Schoko26 | 07.07.2018 20:00 | hey so Punkt 1 Spyhunter ist jetzt deinstaliert
punkt 2 auch gemacht
punkt 3 auch gemacht hat 10 bedrohungen gefunden Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-07-04.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-07-2018
# Duration: 00:00:23
# OS: Windows 7 Home Premium
# Scanned: 41133
# Detected: 10
***** [ Services ] *****
PUP.Optional.PCProtect SecurityService
***** [ Folders ] *****
PUP.Optional.Legacy C:\Program Files (x86)\TotalAV
PUP.Optional.Legacy C:\Users\Kevin\Documents\TotalAV
***** [ Files ] *****
PUP.Optional.FAssistant C:\Windows\System32\drivers\prisafe.sys
PUP.Optional.Legacy C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalAV.lnk
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
Adware.ICLoader HKLM\Software\MICROSOFT\TechnologyDesktopnew
Adware.ICLoader HKLM\SOFTWARE\MICROSOFT\Speedycar
PUP.Adware.Heuristic HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\bku5967188276206940
PUP.Optional.PCProtect HKLM\System\CurrentControlSet\Services\EventLog\Application\SecurityService
***** [ Chromium (and derivatives) ] *****
PUP.Optional.SearchManager Search Manager
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ########## jetzt hat er sich noch mal neu gestartet also hab auf reinigen und reperieren geklickt Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-07-04.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-07-2018
# Duration: 00:00:04
# OS: Windows 7 Home Premium
# Cleaned: 10
# Failed: 0
***** [ Services ] *****
Deleted SecurityService
***** [ Folders ] *****
Deleted C:\Program Files (x86)\TotalAV
Deleted C:\Users\Kevin\Documents\TotalAV
***** [ Files ] *****
Deleted C:\Windows\System32\drivers\prisafe.sys
Deleted C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalAV.lnk
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\MICROSOFT\TechnologyDesktopnew
Deleted HKLM\SOFTWARE\MICROSOFT\Speedycar
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\bku5967188276206940
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\SecurityService
***** [ Chromium (and derivatives) ] *****
Deleted Search Manager
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete IFEO
[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Windows Firewall
[+] Reset IPSec
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset Winsock
*************************
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ########## Punkt 4 Code:
Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 07.07.18
Scan-Zeit: 20:26
Protokolldatei: 4d27e288-8213-11e8-95dd-10bf4888688b.json
Administrator: Ja
-Softwaredaten-
Version: 3.5.1.2522
Komponentenversion: 1.0.374
Version des Aktualisierungspakets: 1.0.5797
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Kevin-PC\Kevin
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 249012
Erkannte Bedrohungen: 303
In die Quarantäne verschobene Bedrohungen: 303
Abgelaufene Zeit: 7 Min., 17 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 17
Adware.ExtenBro, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\WOW6432NODE\betterworld, In Quarantäne, [1994], [526091],1.0.5797
PUP.Optional.SearchManager, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\PILPLLOABDEDFMIALNFCHJOMJMPJCOEJ, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\PILPLLOABDEDFMIALNFCHJOMJMPJCOEJ, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\pilplloabdedfmialnfchjomjmpjcoej, In Quarantäne, [242], [183362],1.0.5797
Adware.Tuto4PC, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\MICROSOFT\EWMON, In Quarantäne, [2758], [411543],1.0.5797
PUP.Optional.WinYahoo, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{518b33ae-375d-712d-6742-d1fe0400268d}, In Quarantäne, [245], [413444],1.0.5797
Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9ADA3568-BB0E-4F11-BA5A-8DA2F9000F5D}, In Quarantäne, [527], [485543],1.0.5797
Trojan.CoreBot, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\btlr, In Quarantäne, [4514], [515824],1.0.5797
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\campaign9961, In Quarantäne, [411], [518478],1.0.5797
Adware.ICLoader, HKLM\SOFTWARE\MICROSOFT\multitimercampaign84170, In Quarantäne, [411], [518476],1.0.5797
Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{9ADA3568-BB0E-4F11-BA5A-8DA2F9000F5D}, In Quarantäne, [527], [485544],1.0.5797
Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Start Windows Idle Driver, In Quarantäne, [527], [485544],1.0.5797
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder0, In Quarantäne, [299], [186209],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME, In Quarantäne, [2492], [-1],0.0.0
PUP.Optional.CampaignNotifier.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME, In Quarantäne, [2492], [-1],0.0.0
PUP.Optional.CampaignNotifier.ChrPRST, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\POLICIES\GOOGLE\CHROME, In Quarantäne, [2492], [-1],0.0.0
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, In Quarantäne, [448], [-1],0.0.0
Registrierungswert: 9
Adware.Tuto4PC, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\MICROSOFT\EWMON|PARTNER, In Quarantäne, [2758], [411543],1.0.5797
PUP.Optional.WinYahoo, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{518b33ae-375d-712d-6742-d1fe0400268d}|URL, In Quarantäne, [245], [413444],1.0.5797
Trojan.BitCoinMiner, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9ADA3568-BB0E-4F11-BA5A-8DA2F9000F5D}|PATH, In Quarantäne, [527], [485543],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\POLICIES\GOOGLE\CHROME\ExtensionInstallForcelist|1, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, In Quarantäne, [691], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, In Quarantäne, [691], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, In Quarantäne, [448], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, In Quarantäne, [448], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, In Quarantäne, [448], [-1],0.0.0
