobe Systems Incorporated)
Task: {64918D2F-E3F9-4708-B2FA-82FD897A33B4} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2014-03-01] (Sony Corporation)
Task: {6FEA78F8-90CF-444A-A705-F6E2A85561A1} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {77E493DB-BE83-4BE5-B401-F114392839EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {812FD2C2-F87A-410D-9A14-7798901D5AC7} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-10-22] (Sony Corporation)
Task: {85E624A3-C77B-4B56-84C8-8271414F1689} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {866D3C34-CBB5-46E6-B03D-2AA6837C1CF4} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-09-06] (Sony Corporation)
Task: {8906E5E3-CC7C-4F9A-B4EC-FE8BA606EFF9} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-12-30] (Microsoft Corporation)
Task: {91FFB07F-0293-484A-9545-E3C381EE6CC6} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {937FD797-1077-41ED-AF05-768F33F6B5D0} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2014-12-03] (Sony Corporation)
Task: {A09368E8-4670-49EC-8245-B13CF79998F4} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2014-01-16] (Sony Corporation)
Task: {B651FBF8-25A5-4017-BDEE-C69321039CC2} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {C280DD71-0971-4DC6-BAB6-1EB53B7D85C7} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-04-03] (Sony Corporation)
Task: {C7C3D43D-CFB7-4918-98EE-AE5DF2E1474A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-12-30] (Microsoft Corporation)
Task: {CDEBDCD9-DFE0-4B83-9464-65C8EF4F0BDC} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"
Task: {D6CD0B8E-6707-4197-86E9-EAD9DCE921E3} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-09-06] (Sony Corporation)
Task: {DA4851AF-0EE7-4572-93D1-3EF7BCE3F6FF} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {DBAAB020-6E57-4B3B-8E92-D632EC0B5B49} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2014-07-03] (Sony Corporation)
Task: {DC995830-BBAF-47D1-A968-F39E3771B105} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {DD45CFA3-2D5E-4E16-8B5D-0D6D9A72C144} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {E0030E76-71CD-4339-AC88-771AA1DBB43B} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2014-02-28] (Sony Corporation)
Task: {ED9D3F09-5C1E-4D88-ADC5-10EB2761C4C5} - System32\Tasks\Sony Corporation\VAIO Care\UpdateContacts => %ProgramData%\Sony Corporation\VAIO Care\UpdateContacts.exe
Task: {FA76A0C4-B477-46F5-B5E7-4E1F369D5220} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-12-03] (Sony Corporation)
Task: {FE2DF44F-A4FD-4EB7-81D8-B9C02D289319} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-02-11] (Microsoft Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (whitelisted) ==============

2014-03-26 23:15 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-11-19 10:21 - 2013-11-19 10:21 - 00062464 _____ () C:\Program Files\Sony\VAIO Care\listener.exe
2013-01-18 01:11 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-11-19 10:21 - 2013-11-19 10:21 - 00347136 _____ () C:\Program Files\Sony\VAIO Care\Iolo\vosges.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\*******\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Sony\VAIO 11 img4 Wallpaper 1600x900.jpg
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\StartupApproved\Run: => "MxDock"
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\StartupApproved\Run: => "Steam"

==================== Accounts: =============================

Administrator (S-1-5-21-3292672608-3251690303-1879834815-500 - Administrator - Disabled)
Gast (S-1-5-21-3292672608-3251690303-1879834815-501 - Limited - Disabled)
******* (S-1-5-21-3292672608-3251690303-1879834815-1001 - Administrator - Enabled) => C:\Users\*******

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/12/2015 02:16:25 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT-AUTORITÄT)
Description: There was an error with the Windows Location Provider database

Error: (03/12/2015 01:40:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x121c
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/12/2015 01:40:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0xe64
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/12/2015 01:35:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x13a8
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/12/2015 01:34:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x52c
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/10/2015 06:11:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x11e8
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/10/2015 06:11:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0xd8c
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/10/2015 04:24:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x598
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/10/2015 04:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VESUserProxy.exe, Version: 6.1.0.9140, Zeitstempel: 0x50538abc
Name des fehlerhaften Moduls: SynCom.DLL, Version: 6.3.9600.17630, Zeitstempel: 0x54b0d74f
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009e0b2
ID des fehlerhaften Prozesses: 0x2a0
Startzeit der fehlerhaften Anwendung: 0xVESUserProxy.exe0
Pfad der fehlerhaften Anwendung: VESUserProxy.exe1
Pfad des fehlerhaften Moduls: VESUserProxy.exe2
Berichtskennung: VESUserProxy.exe3
Vollständiger Name des fehlerhaften Pakets: VESUserProxy.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VESUserProxy.exe5

Error: (03/10/2015 04:21:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: VCAgent.exe, Version: 8.4.2.12030, Zeitstempel: 0x5476d099
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00007ffb9c48acb1
ID des fehlerhaften Prozesses: 0x13ec
Startzeit der fehlerhaften Anwendung: 0xVCAgent.exe0
Pfad der fehlerhaften Anwendung: VCAgent.exe1
Pfad des fehlerhaften Moduls: VCAgent.exe2
Berichtskennung: VCAgent.exe3
Vollständiger Name des fehlerhaften Pakets: VCAgent.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: VCAgent.exe5


System errors:
=============
Error: (03/12/2015 01:41:17 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}

Error: (03/12/2015 01:40:45 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}

Error: (03/12/2015 01:39:06 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}

Error: (03/12/2015 01:35:19 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}

Error: (03/10/2015 06:33:51 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (03/10/2015 06:33:19 PM) (Source: DCOM) (EventID: 10010) (User: VAIO)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (03/10/2015 06:12:31 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}

Error: (03/10/2015 06:11:58 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}

Error: (03/10/2015 04:25:00 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}

Error: (03/10/2015 04:24:30 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BC173216-CF59-483B-BC5F-595A7D0466E6}


Microsoft Office Sessions:
=========================
Error: (03/12/2015 02:16:25 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT-AUTORITÄT)
Description: -2147024883

Error: (03/12/2015 01:40:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b2121c01d05cc1c271b9a8C:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLL00230958-c8b5-11e4-bee1-a41731d8d3ca

Error: (03/12/2015 01:40:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b2e6401d05cc1ac50f068C:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLLeb57364c-c8b4-11e4-bee1-a41731d8d3ca

Error: (03/12/2015 01:35:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b213a801d05cc100286377C:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLL3dd8d056-c8b4-11e4-bee1-a41731d8d3ca

Error: (03/12/2015 01:34:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b252c01d05cc0eb264b50C:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLL29454882-c8b4-11e4-bee1-a41731d8d3ca

Error: (03/10/2015 06:11:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b211e801d05b55515d67a3C:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLL8f0eb753-c748-11e4-bee1-a41731d8d3ca

Error: (03/10/2015 06:11:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b2d8c01d05b55398ee6c3C:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLL780880e8-c748-11e4-bee1-a41731d8d3ca

Error: (03/10/2015 04:24:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b259801d05b464dc5c059C:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLL8b724c20-c739-11e4-bee1-a41731d8d3ca

Error: (03/10/2015 04:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VESUserProxy.exe6.1.0.914050538abcSynCom.DLL6.3.9600.1763054b0d74fc00001350009e0b22a001d05b4639654fdaC:\Program Files (x86)\Sony\VAIO Control Center\VESUserProxy.exeSynCom.DLL77ce37d5-c739-11e4-bee1-a41731d8d3ca

Error: (03/10/2015 04:21:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: VCAgent.exe8.4.2.120305476d099unknown0.0.0.000000000c000000500007ffb9c48acb113ec01d05a86ce1e56d3C:\Program Files\Sony\VAIO Care\VCAgent.exeunknown2abda26e-c739-11e4-bee0-a41731d8d3ca


CodeIntegrity Errors:
===================================
  Date: 2015-01-01 13:51:12.397
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\x64\sysapcrt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 13:51:12.288
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\sysapcrt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 13:50:23.309
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2015-01-01 13:50:23.168
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-12-28 20:12:21.390
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\x64\sysapcrt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-28 20:12:21.296
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\sysapcrt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-28 20:10:51.066
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\x64\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-12-28 20:10:50.941
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\sysapcrt.dll that did not meet the Windows signing level requirements.

  Date: 2014-12-27 14:13:16.490
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\x64\sysapcrt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-27 14:13:16.381
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Settings Manager\smdmf\sysapcrt.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3120M CPU @ 2.50GHz
Percentage of memory in use: 46%
Total physical RAM: 3975.27 MB
Available physical RAM: 2123.07 MB
Total Pagefile: 6535.27 MB
Available Pagefile: 4419.71 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:428.44 GB) (Free:322.96 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: ED47A296)

Partition: GPT Partition Type.