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 35
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE, In Quarantäne, [4562], [443706],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\icons, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\tiles, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\pt_BR, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\fonts, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\en, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\fr, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\hi, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\vi, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\skin\icons, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_metadata, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\vendor, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\skin, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Extensions\PILPLLOABDEDFMIALNFCHJOMJMPJCOEJ, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\_metadata, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Local Extension Settings\bgoclljmbknlgpbpcnbggokjpdgmcfga, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\EXTENSIONS\bgoclljmbknlgpbpcnbggokjpdgmcfga, In Quarantäne, [2492], [528295],1.0.5797
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\YDE0CJ2G37, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\J59DBS8ZJA, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\NBKFKP4T96, In Quarantäne, [3720], [537397],1.0.5797
Adware.Linkury.TskLnk, C:\PROGRAM FILES (X86)\COMMON FILES\FREE-TEX, In Quarantäne, [14215], [444931],1.0.5797
Datei: 242
PUP.Optional.Smeazymo, C:\USERS\KEVIN\APPDATA\LOCAL\Saodom.bin, In Quarantäne, [2877], [183844],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\Supereco.tst, In Quarantäne, [3753], [404871],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\Tampbam.tst, In Quarantäne, [3753], [404871],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\AGENT.DAT, In Quarantäne, [3753], [404872],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\UNINSTALL_TEMP.ICO, In Quarantäne, [3753], [404862],1.0.5797
PUP.Optional.MirageISO, C:\USERS\PUBLIC\DOCUMENTS\XMUPDATE\CONF.DB, In Quarantäne, [4562], [443706],1.0.5797
Adware.Linkury.Generic, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\SHAM.DB, In Quarantäne, [3753], [516189],1.0.5797
Spyware.Arkei.E, C:\PROGRAMDATA\Nocturnalec47f994-ef17-4a70-81c7-22e568f21fab\9330026682.exe, In Quarantäne, [3805], [524722],1.0.5797
Adware.Neoreklami, C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\BROWSER\FEATURES\{A5FD4672-4D73-4F90-A1C0-2ABD39DB2565}.XPI, In Quarantäne, [1340], [482896],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\fonts\HelveticaNeue-Thin.otf, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\fonts\HelveticaNeueLT-Roman.woff, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\fonts\neue-bold.woff, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\fonts\neue.woff, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\close-FF8A5A.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\collection-9B9B9B.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\collection-FF691E.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\doc-icon-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\error-FF691E.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\pdf-2-doc-9B9B9B.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\pdf-2-doc-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\pdf-icon-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\success-FF8A5A.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\tab-arrow-FF691E.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\converter\upload-FF691E.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\amazon-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\amazon.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\close.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\enlarge-000000-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\enlarge-FFCA00-000000.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\hulu-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\hulu.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\minimize-000000-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\netflix-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\netflix.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\refresh-FFFFFF-000000.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\shrink-FFCA00-000000.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\shuffle-000000.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\shuffle-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\vudu-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films\vudu.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\icons\128.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\icons\16.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\icons\48.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\icons\close.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\icons\favicon.ico, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\icons\trends.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\bing-maps-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\from-to-icon-8881FF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\google-maps-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\location-icon-8881FF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\search-4A4A4A.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\search-8881FF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\switch-8881FF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\tab-arrow-8881FF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\whereto-logo-8881FF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\maps\whereto-logo-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\facebook_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\aliexpress.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\aliexpress_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\amazon.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\amazon_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\booking.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\booking_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\ebay.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\ebay_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\expedia.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\expedia_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\facebook.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\gmail.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\gmail_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\google-translate-icon-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\gtranslte.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\pinterest.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\pinterest_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\twitter.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\twitter_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\wix.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\wix_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\yahoo.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\yahoo_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\youtube.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sitesThumbnails\youtube_tile_v2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\tiles\DOC-to-PDF.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\tiles\PDF-to-DOC.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\tiles\Translation.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\tiles\View-PDF.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\01d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\01n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\02d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\02n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\03d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\03n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\04d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\04n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\09d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\09n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\10d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\10n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\11d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\11n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\13d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\13n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\50d.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\weather\50n.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\down.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\alot.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\angle-arrow-down.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\bing.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\bing_large.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\bluesky-bg.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\brush.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\bt.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\clock.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\cloud.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\cupcake-bg.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\desk-bg.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\doodle.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\enhanced_google.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\eyeglass.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\eyeglass_transparent.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\films-bg.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\gmx_large.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\google.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\google_large.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\hero-bg.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\just-the-box-empty.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\just-the-box.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\mountain-bg.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\pointer2.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\radio-selected.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\radio-unselected.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\sea-bg.jpg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\search-D7D7D7.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\search-FFFFFF.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\settings.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\smallMagnifier.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\star-unselected.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\star.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\todoc.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\toggle-off.