==================== End Of Log ============================

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by lilli (administrator) on VAIO on 12-03-2015 14:18:07
Running from C:\Users\lilli\Downloads
Loaded Profiles: lilli (Available profiles: lilli)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
(iolo technologies, LLC) C:\Program Files\Sony\VAIO Care\Iolo\ioloTools.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-10-10] (Realtek Semiconductor)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-10] (Oracle Corporation)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1934744 2015-01-31] (APN)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\RunOnce: [Adobe Speed Launcher] => 1426163961
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Policies\Explorer: [DisallowRun] 1
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:49790;https=127.0.0.1:49790
ProxyEnable: [S-1-5-21-3292672608-3251690303-1879834815-1001] => Internet Explorer proxy is enabled.
ProxyServer: [S-1-5-21-3292672608-3251690303-1879834815-1001] => http=127.0.0.1:49790;https=127.0.0.1:49790
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {4C434161-3A93-4930-9D0E-038FD29EDC43} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {B281959D-0D50-47CB-BD6F-46DCEA47C4B9} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-12-02] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-14] (Microsoft Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\Sony\MSS\3.8.141\McAfeeMSS_IE.dll [2014-01-16] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-07] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-07] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-08-27] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default
FF DefaultSearchEngine: DuckDuckGo
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\Sony\MSS\3.8.141\npMcAfeeMss.dll [2014-01-16] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-02-07] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll No File
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-04-13] ()
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\englische-ergebnisse.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\gmx-suche.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\lastminute.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\webde-suche.xml [2014-07-20]
FF Extension: Cliqz Beta - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\cliqz@cliqz.com.xpi [2014-12-23]
FF Extension: Dict.cc Translation - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\searchdictcc@roughael.xpi [2014-02-06]
FF Extension: Tab Updater - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{55dcbefc-9aee-466f-9c9c-15e792724dd4}.xpi [2014-08-10]
FF Extension: NoScript - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-01-16]
FF Extension: {9d2201b0-125f-4d8f-ab37-93446f702158} - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{9d2201b0-125f-4d8f-ab37-93446f702158}.xpi [2014-07-24]
FF Extension: Adblock Plus - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-03]
FF Extension: UITBAutoInstaller - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\{edd7fc99-d65c-4979-85c2-ddeed30c50c7} [2015-03-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\extensions\cliqz@cliqz.com

Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSearchKeyword: Default -> 42F6E8BE048717FD250B42F9EEA3283CD3B5149BF262C375DA8B14B231469467
CHR DefaultSearchURL: Default -> 66E7675B4F3335AA3CF5CC5A5824ECA1524996BB369F834684DC2B4574DEE592
CHR Profile: C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-17]
CHR Extension: (Google Drive) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-17]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-07]
CHR Extension: (YouTube) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-17]
CHR Extension: (Google Search) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-17]
CHR Extension: (Google Wallet) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-17]
CHR Extension: (Default-Search) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\poimdfnhgefmnkeefbjibbiemlimdnof [2014-12-22]
CHR HKLM-x32\...\Chrome\Extension: [poimdfnhgefmnkeefbjibbiemlimdnof] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [177560 2015-01-31] (APN LLC.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2711736 2015-01-13] (Microsoft Corporation)
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 McComponentHostServiceSony; C:\Program Files\Sony\MSS\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-08] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-08] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation) [File not signed]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 AntiVirSchedulerService; "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" [X]
S2 AntiVirService; "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-15] (Avira Operations GmbH & Co. KG)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-08] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-08] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-08] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-08] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-08] (McAfee, Inc.)
R3 RTL8168; C:\Windows\system32\DRIVERS\rtlh64.sys [681688 2015-01-21] (Inventec                                            )
R3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-01-25] ()
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 AthBTPort; \SystemRoot\system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; \SystemRoot\system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; \SystemRoot\system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; \SystemRoot\System32\drivers\btath_bus.sys [X]
S3 BTATH_HCRP; \SystemRoot\System32\drivers\btath_hcrp.sys [X]
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; \SystemRoot\System32\drivers\btath_rcp.sys [X]
S3 BTATH_VDP; \SystemRoot\system32\drivers\btath_vdp.sys [X]
S3 SmbDrvI; \SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-12 14:18 - 2015-03-12 14:18 - 00018516 _____ () C:\Users\lilli\Downloads\FRST.txt
2015-03-12 14:17 - 2015-03-12 14:18 - 00000000 ____D () C:\FRST
2015-03-12 14:17 - 2015-03-12 14:17 - 02095616 _____ (Farbar) C:\Users\lilli\Downloads\FRST64.exe
2015-03-07 23:17 - 2015-03-10 16:18 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1008
2015-03-07 22:55 - 2015-03-07 22:55 - 00000000 ____D () C:\Users\lilli\AppData\Local\AskPartnerNetwork
2015-03-07 22:54 - 2015-03-07 22:54 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2015-03-07 22:54 - 2015-03-07 22:54 - 00000000 ____D () C:\ProgramData\APN
2015-03-07 22:54 - 2015-03-07 22:54 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2015-03-07 22:52 - 2015-03-07 22:51 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-07 22:48 - 2015-03-07 22:48 - 00561064 _____ (Oracle Corporation) C:\Users\lilli\Downloads\jxpiinstall.exe
2015-03-06 21:35 - 2015-03-06 21:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-02-26 18:50 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-02-12 16:07 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-12 16:07 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-11 20:44 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 20:44 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 20:44 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 20:44 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 20:44 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 20:44 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 20:44 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 20:44 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-02-11 20:44 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-02-11 20:44 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-02-11 20:44 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-02-11 20:44 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-02-11 20:44 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-11 20:44 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 20:44 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-11 20:44 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-02-11 20:44 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-11 20:44 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-11 20:44 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-02-11 20:44 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-02-11 20:44 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-02-11 20:44 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-02-11 20:44 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 20:44 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-02-11 20:44 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-02-11 20:44 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 20:44 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-02-11 20:44 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-11 20:44 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-11 20:44 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-02-11 20:44 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-02-11 20:44 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-11 20:44 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-11 20:44 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-11 20:44 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 20:44 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-11 20:44 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-02-11 20:44 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-02-11 20:44 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-02-11 20:44 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-11 20:44 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-11 20:44 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 20:44 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 20:44 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 20:44 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 20:44 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 20:44 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 20:44 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 20:44 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 20:44 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 20:44 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 20:44 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-02-11 20:44 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-02-11 20:44 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-02-11 20:44 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-02-11 20:44 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-02-11 20:44 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-02-11 20:44 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-02-11 20:44 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-02-11 20:44 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-02-11 20:44 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-02-11 20:44 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-02-11 20:44 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-02-11 20:44 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-02-11 20:43 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-12 14:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-12 13:58 - 2014-07-07 00:18 - 01567216 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-12 13:54 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-03-12 13:51 - 2013-06-25 22:25 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1001
2015-03-12 13:45 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-03-12 13:40 - 2014-07-14 19:47 - 00003914 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E224C277-5ECC-4FD1-8C88-6A01FE5D7476}
2015-03-10 20:31 - 2013-07-17 11:41 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-03-10 20:24 - 2014-07-22 13:33 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-10 18:17 - 2013-01-18 01:37 - 00000000 ____D () C:\Documentation
2015-03-10 18:13 - 2015-01-01 21:22 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-10 16:22 - 2013-08-22 15:46 - 00295242 _____ () C:\WINDOWS\setupact.log
2015-03-10 16:22 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-10 16:22 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-10 16:18 - 2014-12-23 00:29 - 00000000 ___RD () C:\Users\lilli\OneDrive
2015-03-07 23:07 - 2014-03-18 02:50 - 00222302 _____ () C:\WINDOWS\PFRO.log
2015-03-07 23:07 - 2013-07-03 00:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-07 22:52 - 2014-12-22 15:53 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-03 14:17 - 2013-06-29 00:25 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-03-02 15:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-21 12:41 - 2014-02-07 11:40 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-02-12 13:33 - 2013-08-22 15:44 - 00501432 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-11 23:21 - 2013-08-14 01:16 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-11 23:15 - 2013-06-27 02:23 - 116773704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-10 20:08 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF

==================== Files in the root of some directories =======

2014-07-14 18:05 - 2014-07-14 20:56 - 0000051 _____ () C:\Users\lilli\AppData\Roaming\mbam.context.scan
2013-12-21 14:38 - 2014-01-27 12:38 - 0000137 _____ () C:\Users\lilli\AppData\Roaming\WB.CFG
2014-02-28 12:06 - 2014-02-28 12:06 - 0007665 _____ () C:\Users\lilli\AppData\Local\Resmon.ResmonCfg
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.1280.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0013106 _____ () C:\ProgramData\1393587182.1576.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0002276 _____ () C:\ProgramData\1393587182.1808.bin
2014-02-28 12:34 - 2014-02-28 12:37 - 0151058 _____ () C:\ProgramData\1393587182.1872.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.2772.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0094918 _____ () C:\ProgramData\1393587182.2864.bin
2014-02-28 12:35 - 2014-02-28 12:35 - 0001700 _____ () C:\ProgramData\1393587182.3364.bin
2014-02-28 12:33 - 2014-02-28 12:35 - 0019280 _____ () C:\ProgramData\1393587182.3656.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0045445 _____ () C:\ProgramData\1393587182.3876.bin
2014-02-28 12:34 - 2014-02-28 12:35 - 2010567 _____ () C:\ProgramData\1393587182.4256.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0007517 _____ () C:\ProgramData\1393587182.4304.bin