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\toggle-on.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\topdf.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\transparent_img.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\yahoo.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\yahoo.svg, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\yahoo_large.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\yandex.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\_enhanced_google.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\images\_gmx_large.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\content\bundle.v0.0.1.min.css, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\skin\icons\16.png, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\vendor\md5.min.js, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\vendor\react-dom.min.js, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\vendor\react-with-addons.min.js, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\en\messages.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\fr\messages.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\hi\messages.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\pt_BR\messages.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_locales\vi\messages.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\_metadata\verified_contents.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\2bfc185be71f44cd73ac81511fc1f5a5.woff, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\b495e340f4ef8924fea0284c1bf9e7ac.woff, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\background.html, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\background.v0.0.1.min.js, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\c5a5cbf4dbcaa7064f2bc77f52101aec.otf, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\client.v0.0.1.min.js, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\common.js.v0.0.1.min.js, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\e5d3501d500d07b0a1e952b0f8a81d78.woff, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\e_.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\index.html, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\manifest.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\popupTab2.html, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\popupTab2.js, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej\10.1.3.54_0\responseConfig.json, In Quarantäne, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Ersetzt, [242], [183362],1.0.5797
PUP.Optional.SearchManager, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Ersetzt, [242], [183362],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\SHAM.DB, In Quarantäne, [3753], [516191],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\NOAH.DAT, In Quarantäne, [3753], [404865],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\MD.XML, In Quarantäne, [3753], [404866],1.0.5797
PUP.Optional.SystemTable.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\SYSTEMTABLE\1.2_0\manifest.json, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon128.png, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon16.png, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon24.png, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\icon\icon32.png, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.SystemTable.Generic, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\SystemTable\1.2_0\js\background.js, In Quarantäne, [4633], [509531],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\_metadata\computed_hashes.json, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\_metadata\verified_contents.json, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\128.png, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\16.png, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\48.png, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\background.js, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\bg-image.PNG, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\client.js, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\manifest.json, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\n_img.png, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\popup.html, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\popup.js, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\style.css, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgoclljmbknlgpbpcnbggokjpdgmcfga\1.2.5_0\uoV2.js, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgoclljmbknlgpbpcnbggokjpdgmcfga\000003.log, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgoclljmbknlgpbpcnbggokjpdgmcfga\CURRENT, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgoclljmbknlgpbpcnbggokjpdgmcfga\LOCK, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgoclljmbknlgpbpcnbggokjpdgmcfga\LOG, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgoclljmbknlgpbpcnbggokjpdgmcfga\LOG.old, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgoclljmbknlgpbpcnbggokjpdgmcfga\MANIFEST-000001, In Quarantäne, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Ersetzt, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\USERS\KEVIN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Ersetzt, [2492], [528295],1.0.5797
PUP.Optional.CampaignNotifier.ChrPRST, C:\DOCUMENTS AND SETTINGS\ALL USERS\NTUSER.POL, In Quarantäne, [2492], [-1],0.0.0
PUP.Optional.CampaignNotifier.ChrPRST, C:\PROGRAMDATA\NTUSER.POL, In Quarantäne, [2492], [-1],0.0.0
PUP.Optional.CampaignNotifier.ChrPRST, C:\USERS\KEVIN\NTUSER.POL, In Quarantäne, [2492], [-1],0.0.0
PUP.Optional.CampaignNotifier.ChrPRST, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, In Quarantäne, [2492], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, C:\USERS\KEVIN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\O8GR71DS.DEFAULT\PREFS.JS, Ersetzt, [691], [302805],1.0.5797
Hijack.Host, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, Ersetzt, [14457], [476110],1.0.5797
Hijack.Host, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, Ersetzt, [14457], [476110],1.0.5797
Hijack.Host, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, Ersetzt, [14457], [476110],1.0.5797
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\YDE0CJ2G37\CAST.CONFIG, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\YDE0CJ2G37\uninstaller.exe, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\YDE0CJ2G37\uninstaller.exe.config, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\YDE0CJ2G37\YDE0CJ2G3.exe.config, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\J59DBS8ZJA\CAST.CONFIG, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\J59DBS8ZJA\J59DBS8ZJ.exe.config, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\J59DBS8ZJA\uninstaller.exe, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\J59DBS8ZJA\uninstaller.exe.config, In Quarantäne, [3720], [537397],1.0.5797
Adware.Linkury.Generic, C:\USERS\KEVIN\APPDATA\LOCAL\CONFIG.XML, In Quarantäne, [3755], [404859],1.0.5797
Adware.Tuto4PC.Generic, C:\PROGRAM FILES\NBKFKP4T96\CAST.CONFIG, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\NBKFKP4T96\NBKFKP4T9.exe.config, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\NBKFKP4T96\uninstaller.exe, In Quarantäne, [3720], [537397],1.0.5797
Adware.Tuto4PC.Generic, C:\Program Files\NBKFKP4T96\uninstaller.exe.config, In Quarantäne, [3720], [537397],1.0.5797
Adware.Linkury.TskLnk, C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\INSTALLATIONCONFIGURATION.XML, In Quarantäne, [14215], [444922],1.0.5797
Generic.Malware/Suspicious, C:\USERS\KEVIN\APPDATA\LOCAL\SUPERECO.EXE, In Quarantäne, [0], [392686],1.0.5797
Adware.Linkury.TskLnk, C:\PROGRAM FILES (X86)\COMMON FILES\FREE-TEX\INSTALLATIONCONFIGURATION.XML, In Quarantäne, [14215], [444931],1.0.5797
Adware.Linkury.TskLnk, C:\Program Files (x86)\Common Files\Free-Tex\uninstall.dat, In Quarantäne, [14215], [444931],1.0.5797
Adware.Linkury.TskLnk, C:\Program Files (x86)\Common Files\Free-Tex\uninstall.ico, In Quarantäne, [14215], [444931],1.0.5797
Generic.Malware/Suspicious, C:\USERS\KEVIN\APPDATA\LOCAL\TAMPBAM.EXE, In Quarantäne, [0], [392686],1.0.5797
Adware.Tuto4PC, C:\PROGRAM FILES (X86)\MULTITIMER\MULTITIMER.EXE, In Quarantäne, [2759], [474836],1.0.5797
PUP.Optional.BundleInstaller, C:\USERS\KEVIN\DOWNLOADS\COUNTER-STRIKE.EXE, In Quarantäne, [401], [451283],1.0.5797
PUP.Optional.DownloadGuide, C:\USERS\KEVIN\DOWNLOADS\SETUP_CB-DL-MANAGER.EXE, In Quarantäne, [2627], [100902],1.0.5797
PUP.Optional.BundleInstaller, C:\USERS\KEVIN\DOWNLOADS\SKINPACKS_2922195482.EXE, In Quarantäne, [401], [438582],1.0.5797
Adware.Zdengo.Generic, C:\WINDOWS\5E59496EDD2067983D41EA82CC46D67F.EXE, In Quarantäne, [10810], [487934],1.0.5797
Adware.Zdengo, C:\WINDOWS\SYSTEM32\DRIVERS\4945A1B60BBEAEE862F21F6F926E508C.SYS, In Quarantäne, [7900], [529376],1.0.5797
PUP.Optional.FusionCore, C:\USERS\KEVIN\DOWNLOADS\SKINPACK WORLD OF WARCRAFT.EXE, In Quarantäne, [7922], [344785],1.0.5797
Adware.Wajam, C:\WINDOWS\RAKOEKFIJPFALRAT.RAMOE, In Quarantäne, [448], [526800],1.0.5797
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end) Punkt 5. Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20.06.2018
durchgeführt von Kevin (07-07-2018 20:57:24)
Gestartet von C:\Users\Kevin\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2017-02-22 15:10:05)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3525172391-4281764530-2107951062-500 - Administrator - Disabled)
Gast (S-1-5-21-3525172391-4281764530-2107951062-501 - Limited - Disabled)
Kevin (S-1-5-21-3525172391-4281764530-2107951062-1000 - Administrator - Enabled) => C:\Users\Kevin
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
ATI Catalyst Install Manager (HKLM\...\{62140B07-129A-2BD0-81D2-2A1A7408ADC8}) (Version: 3.0.762.0 - ATI Technologies, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Browser (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Overwolf_jgbnfkaeklillfmfafgkodhlcnfdgkmjmjngaaof) (Version: 1.0.0.0 - Overwolf app)
CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
Game Summary (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 116.2.4 - Overwolf app)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HearthArena Companion (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Overwolf_eldaohcjmecjpkpdhhoiolhhaeapcldppbdgbnbc) (Version: 1.5.0.1 - Overwolf app)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\HearthstoneDeckTracker) (Version: 1.6.5 - HearthSim)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Innkeeper (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Innkeeper) (Version: 0.4.22 - Curse Inc.)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Malwarebytes Version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
NETGEAR WNA3100 wireless USB 2.0 driver (HKLM-x32\...\{C2425F91-1F7B-4037-9A05-9F290184798D}) (Version: 2.2.0.2 - NETGEAR)
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Grafiktreiber 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.116.2.25 - Overwolf Ltd.)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
Overwolf.Setup.VC100CRTx86.Dist (HKLM-x32\...\{8989DBC1-E87B-448F-9147-57EEEC5A24A5}) (Version: 1.0.0 - Overwolf) Hidden
PlayVIG (HKLM-x32\...\{6C7CAF7C-51B1-40C0-BD84-9B7445BFE015}) (Version: 103.3.8.9 - PlayVIG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8045 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.)