Some content of TEMP:
====================
C:\Users\lilli\AppData\Local\Temp\amazonicon_v6.exe
C:\Users\lilli\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\lilli\AppData\Local\Temp\APNSetup.exe
C:\Users\lilli\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\lilli\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\lilli\AppData\Local\Temp\mbam-setup-2.0.2.1012.exe
C:\Users\lilli\AppData\Local\Temp\Quarantine.exe
C:\Users\lilli\AppData\Local\Temp\sdanircmdc.exe
C:\Users\lilli\AppData\Local\Temp\sdapskill.exe
C:\Users\lilli\AppData\Local\Temp\sdaspwn.exe
C:\Users\lilli\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\lilli\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\lilli\AppData\Local\Temp\sqlite3.dll
C:\Users\lilli\AppData\Local\Temp\WEB.DE_MailCheck_FF_Setup_2.10.1.1735.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-10 18:32

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

schrauber 13.03.2015 08:16
Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    Search App by Ask


  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 




MBAM updaten, scannen, Funde löschen lassen.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

spinweb 13.03.2015 12:40
Code:
# AdwCleaner v4.112 - Bericht erstellt 13/03/2015 um 12:26:42
# Aktualisiert 09/03/2015 von Xplode
# Datenbank : 2015-03-05.1 [Lokal]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : lilli - VAIO
# Gestarted von : C:\Users\lilli\Downloads\AdwCleaner_4.112.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\Users\lilli\AppData\Local\Temp\apn
Ordner Gelöscht : C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\poimdfnhgefmnkeefbjibbiemlimdnof

***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\poimdfnhgefmnkeefbjibbiemlimdnof
Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxp=127.0.0.1:49790;hxxps=127.0.0.1:49790
Daten Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v36.0.1 (x86 de)


-\\ Google Chrome v40.0.2214.115


*************************

AdwCleaner[R0].txt - [1358 Bytes] - [13/03/2015 12:16:39]
AdwCleaner[R1].txt - [1417 Bytes] - [13/03/2015 12:22:59]
AdwCleaner[S0].txt - [1339 Bytes] - [13/03/2015 12:26:42]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1398  Bytes] ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.3 (03.01.2015:1)
OS: Windows 8.1 x64
Ran by lilli on 13.03.2015 at 12:31:42,09
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\lilli\AppData\Roaming\mozilla\firefox\profiles\fo1xyvwa.default\minidumps [14 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 13.03.2015 at 12:34:35,30
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by lilli (administrator) on VAIO on 13-03-2015 12:36:47
Running from C:\Users\lilli\Downloads
Loaded Profiles: lilli (Available profiles: lilli)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-10-10] (Realtek Semiconductor)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-10] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Policies\Explorer: [DisallowRun] 1
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:49790;https=127.0.0.1:49790
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {4C434161-3A93-4930-9D0E-038FD29EDC43} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {B281959D-0D50-47CB-BD6F-46DCEA47C4B9} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-12-02] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-14] (Microsoft Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\Sony\MSS\3.8.141\McAfeeMSS_IE.dll [2014-01-16] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-07] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-07] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-08-27] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default
FF DefaultSearchEngine: DuckDuckGo
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\Sony\MSS\3.8.141\npMcAfeeMss.dll [2014-01-16] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-02-07] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll No File
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-04-13] ()
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\englische-ergebnisse.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\gmx-suche.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\lastminute.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\webde-suche.xml [2014-07-20]
FF Extension: Cliqz Beta - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\cliqz@cliqz.com.xpi [2014-12-23]
FF Extension: Dict.cc Translation - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\searchdictcc@roughael.xpi [2014-02-06]
FF Extension: Tab Updater - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{55dcbefc-9aee-466f-9c9c-15e792724dd4}.xpi [2014-08-10]
FF Extension: NoScript - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-01-16]
FF Extension: {9d2201b0-125f-4d8f-ab37-93446f702158} - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{9d2201b0-125f-4d8f-ab37-93446f702158}.xpi [2014-07-24]
FF Extension: Adblock Plus - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-03]
FF Extension: UITBAutoInstaller - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\{edd7fc99-d65c-4979-85c2-ddeed30c50c7} [2015-03-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\extensions\cliqz@cliqz.com

Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSearchKeyword: Default -> 42F6E8BE048717FD250B42F9EEA3283CD3B5149BF262C375DA8B14B231469467
CHR DefaultSearchURL: Default -> 66E7675B4F3335AA3CF5CC5A5824ECA1524996BB369F834684DC2B4574DEE592
CHR Profile: C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-17]
CHR Extension: (Google Drive) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-17]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-07]
CHR Extension: (YouTube) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-17]
CHR Extension: (Google Search) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-17]
CHR Extension: (Google Wallet) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2711736 2015-01-13] (Microsoft Corporation)
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 McComponentHostServiceSony; C:\Program Files\Sony\MSS\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-08] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-08] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation) [File not signed]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 AntiVirSchedulerService; "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" [X]
S2 AntiVirService; "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-15] (Avira Operations GmbH & Co. KG)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-08] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-08] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-08] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-08] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-08] (McAfee, Inc.)
R3 RTL8168; C:\Windows\system32\DRIVERS\rtlh64.sys [681688 2015-01-21] (Inventec                                            )
R3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-01-25] ()
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 AthBTPort; \SystemRoot\system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; \SystemRoot\system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; \SystemRoot\system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; \SystemRoot\System32\drivers\btath_bus.sys [X]
S3 BTATH_HCRP; \SystemRoot\System32\drivers\btath_hcrp.sys [X]
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; \SystemRoot\System32\drivers\btath_rcp.sys [X]
S3 BTATH_VDP; \SystemRoot\system32\drivers\btath_vdp.sys [X]
S3 SmbDrvI; \SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-13 12:34 - 2015-03-13 12:34 - 00000746 _____ () C:\Users\lilli\Desktop\JRT.txt
2015-03-13 12:31 - 2015-03-13 12:31 - 01388333 _____ (Thisisu) C:\Users\lilli\Downloads\JRT.exe
2015-03-13 12:29 - 2015-03-13 12:29 - 00001478 _____ () C:\Users\lilli\Desktop\AdwCleaner[S0].txt
2015-03-13 12:16 - 2015-03-13 12:26 - 00000000 ____D () C:\AdwCleaner
2015-03-13 12:16 - 2015-03-13 12:16 - 02171392 _____ () C:\Users\lilli\Downloads\AdwCleaner_4.112.exe
2015-03-13 11:46 - 2015-03-13 11:46 - 00001284 _____ () C:\Users\lilli\Desktop\Revo Uninstaller.lnk
2015-03-13 11:45 - 2015-03-13 11:45 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\lilli\Downloads\revosetup95(1).exe
2015-03-12 14:19 - 2015-03-12 14:21 - 00036568 _____ () C:\Users\lilli\Downloads\Addition.txt
2015-03-12 14:18 - 2015-03-13 12:36 - 00017148 _____ () C:\Users\lilli\Downloads\FRST.txt
2015-03-12 14:17 - 2015-03-13 12:36 - 00000000 ____D () C:\FRST
2015-03-12 14:17 - 2015-03-12 14:17 - 02095616 _____ (Farbar) C:\Users\lilli\Downloads\FRST64.exe
2015-03-12 13:57 - 2015-03-06 03:53 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-12 13:57 - 2015-03-06 03:33 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-03-12 13:57 - 2015-02-26 00:26 - 04178944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-03-12 13:57 - 2015-02-20 04:03 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-03-12 13:57 - 2015-02-20 03:58 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-03-12 13:57 - 2015-02-20 03:20 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-03-12 13:57 - 2015-02-20 03:15 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-03-12 13:57 - 2015-02-07 00:09 - 00396419 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-03-12 13:57 - 2015-02-05 21:24 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-03-12 13:57 - 2015-02-03 00:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-03-12 13:57 - 2015-02-03 00:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-03-12 13:57 - 2015-01-31 00:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-03-12 13:57 - 2015-01-31 00:29 - 02484224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-03-12 13:57 - 2015-01-29 02:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-03-12 13:57 - 2015-01-29 02:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-03-12 13:57 - 2015-01-29 02:04 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-03-12 13:57 - 2015-01-29 02:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-03-12 13:57 - 2015-01-27 04:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-03-12 13:57 - 2015-01-24 02:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-03-12 13:57 - 2015-01-23 08:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-03-12 13:57 - 2015-01-23 06:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-12 13:57 - 2014-10-29 03:49 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-03-12 13:57 - 2014-10-29 03:44 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-03-12 13:57 - 2014-10-29 03:44 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-03-12 13:57 - 2014-10-29 03:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2015-03-12 13:57 - 2014-10-29 03:34 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-03-12 13:57 - 2014-10-29 03:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2015-03-12 13:57 - 2014-10-29 03:04 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-03-12 13:57 - 2014-10-29 03:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-03-12 13:57 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-03-12 13:57 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2015-03-12 13:57 - 2014-10-29 02:52 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2015-03-12 13:57 - 2014-10-29 02:51 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-03-12 13:57 - 2014-10-29 02:45 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2015-03-12 13:57 - 2014-10-29 02:28 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2015-03-12 13:57 - 2014-10-29 02:20 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-03-12 13:57 - 2014-10-29 02:15 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2015-03-12 13:57 - 2014-10-29 01:55 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2015-03-12 13:57 - 2014-10-29 01:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2015-03-12 13:57 - 2014-10-29 01:41 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2015-03-12 13:57 - 2014-10-29 01:35 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2015-03-12 13:56 - 2015-02-06 02:28 - 02257408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-03-12 13:56 - 2015-02-06 02:08 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-03-12 13:56 - 2015-02-03 01:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-03-12 13:56 - 2015-02-03 01:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-03-12 13:56 - 2015-01-31 00:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-03-12 13:56 - 2015-01-30 04:01 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-03-12 13:56 - 2015-01-30 04:00 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-03-12 13:56 - 2015-01-30 03:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-03-12 13:56 - 2015-01-30 03:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-03-12 13:56 - 2015-01-30 03:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-03-12 13:56 - 2015-01-30 02:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-03-12 13:56 - 2015-01-30 02:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-03-12 13:56 - 2015-01-30 02:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-03-12 13:56 - 2015-01-30 02:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-03-12 13:56 - 2015-01-30 02:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-03-12 13:56 - 2015-01-30 02:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-03-12 13:56 - 2015-01-30 02:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-03-12 13:56 - 2015-01-30 02:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-03-12 13:56 - 2015-01-30 02:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-03-12 13:56 - 2015-01-30 02:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-03-12 13:56 - 2015-01-29 02:11 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-12 13:56 - 2015-01-29 02:00 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-12 13:56 - 2015-01-29 01:59 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-03-12 13:56 - 2015-01-29 01:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-03-12 13:56 - 2015-01-29 01:50 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-12 13:56 - 2015-01-29 01:49 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-03-12 13:56 - 2015-01-28 16:41 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-03-12 13:56 - 2015-01-28 16:41 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-03-12 13:56 - 2015-01-28 16:41 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-03-12 13:56 - 2015-01-28 03:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-03-12 13:56 - 2015-01-28 02:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-03-12 13:56 - 2015-01-27 05:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-03-12 13:56 - 2015-01-27 03:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-03-12 13:56 - 2014-10-29 04:56 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-03-12 13:56 - 2014-10-29 03:46 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2015-03-12 13:56 - 2014-10-29 03:46 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2015-03-12 13:56 - 2014-10-29 03:45 - 01198080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-03-12 13:56 - 2014-10-29 03:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-03-12 13:56 - 2014-10-29 03:34 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2015-03-12 13:56 - 2014-10-29 03:34 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2015-03-12 13:56 - 2014-10-29 03:03 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsquirt.exe
2015-03-12 13:56 - 2014-10-29 02:28 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2015-03-12 13:56 - 2014-10-29 02:19 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2015-03-12 13:56 - 2014-10-29 02:13 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-03-12 13:56 - 2014-10-29 01:59 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2015-03-12 13:56 - 2014-10-29 01:55 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-03-12 13:55 - 2015-02-21 02:16 - 25021440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-03-12 13:55 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-03-12 13:55 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-03-12 13:55 - 2015-02-21 01:27 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-03-12 13:55 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-03-12 13:55 - 2015-02-21 00:58 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-03-12 13:55 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-03-12 13:55 - 2015-02-20 03:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-03-12 13:55 - 2015-02-20 03:48 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-03-12 13:55 - 2015-02-20 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-03-12 13:55 - 2015-02-20 03:35 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-03-12 13:55 - 2015-02-20 03:34 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-03-12 13:55 - 2015-02-20 03:32 - 06035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-03-12 13:55 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-03-12 13:55 - 2015-02-20 03:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-03-12 13:55 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-03-12 13:55 - 2015-02-20 03:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-03-12 13:55 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-03-12 13:55 - 2015-02-20 02:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-03-12 13:55 - 2015-02-20 02:56 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-03-12 13:55 - 2015-02-20 02:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-03-12 13:55 - 2015-02-20 02:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-03-12 13:55 - 2015-02-20 02:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-03-12 13:55 - 2015-02-20 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-03-12 13:55 - 2015-02-20 02:43 - 14398976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-03-12 13:55 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-03-12 13:55 - 2015-02-20 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-03-12 13:55 - 2015-02-20 02:29 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-03-12 13:55 - 2015-02-20 02:28 - 02358784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-03-12 13:55 - 2015-02-20 02:26 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-03-12 13:55 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-03-12 13:55 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-03-12 13:55 - 2015-02-20 02:16 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-03-12 13:55 - 2015-02-20 02:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-03-12 13:55 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-03-12 13:55 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-03-12 13:55 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-03-12 13:55 - 2015-01-29 19:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-03-12 13:55 - 2015-01-29 19:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-03-12 13:54 - 2015-02-12 18:40 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-03-12 13:54 - 2015-02-12 18:34 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-03-12 13:54 - 2015-02-08 00:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-03-12 13:54 - 2015-02-08 00:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-03-12 13:54 - 2015-01-28 02:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-03-12 13:54 - 2015-01-28 02:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-03-12 13:54 - 2015-01-28 00:47 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-03-12 13:54 - 2015-01-28 00:41 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-03-12 13:54 - 2015-01-21 06:54 - 01384712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-12 13:54 - 2015-01-21 06:15 - 01123848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-12 13:54 - 2014-12-11 06:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-03-07 23:17 - 2015-03-10 16:18 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1008
2015-03-07 22:52 - 2015-03-07 22:51 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-07 22:48 - 2015-03-07 22:48 - 00561064 _____ (Oracle Corporation) C:\Users\lilli\Downloads\jxpiinstall.exe
2015-03-06 21:35 - 2015-03-06 21:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-02-26 18:50 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-02-11 20:44 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 20:44 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 20:44 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 20:44 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 20:44 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 20:44 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 20:44 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 20:44 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 20:44 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 20:44 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 20:44 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 20:44 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 20:44 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 20:44 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-02-11 20:44 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-02-11 20:44 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-02-11 20:44 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-02-11 20:44 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-02-11 20:44 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-02-11 20:44 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-02-11 20:44 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-02-11 20:44 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-02-11 20:44 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-02-11 20:44 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-02-11 20:44 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-02-11 20:44 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-13 12:35 - 2014-03-18 11:03 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-13 12:35 - 2014-03-18 10:25 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2015-03-13 12:35 - 2014-03-18 10:25 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2015-03-13 12:34 - 2014-07-07 00:18 - 02059761 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-13 12:31 - 2013-07-17 11:41 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-03-13 12:28 - 2013-08-22 15:46 - 00295473 _____ () C:\WINDOWS\setupact.log
2015-03-13 12:28 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-13 12:27 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-13 12:26 - 2013-06-25 22:25 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1001
2015-03-13 12:24 - 2014-07-22 13:33 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-13 12:21 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-03-13 12:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-13 11:55 - 2015-01-01 21:22 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-13 11:51 - 2014-12-10 01:53 - 00000000 ____D () C:\Users\lilli\AppData\Local\Adobe
2015-03-13 11:47 - 2014-07-14 19:47 - 00003914 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E224C277-5ECC-4FD1-8C88-6A01FE5D7476}
2015-03-13 11:46 - 2015-01-07 15:28 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-03-12 16:33 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-03-12 16:30 - 2013-08-22 15:44 - 00501432 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-03-12 14:43 - 2013-08-14 01:16 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-12 14:43 - 2013-06-27 02:23 - 122905848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-10 18:17 - 2013-01-18 01:37 - 00000000 ____D () C:\Documentation
2015-03-10 16:18 - 2014-12-23 00:29 - 00000000 ___RD () C:\Users\lilli\OneDrive
2015-03-07 23:07 - 2014-03-18 02:50 - 00222302 _____ () C:\WINDOWS\PFRO.log
2015-03-07 23:07 - 2013-07-03 00:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-07 22:52 - 2014-12-22 15:53 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-04 22:24 - 2014-09-15 16:07 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-03-04 22:24 - 2014-09-15 16:07 - 00178144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-03 14:17 - 2013-06-29 00:25 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-03-02 15:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-21 12:41 - 2014-02-07 11:40 - 00000000 ____D () C:\Program Files\Microsoft Office 15

==================== Files in the root of some directories =======

2014-07-14 18:05 - 2014-07-14 20:56 - 0000051 _____ () C:\Users\lilli\AppData\Roaming\mbam.context.scan
2013-12-21 14:38 - 2014-01-27 12:38 - 0000137 _____ () C:\Users\lilli\AppData\Roaming\WB.CFG
2014-02-28 12:06 - 2014-02-28 12:06 - 0007665 _____ () C:\Users\lilli\AppData\Local\Resmon.ResmonCfg
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.1280.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0013106 _____ () C:\ProgramData\1393587182.1576.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0002276 _____ () C:\ProgramData\1393587182.1808.bin
2014-02-28 12:34 - 2014-02-28 12:37 - 0151058 _____ () C:\ProgramData\1393587182.1872.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.2772.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0094918 _____ () C:\ProgramData\1393587182.2864.bin
2014-02-28 12:35 - 2014-02-28 12:35 - 0001700 _____ () C:\ProgramData\1393587182.3364.bin
2014-02-28 12:33 - 2014-02-28 12:35 - 0019280 _____ () C:\ProgramData\1393587182.3656.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0045445 _____ () C:\ProgramData\1393587182.3876.bin
2014-02-28 12:34 - 2014-02-28 12:35 - 2010567 _____ () C:\ProgramData\1393587182.4256.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0007517 _____ () C:\ProgramData\1393587182.4304.bin