Skype Version 8.18 (HKLM-x32\...\Skype_is1) (Version: 8.18 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Tukui Client (HKLM-x32\...\{39ADE6E8-A7A7-41EE-973C-E8895EBD6EF7}) (Version: 3.1.3 - Tukui)
Twitch (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [{BFD98515-CD74-48A4-98E2-13D209E3EE4F}] -> {BFD98515-CD74-48A4-98E2-13D209E3EE4F} => -> Keine Datei
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0686C8C5-F00F-476A-8E15-C6E01FDB6CC1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-24] (Piriform Ltd)
Task: {06A22E48-CDC3-4E27-84A6-8BD9EEFFAA9F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {29911652-34B2-418C-AF68-733F2C4A08E6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {2D9C15DB-A71D-4A1A-99B2-05D952EB3930} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {2E431EBC-661D-4D75-9604-C23C43484806} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2018-07-01] (Overwolf LTD)
Task: {3AFB5CFA-395E-477E-BCF3-3034B38EF7D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {6730E7F7-9A6D-43F6-B49F-1F8D49148127} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {89FD056F-DAA0-477A-A344-F28AA4785314} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {96BB8991-3E19-4436-83D8-AB6FB54E48CA} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-20] (NVIDIA Corporation)
Task: {A2C3AF4B-F0E9-4591-AE57-822BB2939DCF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {C01B8D9D-0195-429D-AE41-C6DD1BD8E0AC} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {D295434E-61B9-42CD-AAC0-16718A05CC9B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-20] (NVIDIA Corporation)
Task: {D9E2973C-C999-41A5-BAEC-1F94AEC33521} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {DEAE87CE-45FB-4CC9-9D79-91F129E53218} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-24] (Piriform Ltd)
Task: {E731826D-4465-4EA5-A2C0-35C5FB4C809E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-20] (NVIDIA Corporation)
Task: {EED890BA-5E55-4812-8BF3-7C7C61C56CAD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2018-04-24 17:56 - 2018-03-24 03:13 - 000544192 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2018-05-29 15:59 - 2018-05-20 19:36 - 001315296 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-23 14:20 - 2014-08-18 18:50 - 000316120 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe
2018-07-07 20:24 - 2018-05-30 09:22 - 002493648 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-07-07 20:24 - 2018-04-25 13:16 - 002297040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-05-24 19:51 - 2018-05-24 19:51 - 000088960 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2018-05-16 13:50 - 2018-05-15 05:13 - 004443992 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libglesv2.dll
2018-05-16 13:50 - 2018-05-15 05:13 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libegl.dll
2018-05-29 15:59 - 2018-05-20 19:36 - 001033184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-23 14:20 - 2015-02-26 21:19 - 000380928 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WifiLib.dll
2018-07-01 15:11 - 2018-07-01 15:11 - 082669384 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libcef.DLL
2018-07-01 15:11 - 2018-07-01 15:11 - 003732296 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libglesv2.dll
2018-07-01 15:11 - 2018-07-01 15:11 - 000086344 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2018-07-07 20:39 - 000001330 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 mydownloaddomain.com
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 360devtraking.website
127.0.0.1 dscdn.pw
127.0.0.1 bcnmonetize.go2affise.com
127.0.0.1 beautifllink.xyz
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
17-06-2018 19:00:12 Windows-Sicherung
24-06-2018 19:00:09 Windows-Sicherung
26-06-2018 23:18:48 Revo Uninstaller's restore point - YoutubeAdBlock
01-07-2018 22:15:24 Windows-Sicherung
06-07-2018 20:24:11 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: prisafe
Description: prisafe
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: prisafe
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: WinDivert1.2
Description: WinDivert1.2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WinDivert1.2
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (07/07/2018 08:49:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/07/2018 08:48:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Innkeeper.exe, Version: 0.4.22.0, Zeitstempel: 0x5acef3da
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.24150, Zeitstempel: 0x5b0cbc65
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000001a06d
ID des fehlerhaften Prozesses: 0xd20
Startzeit der fehlerhaften Anwendung: 0x01d416231460cbbd
Pfad der fehlerhaften Anwendung: C:\Users\Kevin\AppData\Local\Innkeeper\app-0.4.22\Innkeeper.exe
Pfad des fehlerhaften Moduls: C:\Windows\system32\KERNELBASE.dll
Berichtskennung: 573410f4-8216-11e8-880b-a42b8cf68051
Error: (07/07/2018 08:48:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Innkeeper.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Net.WebException
bei System.Net.WebClient.DownloadDataInternal(System.Uri, System.Net.WebRequest ByRef)
bei System.Net.WebClient.DownloadString(System.Uri)
bei Innkeeper.App.yhqCY1qEZEyFgSaI9Wh(System.Object, System.Object)
bei Innkeeper.App.UpdateDeckArchetypes()
bei Innkeeper.App..ctor()
bei Innkeeper.App.Main()
Error: (07/07/2018 08:19:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OverwolfLauncher.exe, Version: 2.0.2.15, Zeitstempel: 0x5b0a89e3
Name des fehlerhaften Moduls: OverwolfLauncher.exe, Version: 2.0.2.15, Zeitstempel: 0x5b0a89e3
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000bc6ac
ID des fehlerhaften Prozesses: 0xdc4
Startzeit der fehlerhaften Anwendung: 0x01d4161ecf453ecd
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
Berichtskennung: 4d07f11d-8212-11e8-9786-10bf4888688b
Error: (07/07/2018 08:19:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/07/2018 08:05:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/07/2018 07:57:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/06/2018 08:17:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Systemfehler:
=============
Error: (07/07/2018 08:47:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prisafe
Error: (07/07/2018 08:47:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WinDivert1.2" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/07/2018 08:33:22 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (07/07/2018 08:33:22 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.
Error: (07/07/2018 08:17:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prisafe
Error: (07/07/2018 08:17:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WinDivert1.2" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/07/2018 08:16:32 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (07/07/2018 08:16:32 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Windows Defender:
===================================
Date: 2018-05-29 21:17:29.404
Description:
Bei der Windows Defender-Überprüfung wurde Spyware oder mögliche unerwünschte Software entdeckt.
Weitere Informationen finden Sie hier:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Spotewacey&threatid=240736
Name:Misleading:Win32/Spotewacey
ID:240736
Schweregrad:Hoch
Kategorie:Potenziell unerwünschte Software
Gefundener Pfad:file:C:\Users\Kevin\AppData\Local\Temp\10536276\ic-0.bafd668480d6b.exe;process:pid:4736
Feststellungstyp:Konkret
Feststellungsquelle:Echtzeitschutz
Status:Unbekannt
Benutzer:\
Prozessname:
Date: 2018-05-29 21:27:34.482
Description:
Bei den Maßnahmen gegen Spyware und möglicherweise unerwünschte Software wurde von Windows Defender ein Fehler festgestellt.
Weitere Informationen finden Sie hier:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Spotewacey&threatid=240736
Benutzer:\
Name:Misleading:Win32/Spotewacey
ID:240736
Schweregrad:Hoch
Kategorie:Potenziell unerwünschte Software
Pfad:
Aktion:Entfernen
Fehlercode:0x80508023
Fehlerbeschreibung:Das Programm konnte keine Spyware oder andere möglicherweise unerwünschte Software auf dem Computer erkennen.
Status:
==================== Speicherinformationen ===========================
Prozessor: AMD FX(tm)-6100 Six-Core Processor
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 7678.12 MB
Verfügbarer physikalischer RAM: 5023.88 MB
Summe virtueller Speicher: 15354.4 MB
Verfügbarer virtueller Speicher: 12497.44 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:285.53 GB) NTFS
Drive d: (MOTHERS_BREAST_TO_IMPRESS) (CDROM) (Total:5.88 GB) (Free:0 GB) UDF
\\?\Volume{1744f4cb-f90e-11e6-8d51-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: BD97D828)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================ Punkt 5. Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20.06.2018
durchgeführt von Kevin (07-07-2018 20:57:24)
Gestartet von C:\Users\Kevin\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2017-02-22 15:10:05)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3525172391-4281764530-2107951062-500 - Administrator - Disabled)
Gast (S-1-5-21-3525172391-4281764530-2107951062-501 - Limited - Disabled)
Kevin (S-1-5-21-3525172391-4281764530-2107951062-1000 - Administrator - Enabled) => C:\Users\Kevin
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
ATI Catalyst Install Manager (HKLM\...\{62140B07-129A-2BD0-81D2-2A1A7408ADC8}) (Version: 3.0.762.0 - ATI Technologies, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Browser (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Overwolf_jgbnfkaeklillfmfafgkodhlcnfdgkmjmjngaaof) (Version: 1.0.0.0 - Overwolf app)
CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
Game Summary (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 116.2.4 - Overwolf app)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HearthArena Companion (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Overwolf_eldaohcjmecjpkpdhhoiolhhaeapcldppbdgbnbc) (Version: 1.5.0.1 - Overwolf app)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\HearthstoneDeckTracker) (Version: 1.6.5 - HearthSim)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Innkeeper (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\Innkeeper) (Version: 0.4.22 - Curse Inc.)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Malwarebytes Version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
NETGEAR WNA3100 wireless USB 2.0 driver (HKLM-x32\...\{C2425F91-1F7B-4037-9A05-9F290184798D}) (Version: 2.2.0.2 - NETGEAR)
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Grafiktreiber 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.116.2.25 - Overwolf Ltd.)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
Overwolf.Setup.VC100CRTx86.Dist (HKLM-x32\...\{8989DBC1-E87B-448F-9147-57EEEC5A24A5}) (Version: 1.0.0 - Overwolf) Hidden
PlayVIG (HKLM-x32\...\{6C7CAF7C-51B1-40C0-BD84-9B7445BFE015}) (Version: 103.3.8.9 - PlayVIG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8045 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.)