Some content of TEMP:
====================
C:\Users\lilli\AppData\Local\Temp\amazonicon_v6.exe
C:\Users\lilli\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\lilli\AppData\Local\Temp\APNSetup.exe
C:\Users\lilli\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\lilli\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\lilli\AppData\Local\Temp\mbam-setup-2.0.2.1012.exe
C:\Users\lilli\AppData\Local\Temp\Quarantine.exe
C:\Users\lilli\AppData\Local\Temp\sdanircmdc.exe
C:\Users\lilli\AppData\Local\Temp\sdapskill.exe
C:\Users\lilli\AppData\Local\Temp\sdaspwn.exe
C:\Users\lilli\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\lilli\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\lilli\AppData\Local\Temp\sqlite3.dll
C:\Users\lilli\AppData\Local\Temp\WEB.DE_MailCheck_FF_Setup_2.10.1.1735.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-13 12:20

==================== End Of Log ============================
--- --- ---

--- --- ---

schrauber 13.03.2015 17:21

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

spinweb 14.03.2015 21:27
Code:
ESETSmartInstaller@High as downloader log:
all ok
Code:
Results of screen317's Security Check version 0.99.97 
  x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````
Windows Defender 
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Java 8 Update 40 
 Java version 32-bit out of Date!
  Java 64-bit 8 Update 31 
 Adobe Flash Player        16.0.0.305 
 Adobe Reader XI 
 Mozilla Firefox (36.0.1)
 Google Chrome (40.0.2214.115)
 Google Chrome (41.0.2272.89)
````````Process Check: objlist.exe by Laurent```````` 
 Windows Defender MSMpEng.exe
 Windows Defender MpCmdRun.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by lilli (administrator) on VAIO on 14-03-2015 21:26:12
Running from C:\Users\lilli\Downloads
Loaded Profiles: lilli (Available profiles: lilli)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-10-10] (Realtek Semiconductor)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-10] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\RunOnce: [Adobe Speed Launcher] => 1426348232
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Policies\Explorer: [DisallowRun] 1
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:49790;https=127.0.0.1:49790
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {4C434161-3A93-4930-9D0E-038FD29EDC43} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {B281959D-0D50-47CB-BD6F-46DCEA47C4B9} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\Sony\MSS\3.8.141\McAfeeMSS_IE.dll [2014-01-16] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-07] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-07] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default
FF DefaultSearchEngine: DuckDuckGo
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\Sony\MSS\3.8.141\npMcAfeeMss.dll [2014-01-16] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-02-07] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll No File
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-04-13] ()
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\englische-ergebnisse.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\gmx-suche.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\lastminute.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\webde-suche.xml [2014-07-20]
FF Extension: Cliqz Beta - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\cliqz@cliqz.com.xpi [2014-12-23]
FF Extension: Dict.cc Translation - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\searchdictcc@roughael.xpi [2014-02-06]
FF Extension: Tab Updater - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{55dcbefc-9aee-466f-9c9c-15e792724dd4}.xpi [2014-08-10]
FF Extension: NoScript - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-01-16]
FF Extension: {9d2201b0-125f-4d8f-ab37-93446f702158} - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{9d2201b0-125f-4d8f-ab37-93446f702158}.xpi [2014-07-24]
FF Extension: Adblock Plus - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-03]
FF Extension: UITBAutoInstaller - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\{edd7fc99-d65c-4979-85c2-ddeed30c50c7} [2015-03-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\extensions\cliqz@cliqz.com

Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSearchKeyword: Default -> 42F6E8BE048717FD250B42F9EEA3283CD3B5149BF262C375DA8B14B231469467
CHR DefaultSearchURL: Default -> 66E7675B4F3335AA3CF5CC5A5824ECA1524996BB369F834684DC2B4574DEE592
CHR Profile: C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-17]
CHR Extension: (Google Drive) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-17]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-07]
CHR Extension: (YouTube) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-17]
CHR Extension: (Google Search) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-17]
CHR Extension: (Google Wallet) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 McComponentHostServiceSony; C:\Program Files\Sony\MSS\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-08] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-08] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation) [File not signed]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 AntiVirSchedulerService; "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" [X]
S2 AntiVirService; "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-15] (Avira Operations GmbH & Co. KG)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-08] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-08] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-08] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-08] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-08] (McAfee, Inc.)
R3 RTL8168; C:\Windows\system32\DRIVERS\rtlh64.sys [681688 2015-01-21] (Inventec                                            )
R3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-01-25] ()
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 AthBTPort; \SystemRoot\system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; \SystemRoot\system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; \SystemRoot\system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; \SystemRoot\System32\drivers\btath_bus.sys [X]
S3 BTATH_HCRP; \SystemRoot\System32\drivers\btath_hcrp.sys [X]
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; \SystemRoot\System32\drivers\btath_rcp.sys [X]
S3 BTATH_VDP; \SystemRoot\system32\drivers\btath_vdp.sys [X]
S3 SmbDrvI; \SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-14 21:24 - 2015-03-14 21:24 - 00852604 _____ () C:\Users\lilli\Downloads\SecurityCheck.exe
2015-03-14 12:22 - 2015-03-14 12:22 - 02347384 _____ (ESET) C:\Users\lilli\Downloads\esetsmartinstaller_deu.exe
2015-03-14 12:22 - 2015-03-14 12:22 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-03-13 12:31 - 2015-03-13 12:31 - 01388333 _____ (Thisisu) C:\Users\lilli\Downloads\JRT.exe
2015-03-13 12:16 - 2015-03-13 12:26 - 00000000 ____D () C:\AdwCleaner
2015-03-13 12:16 - 2015-03-13 12:16 - 02171392 _____ () C:\Users\lilli\Downloads\AdwCleaner_4.112.exe
2015-03-13 11:46 - 2015-03-13 11:46 - 00001284 _____ () C:\Users\lilli\Desktop\Revo Uninstaller.lnk
2015-03-13 11:45 - 2015-03-13 11:45 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\lilli\Downloads\revosetup95(1).exe
2015-03-12 14:19 - 2015-03-12 14:21 - 00036568 _____ () C:\Users\lilli\Downloads\Addition.txt
2015-03-12 14:18 - 2015-03-14 21:26 - 00017436 _____ () C:\Users\lilli\Downloads\FRST.txt
2015-03-12 14:17 - 2015-03-14 21:26 - 00000000 ____D () C:\FRST
2015-03-12 14:17 - 2015-03-12 14:17 - 02095616 _____ (Farbar) C:\Users\lilli\Downloads\FRST64.exe
2015-03-12 13:57 - 2015-03-06 03:53 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-12 13:57 - 2015-03-06 03:33 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-03-12 13:57 - 2015-02-26 00:26 - 04178944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-03-12 13:57 - 2015-02-20 04:03 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-03-12 13:57 - 2015-02-20 03:58 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-03-12 13:57 - 2015-02-20 03:20 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-03-12 13:57 - 2015-02-20 03:15 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-03-12 13:57 - 2015-02-07 00:09 - 00396419 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-03-12 13:57 - 2015-02-05 21:24 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-03-12 13:57 - 2015-02-03 00:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-03-12 13:57 - 2015-02-03 00:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-03-12 13:57 - 2015-01-31 00:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-03-12 13:57 - 2015-01-31 00:29 - 02484224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-03-12 13:57 - 2015-01-29 02:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-03-12 13:57 - 2015-01-29 02:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-03-12 13:57 - 2015-01-29 02:04 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-03-12 13:57 - 2015-01-29 02:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-03-12 13:57 - 2015-01-27 04:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-03-12 13:57 - 2015-01-24 02:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-03-12 13:57 - 2015-01-23 08:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-03-12 13:57 - 2015-01-23 06:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-12 13:57 - 2014-10-29 03:49 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-03-12 13:57 - 2014-10-29 03:44 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-03-12 13:57 - 2014-10-29 03:44 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-03-12 13:57 - 2014-10-29 03:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2015-03-12 13:57 - 2014-10-29 03:34 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-03-12 13:57 - 2014-10-29 03:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2015-03-12 13:57 - 2014-10-29 03:04 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-03-12 13:57 - 2014-10-29 03:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-03-12 13:57 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-03-12 13:57 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2015-03-12 13:57 - 2014-10-29 02:52 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2015-03-12 13:57 - 2014-10-29 02:51 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-03-12 13:57 - 2014-10-29 02:45 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2015-03-12 13:57 - 2014-10-29 02:28 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2015-03-12 13:57 - 2014-10-29 02:20 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-03-12 13:57 - 2014-10-29 02:15 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2015-03-12 13:57 - 2014-10-29 01:55 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2015-03-12 13:57 - 2014-10-29 01:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2015-03-12 13:57 - 2014-10-29 01:41 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2015-03-12 13:57 - 2014-10-29 01:35 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2015-03-12 13:56 - 2015-02-06 02:28 - 02257408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-03-12 13:56 - 2015-02-06 02:08 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-03-12 13:56 - 2015-02-03 01:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-03-12 13:56 - 2015-02-03 01:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-03-12 13:56 - 2015-01-31 00:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-03-12 13:56 - 2015-01-30 04:01 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-03-12 13:56 - 2015-01-30 04:00 - 00167424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-03-12 13:56 - 2015-01-30 03:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-03-12 13:56 - 2015-01-30 03:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-03-12 13:56 - 2015-01-30 03:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-03-12 13:56 - 2015-01-30 02:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-03-12 13:56 - 2015-01-30 02:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-03-12 13:56 - 2015-01-30 02:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-03-12 13:56 - 2015-01-30 02:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-03-12 13:56 - 2015-01-30 02:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-03-12 13:56 - 2015-01-30 02:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-03-12 13:56 - 2015-01-30 02:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-03-12 13:56 - 2015-01-30 02:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-03-12 13:56 - 2015-01-30 02:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-03-12 13:56 - 2015-01-30 02:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-03-12 13:56 - 2015-01-29 02:11 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-12 13:56 - 2015-01-29 02:00 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-12 13:56 - 2015-01-29 01:59 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-03-12 13:56 - 2015-01-29 01:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-03-12 13:56 - 2015-01-29 01:50 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-12 13:56 - 2015-01-29 01:49 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-03-12 13:56 - 2015-01-28 16:41 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-03-12 13:56 - 2015-01-28 16:41 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-03-12 13:56 - 2015-01-28 16:41 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-03-12 13:56 - 2015-01-28 03:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-03-12 13:56 - 2015-01-28 02:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-03-12 13:56 - 2015-01-27 05:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-03-12 13:56 - 2015-01-27 03:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-03-12 13:56 - 2014-10-29 04:56 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-03-12 13:56 - 2014-10-29 03:46 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2015-03-12 13:56 - 2014-10-29 03:46 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2015-03-12 13:56 - 2014-10-29 03:45 - 01198080 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-03-12 13:56 - 2014-10-29 03:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-03-12 13:56 - 2014-10-29 03:34 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2015-03-12 13:56 - 2014-10-29 03:34 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2015-03-12 13:56 - 2014-10-29 03:03 - 00241152 ____C (Microsoft Corporation) C:\WINDOWS\system32\fsquirt.exe
2015-03-12 13:56 - 2014-10-29 02:28 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2015-03-12 13:56 - 2014-10-29 02:19 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2015-03-12 13:56 - 2014-10-29 02:13 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-03-12 13:56 - 2014-10-29 01:59 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2015-03-12 13:56 - 2014-10-29 01:55 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-03-12 13:55 - 2015-02-21 02:16 - 25021440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-03-12 13:55 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-03-12 13:55 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-03-12 13:55 - 2015-02-21 01:27 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-03-12 13:55 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-03-12 13:55 - 2015-02-21 00:58 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-03-12 13:55 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-03-12 13:55 - 2015-02-20 03:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-03-12 13:55 - 2015-02-20 03:48 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-03-12 13:55 - 2015-02-20 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-03-12 13:55 - 2015-02-20 03:35 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-03-12 13:55 - 2015-02-20 03:34 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-03-12 13:55 - 2015-02-20 03:32 - 06035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-03-12 13:55 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-03-12 13:55 - 2015-02-20 03:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-03-12 13:55 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-03-12 13:55 - 2015-02-20 03:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-03-12 13:55 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-03-12 13:55 - 2015-02-20 02:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-03-12 13:55 - 2015-02-20 02:56 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-03-12 13:55 - 2015-02-20 02:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-03-12 13:55 - 2015-02-20 02:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-03-12 13:55 - 2015-02-20 02:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-03-12 13:55 - 2015-02-20 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-03-12 13:55 - 2015-02-20 02:43 - 14398976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-03-12 13:55 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-03-12 13:55 - 2015-02-20 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-03-12 13:55 - 2015-02-20 02:29 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-03-12 13:55 - 2015-02-20 02:28 - 02358784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-03-12 13:55 - 2015-02-20 02:26 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-03-12 13:55 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-03-12 13:55 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-03-12 13:55 - 2015-02-20 02:16 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-03-12 13:55 - 2015-02-20 02:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-03-12 13:55 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-03-12 13:55 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-03-12 13:55 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-03-12 13:55 - 2015-01-29 19:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-03-12 13:55 - 2015-01-29 19:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-03-12 13:54 - 2015-02-12 18:40 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-03-12 13:54 - 2015-02-12 18:34 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-03-12 13:54 - 2015-02-08 00:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-03-12 13:54 - 2015-02-08 00:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-03-12 13:54 - 2015-01-28 02:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-03-12 13:54 - 2015-01-28 02:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-03-12 13:54 - 2015-01-28 00:47 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-03-12 13:54 - 2015-01-28 00:41 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-03-12 13:54 - 2015-01-21 06:54 - 01384712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-12 13:54 - 2015-01-21 06:15 - 01123848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-12 13:54 - 2014-12-11 06:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-03-07 23:17 - 2015-03-10 16:18 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1008
2015-03-07 22:52 - 2015-03-07 22:51 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-07 22:48 - 2015-03-07 22:48 - 00561064 _____ (Oracle Corporation) C:\Users\lilli\Downloads\jxpiinstall.exe
2015-03-06 21:35 - 2015-03-06 21:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-02-26 18:50 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-14 21:24 - 2014-07-22 13:33 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-14 21:21 - 2014-07-14 19:47 - 00003914 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E224C277-5ECC-4FD1-8C88-6A01FE5D7476}
2015-03-14 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-14 20:31 - 2013-07-17 11:41 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-03-14 20:01 - 2014-07-07 00:18 - 01219828 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-14 17:00 - 2013-06-25 22:25 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1001
2015-03-14 16:53 - 2014-03-18 11:03 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-14 16:53 - 2014-03-18 10:25 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2015-03-14 16:53 - 2014-03-18 10:25 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2015-03-14 16:52 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-03-14 16:51 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-03-14 16:49 - 2014-07-06 23:57 - 00000000 ____D () C:\Users\lilli
2015-03-14 16:49 - 2013-08-22 15:46 - 00296089 _____ () C:\WINDOWS\setupact.log
2015-03-14 16:49 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-14 16:48 - 2014-03-18 02:50 - 00222716 _____ () C:\WINDOWS\PFRO.log
2015-03-14 12:37 - 2014-02-07 11:40 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-03-14 12:21 - 2015-01-01 21:22 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-13 12:54 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-03-13 12:27 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-13 11:51 - 2014-12-10 01:53 - 00000000 ____D () C:\Users\lilli\AppData\Local\Adobe
2015-03-13 11:46 - 2015-01-07 15:28 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-03-12 16:30 - 2013-08-22 15:44 - 00501432 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-03-12 14:47 - 2013-08-14 01:16 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-12 14:43 - 2013-06-27 02:23 - 122905848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-10 18:17 - 2013-01-18 01:37 - 00000000 ____D () C:\Documentation
2015-03-10 16:18 - 2014-12-23 00:29 - 00000000 ___RD () C:\Users\lilli\OneDrive
2015-03-07 23:07 - 2013-07-03 00:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-07 22:52 - 2014-12-22 15:53 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-04 22:24 - 2014-09-15 16:07 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-03-04 22:24 - 2014-09-15 16:07 - 00178144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-03 14:17 - 2013-06-29 00:25 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2014-07-14 18:05 - 2014-07-14 20:56 - 0000051 _____ () C:\Users\lilli\AppData\Roaming\mbam.context.scan
2013-12-21 14:38 - 2014-01-27 12:38 - 0000137 _____ () C:\Users\lilli\AppData\Roaming\WB.CFG
2014-02-28 12:06 - 2014-02-28 12:06 - 0007665 _____ () C:\Users\lilli\AppData\Local\Resmon.ResmonCfg
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.1280.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0013106 _____ () C:\ProgramData\1393587182.1576.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0002276 _____ () C:\ProgramData\1393587182.1808.bin
2014-02-28 12:34 - 2014-02-28 12:37 - 0151058 _____ () C:\ProgramData\1393587182.1872.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.2772.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0094918 _____ () C:\ProgramData\1393587182.2864.bin
2014-02-28 12:35 - 2014-02-28 12:35 - 0001700 _____ () C:\ProgramData\1393587182.3364.bin
2014-02-28 12:33 - 2014-02-28 12:35 - 0019280 _____ () C:\ProgramData\1393587182.3656.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0045445 _____ () C:\ProgramData\1393587182.3876.bin
2014-02-28 12:34 - 2014-02-28 12:35 - 2010567 _____ () C:\ProgramData\1393587182.4256.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0007517 _____ () C:\ProgramData\1393587182.4304.bin

Some content of TEMP:
====================
C:\Users\lilli\AppData\Local\Temp\amazonicon_v6.exe
C:\Users\lilli\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\lilli\AppData\Local\Temp\APNSetup.exe
C:\Users\lilli\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\lilli\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\lilli\AppData\Local\Temp\mbam-setup-2.0.2.1012.exe
C:\Users\lilli\AppData\Local\Temp\Quarantine.exe
C:\Users\lilli\AppData\Local\Temp\sdanircmdc.exe
C:\Users\lilli\AppData\Local\Temp\sdapskill.exe
C:\Users\lilli\AppData\Local\Temp\sdaspwn.exe
C:\Users\lilli\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\lilli\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\lilli\AppData\Local\Temp\sqlite3.dll
C:\Users\lilli\AppData\Local\Temp\WEB.DE_MailCheck_FF_Setup_2.10.1.1735.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-14 17:00

==================== End Of Log ============================
--- --- ---

--- --- ---

schrauber 15.03.2015 08:09
Java updaten.

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
RemoveProxy:
Emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.




Frisches FRST log bitte. Noch Probleme?

spinweb 15.03.2015 18:27
Code:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by lilli at 2015-03-15 18:17:42 Run:1
Running from C:\Users\lilli\Downloads
Loaded Profiles: lilli (Available profiles: lilli)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
RemoveProxy:
Emptytemp:
*****************


========= RemoveProxy: =========

HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.


========= End of RemoveProxy: =========

EmptyTemp: => Removed 1.2 GB temporary data.


The system needed a reboot.

==== End of Fixlog 18:18:09 ====

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by lilli (administrator) on VAIO on 15-03-2015 18:23:37
Running from C:\Users\lilli\Downloads
Loaded Profiles: lilli (Available profiles: lilli)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-10-10] (Realtek Semiconductor)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-10] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\RunOnce: [Adobe Speed Launcher] => 1426440027
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Policies\Explorer: [DisallowRun] 1
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {4C434161-3A93-4930-9D0E-038FD29EDC43} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=securitascout
SearchScopes: HKU\S-1-5-21-3292672608-3251690303-1879834815-1001 -> {B281959D-0D50-47CB-BD6F-46DCEA47C4B9} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\Sony\MSS\3.8.141\McAfeeMSS_IE.dll [2014-01-16] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-07] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-07] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default
FF DefaultSearchEngine: DuckDuckGo
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\Sony\MSS\3.8.141\npMcAfeeMss.dll [2014-01-16] (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-02-07] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll No File
FF Plugin HKU\S-1-5-21-3292672608-3251690303-1879834815-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-04-13] ()
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\englische-ergebnisse.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\gmx-suche.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\lastminute.xml [2014-07-20]
FF SearchPlugin: C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\searchplugins\webde-suche.xml [2014-07-20]
FF Extension: Cliqz Beta - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\cliqz@cliqz.com.xpi [2014-12-23]
FF Extension: Dict.cc Translation - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\searchdictcc@roughael.xpi [2014-02-06]
FF Extension: Tab Updater - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{55dcbefc-9aee-466f-9c9c-15e792724dd4}.xpi [2014-08-10]
FF Extension: NoScript - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-01-16]
FF Extension: {9d2201b0-125f-4d8f-ab37-93446f702158} - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{9d2201b0-125f-4d8f-ab37-93446f702158}.xpi [2014-07-24]
FF Extension: Adblock Plus - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-03]
FF Extension: UITBAutoInstaller - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\{edd7fc99-d65c-4979-85c2-ddeed30c50c7} [2015-03-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKU\S-1-5-21-3292672608-3251690303-1879834815-1001\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\lilli\AppData\Roaming\Mozilla\Firefox\Profiles\fo1xyvwa.default\extensions\cliqz@cliqz.com

Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSearchKeyword: Default -> 42F6E8BE048717FD250B42F9EEA3283CD3B5149BF262C375DA8B14B231469467
CHR DefaultSearchURL: Default -> 66E7675B4F3335AA3CF5CC5A5824ECA1524996BB369F834684DC2B4574DEE592
CHR Profile: C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-17]
CHR Extension: (Google Drive) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-17]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-07]
CHR Extension: (YouTube) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-17]
CHR Extension: (Google Search) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-17]
CHR Extension: (Google Wallet) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\lilli\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 McComponentHostServiceSony; C:\Program Files\Sony\MSS\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-08] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-08] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation) [File not signed]
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 AntiVirSchedulerService; "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" [X]
S2 AntiVirService; "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-15] (Avira Operations GmbH & Co. KG)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-08] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-08] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-08] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-08] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-08] (McAfee, Inc.)
R3 RTL8168; C:\Windows\system32\DRIVERS\rtlh64.sys [681688 2015-01-21] (Inventec                                            )
R3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2015-01-25] ()
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 AthBTPort; \SystemRoot\system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; \SystemRoot\system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; \SystemRoot\system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; \SystemRoot\System32\drivers\btath_bus.sys [X]
S3 BTATH_HCRP; \SystemRoot\System32\drivers\btath_hcrp.sys [X]
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; \SystemRoot\System32\drivers\btath_rcp.sys [X]
S3 BTATH_VDP; \SystemRoot\system32\drivers\btath_vdp.sys [X]
S3 SmbDrvI; \SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-14 21:24 - 2015-03-14 21:24 - 00852604 _____ () C:\Users\lilli\Downloads\SecurityCheck.exe
2015-03-14 12:22 - 2015-03-14 12:22 - 02347384 _____ (ESET) C:\Users\lilli\Downloads\esetsmartinstaller_deu.exe
2015-03-13 12:31 - 2015-03-13 12:31 - 01388333 _____ (Thisisu) C:\Users\lilli\Downloads\JRT.exe
2015-03-13 12:16 - 2015-03-13 12:26 - 00000000 ____D () C:\AdwCleaner
2015-03-13 12:16 - 2015-03-13 12:16 - 02171392 _____ () C:\Users\lilli\Downloads\AdwCleaner_4.112.exe
2015-03-13 11:46 - 2015-03-13 11:46 - 00001284 _____ () C:\Users\lilli\Desktop\Revo Uninstaller.lnk
2015-03-13 11:45 - 2015-03-13 11:45 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\lilli\Downloads\revosetup95(1).exe
2015-03-12 14:19 - 2015-03-12 14:21 - 00036568 _____ () C:\Users\lilli\Downloads\Addition.txt
2015-03-12 14:18 - 2015-03-15 18:23 - 00017099 _____ () C:\Users\lilli\Downloads\FRST.txt
2015-03-12 14:17 - 2015-03-15 18:23 - 00000000 ____D () C:\FRST
2015-03-12 14:17 - 2015-03-12 14:17 - 02095616 _____ (Farbar) C:\Users\lilli\Downloads\FRST64.exe
2015-03-12 13:57 - 2015-03-06 03:53 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-12 13:57 - 2015-03-06 03:33 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-03-12 13:57 - 2015-02-26 00:26 - 04178944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-03-12 13:57 - 2015-02-20 04:03 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-03-12 13:57 - 2015-02-20 03:58 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-03-12 13:57 - 2015-02-20 03:20 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-03-12 13:57 - 2015-02-20 03:15 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-03-12 13:57 - 2015-02-07 00:09 - 00396419 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-03-12 13:57 - 2015-02-05 21:24 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-03-12 13:57 - 2015-02-04 00:58 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-03-12 13:57 - 2015-02-03 00:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-03-12 13:57 - 2015-02-03 00:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-03-12 13:57 - 2015-01-31 00:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-03-12 13:57 - 2015-01-31 00:29 - 02484224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-03-12 13:57 - 2015-01-29 02:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-03-12 13:57 - 2015-01-29 02:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-03-12 13:57 - 2015-01-29 02:04 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-03-12 13:57 - 2015-01-29 02:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-03-12 13:57 - 2015-01-27 04:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-03-12 13:57 - 2015-01-24 02:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-03-12 13:57 - 2015-01-23 08:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-03-12 13:57 - 2015-01-23 06:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-12 13:57 - 2014-10-29 03:49 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-03-12 13:57 - 2014-10-29 03:44 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-03-12 13:57 - 2014-10-29 03:44 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-03-12 13:57 - 2014-10-29 03:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2015-03-12 13:57 - 2014-10-29 03:34 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-03-12 13:57 - 2014-10-29 03:04 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2015-03-12 13:57 - 2014-10-29 03:04 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-03-12 13:57 - 2014-10-29 03:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2015-03-12 13:57 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2015-03-12 13:57 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2015-03-12 13:57 - 2014-10-29 02:52 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2015-03-12 13:57 - 2014-10-29 02:51 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-03-12 13:57 - 2014-10-29 02:45 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2015-03-12 13:57 - 2014-10-29 02:28 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2015-03-12 13:57 - 2014-10-29 02:20 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-03-12 13:57 - 2014-10-29 02:15 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2015-03-12 13:57 - 2014-10-29 01:55 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2015-03-12 13:57 - 2014-10-29 01:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2015-03-12 13:57 - 2014-10-29 01:41 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2015-03-12 13:57 - 2014-10-29 01:35 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2015-03-12 13:56 - 2015-02-06 02:28 - 02257408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-03-12 13:56 - 2015-02-06 02:08 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-03-12 13:56 - 2015-02-03 01:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-03-12 13:56 - 2015-02-03 01:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-03-12 13:56 - 2015-01-31 00:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-03-12 13:56 - 2015-01-30 04:01 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-03-12 13:56 - 2015-01-30 04:00 - 00167424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-03-12 13:56 - 2015-01-30 03:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-03-12 13:56 - 2015-01-30 03:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-03-12 13:56 - 2015-01-30 03:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-03-12 13:56 - 2015-01-30 02:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-03-12 13:56 - 2015-01-30 02:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-03-12 13:56 - 2015-01-30 02:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-03-12 13:56 - 2015-01-30 02:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-03-12 13:56 - 2015-01-30 02:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-03-12 13:56 - 2015-01-30 02:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-03-12 13:56 - 2015-01-30 02:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-03-12 13:56 - 2015-01-30 02:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-03-12 13:56 - 2015-01-30 02:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-03-12 13:56 - 2015-01-30 02:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-03-12 13:56 - 2015-01-29 02:11 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-12 13:56 - 2015-01-29 02:00 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-12 13:56 - 2015-01-29 01:59 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-03-12 13:56 - 2015-01-29 01:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-03-12 13:56 - 2015-01-29 01:50 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-12 13:56 - 2015-01-29 01:49 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-03-12 13:56 - 2015-01-28 16:41 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-03-12 13:56 - 2015-01-28 16:41 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-03-12 13:56 - 2015-01-28 16:41 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-03-12 13:56 - 2015-01-28 03:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-03-12 13:56 - 2015-01-28 02:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-03-12 13:56 - 2015-01-27 05:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-03-12 13:56 - 2015-01-27 03:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-03-12 13:56 - 2014-10-29 04:56 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-03-12 13:56 - 2014-10-29 03:46 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2015-03-12 13:56 - 2014-10-29 03:46 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2015-03-12 13:56 - 2014-10-29 03:45 - 01198080 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-03-12 13:56 - 2014-10-29 03:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-03-12 13:56 - 2014-10-29 03:34 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2015-03-12 13:56 - 2014-10-29 03:34 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2015-03-12 13:56 - 2014-10-29 03:03 - 00241152 ____C (Microsoft Corporation) C:\WINDOWS\system32\fsquirt.exe
2015-03-12 13:56 - 2014-10-29 02:28 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2015-03-12 13:56 - 2014-10-29 02:19 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2015-03-12 13:56 - 2014-10-29 02:13 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-03-12 13:56 - 2014-10-29 01:59 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2015-03-12 13:56 - 2014-10-29 01:55 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-03-12 13:55 - 2015-02-21 02:16 - 25021440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-03-12 13:55 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-03-12 13:55 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-03-12 13:55 - 2015-02-21 01:27 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-03-12 13:55 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-03-12 13:55 - 2015-02-21 00:58 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-03-12 13:55 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-03-12 13:55 - 2015-02-20 03:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-03-12 13:55 - 2015-02-20 03:48 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-03-12 13:55 - 2015-02-20 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-03-12 13:55 - 2015-02-20 03:35 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-03-12 13:55 - 2015-02-20 03:34 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-03-12 13:55 - 2015-02-20 03:32 - 06035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-03-12 13:55 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-03-12 13:55 - 2015-02-20 03:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-03-12 13:55 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-03-12 13:55 - 2015-02-20 03:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-03-12 13:55 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-03-12 13:55 - 2015-02-20 02:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-03-12 13:55 - 2015-02-20 02:56 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-03-12 13:55 - 2015-02-20 02:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-03-12 13:55 - 2015-02-20 02:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-03-12 13:55 - 2015-02-20 02:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-03-12 13:55 - 2015-02-20 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-03-12 13:55 - 2015-02-20 02:43 - 14398976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-03-12 13:55 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-03-12 13:55 - 2015-02-20 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-03-12 13:55 - 2015-02-20 02:29 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-03-12 13:55 - 2015-02-20 02:28 - 02358784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-03-12 13:55 - 2015-02-20 02:26 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-03-12 13:55 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-03-12 13:55 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-03-12 13:55 - 2015-02-20 02:16 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-03-12 13:55 - 2015-02-20 02:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-03-12 13:55 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-03-12 13:55 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-03-12 13:55 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-03-12 13:55 - 2015-01-29 19:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-03-12 13:55 - 2015-01-29 19:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-03-12 13:54 - 2015-02-12 18:40 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-03-12 13:54 - 2015-02-12 18:34 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-03-12 13:54 - 2015-02-08 00:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-03-12 13:54 - 2015-02-08 00:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-03-12 13:54 - 2015-01-28 02:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-03-12 13:54 - 2015-01-28 02:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-03-12 13:54 - 2015-01-28 00:47 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-03-12 13:54 - 2015-01-28 00:41 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-03-12 13:54 - 2015-01-21 06:54 - 01384712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-12 13:54 - 2015-01-21 06:15 - 01123848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-12 13:54 - 2014-12-11 06:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-03-07 23:17 - 2015-03-10 16:18 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1008
2015-03-07 22:52 - 2015-03-07 22:51 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-03-07 22:51 - 2015-03-07 22:51 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-07 22:48 - 2015-03-07 22:48 - 00561064 _____ (Oracle Corporation) C:\Users\lilli\Downloads\jxpiinstall.exe
2015-03-06 21:35 - 2015-03-06 21:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-02-26 18:50 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-02-26 18:50 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-26 18:50 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-15 18:24 - 2014-07-22 13:33 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-15 18:20 - 2014-07-07 00:18 - 01311627 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-15 18:19 - 2014-03-18 02:50 - 00223386 _____ () C:\WINDOWS\PFRO.log
2015-03-15 18:19 - 2013-08-22 15:46 - 00296243 _____ () C:\WINDOWS\setupact.log
2015-03-15 18:19 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-15 18:18 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-15 18:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-15 17:50 - 2014-07-14 19:47 - 00003914 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E224C277-5ECC-4FD1-8C88-6A01FE5D7476}
2015-03-14 21:29 - 2014-07-06 23:57 - 00000000 ____D () C:\Users\lilli
2015-03-14 20:31 - 2013-07-17 11:41 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-03-14 17:00 - 2013-06-25 22:25 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3292672608-3251690303-1879834815-1001
2015-03-14 16:53 - 2014-03-18 11:03 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-14 16:53 - 2014-03-18 10:25 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2015-03-14 16:53 - 2014-03-18 10:25 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2015-03-14 16:52 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-03-14 16:52 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-03-14 12:37 - 2014-02-07 11:40 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-03-14 12:21 - 2015-01-01 21:22 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-13 12:54 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-03-13 11:51 - 2014-12-10 01:53 - 00000000 ____D () C:\Users\lilli\AppData\Local\Adobe
2015-03-13 11:46 - 2015-01-07 15:28 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-03-12 16:30 - 2013-08-22 15:44 - 00501432 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-12 15:03 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-03-12 14:47 - 2013-08-14 01:16 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-12 14:43 - 2013-06-27 02:23 - 122905848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-10 18:17 - 2013-01-18 01:37 - 00000000 ____D () C:\Documentation
2015-03-10 16:18 - 2014-12-23 00:29 - 00000000 ___RD () C:\Users\lilli\OneDrive
2015-03-07 23:07 - 2013-07-03 00:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-07 22:52 - 2014-12-22 15:53 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-04 22:24 - 2014-09-15 16:07 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-03-04 22:24 - 2014-09-15 16:07 - 00178144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-03 14:17 - 2013-06-29 00:25 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2014-07-14 18:05 - 2014-07-14 20:56 - 0000051 _____ () C:\Users\lilli\AppData\Roaming\mbam.context.scan
2013-12-21 14:38 - 2014-01-27 12:38 - 0000137 _____ () C:\Users\lilli\AppData\Roaming\WB.CFG
2014-02-28 12:06 - 2014-02-28 12:06 - 0007665 _____ () C:\Users\lilli\AppData\Local\Resmon.ResmonCfg
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.1280.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0013106 _____ () C:\ProgramData\1393587182.1576.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0002276 _____ () C:\ProgramData\1393587182.1808.bin
2014-02-28 12:34 - 2014-02-28 12:37 - 0151058 _____ () C:\ProgramData\1393587182.1872.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0001090 _____ () C:\ProgramData\1393587182.2772.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0094918 _____ () C:\ProgramData\1393587182.2864.bin
2014-02-28 12:35 - 2014-02-28 12:35 - 0001700 _____ () C:\ProgramData\1393587182.3364.bin
2014-02-28 12:33 - 2014-02-28 12:35 - 0019280 _____ () C:\ProgramData\1393587182.3656.bin
2014-02-28 12:33 - 2014-02-28 12:37 - 0045445 _____ () C:\ProgramData\1393587182.3876.bin
2014-02-28 12:34 - 2014-02-28 12:35 - 2010567 _____ () C:\ProgramData\1393587182.4256.bin
2014-02-28 12:34 - 2014-02-28 12:34 - 0007517 _____ () C:\ProgramData\1393587182.4304.bin

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-14 17:00

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

--- --- ---

Die buttons der Lesezeichen-leiste haben sich in weiße Quadrate mit strichen verändert.

schrauber 16.03.2015 08:49
In welchem Browser?

spinweb 16.03.2015 12:48
Mozilla Firefox

schrauber 16.03.2015 18:34
Setz den Firefox mal komplett zurück:


https://support.mozilla.org/de/kb/fi...einfach-loesen

spinweb 17.03.2015 14:00
habe firefox jetzt restauriert. die schaltflächen haben sich nicht geändert.

schrauber 17.03.2015 18:45
echt? Strange. Schon mal neu installiert?

spinweb 17.03.2015 19:39
ist jetzt alles in ordnung. Wenn man die buttons anklickt werden sie wieder farbig. hab jetzt den dreh raus :)

sind die Viren jetzt weg?


Alle Zeitangaben in WEZ +1. Es ist jetzt 21:28 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58