Skype Version 8.18 (HKLM-x32\...\Skype_is1) (Version: 8.18 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Tukui Client (HKLM-x32\...\{39ADE6E8-A7A7-41EE-973C-E8895EBD6EF7}) (Version: 3.1.3 - Tukui)
Twitch (HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [{BFD98515-CD74-48A4-98E2-13D209E3EE4F}] -> {BFD98515-CD74-48A4-98E2-13D209E3EE4F} => -> Keine Datei
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0686C8C5-F00F-476A-8E15-C6E01FDB6CC1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-24] (Piriform Ltd)
Task: {06A22E48-CDC3-4E27-84A6-8BD9EEFFAA9F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {29911652-34B2-418C-AF68-733F2C4A08E6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {2D9C15DB-A71D-4A1A-99B2-05D952EB3930} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {2E431EBC-661D-4D75-9604-C23C43484806} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2018-07-01] (Overwolf LTD)
Task: {3AFB5CFA-395E-477E-BCF3-3034B38EF7D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {6730E7F7-9A6D-43F6-B49F-1F8D49148127} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {89FD056F-DAA0-477A-A344-F28AA4785314} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {96BB8991-3E19-4436-83D8-AB6FB54E48CA} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-20] (NVIDIA Corporation)
Task: {A2C3AF4B-F0E9-4591-AE57-822BB2939DCF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {C01B8D9D-0195-429D-AE41-C6DD1BD8E0AC} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {D295434E-61B9-42CD-AAC0-16718A05CC9B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-20] (NVIDIA Corporation)
Task: {D9E2973C-C999-41A5-BAEC-1F94AEC33521} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {DEAE87CE-45FB-4CC9-9D79-91F129E53218} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-24] (Piriform Ltd)
Task: {E731826D-4465-4EA5-A2C0-35C5FB4C809E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-20] (NVIDIA Corporation)
Task: {EED890BA-5E55-4812-8BF3-7C7C61C56CAD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2018-04-24 17:56 - 2018-03-24 03:13 - 000544192 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2018-05-29 15:59 - 2018-05-20 19:36 - 001315296 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-23 14:20 - 2014-08-18 18:50 - 000316120 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe
2018-07-07 20:24 - 2018-05-30 09:22 - 002493648 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-07-07 20:24 - 2018-04-25 13:16 - 002297040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-05-24 19:51 - 2018-05-24 19:51 - 000088960 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2018-05-16 13:50 - 2018-05-15 05:13 - 004443992 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libglesv2.dll
2018-05-16 13:50 - 2018-05-15 05:13 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libegl.dll
2018-05-29 15:59 - 2018-05-20 19:36 - 001033184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-23 14:20 - 2015-02-26 21:19 - 000380928 _____ () C:\Program Files (x86)\NETGEAR\WNA3100\WifiLib.dll
2018-07-01 15:11 - 2018-07-01 15:11 - 082669384 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libcef.DLL
2018-07-01 15:11 - 2018-07-01 15:11 - 003732296 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libglesv2.dll
2018-07-01 15:11 - 2018-07-01 15:11 - 000086344 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2018-07-07 20:39 - 000001330 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 mydownloaddomain.com
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 360devtraking.website
127.0.0.1 dscdn.pw
127.0.0.1 bcnmonetize.go2affise.com
127.0.0.1 beautifllink.xyz
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3525172391-4281764530-2107951062-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
17-06-2018 19:00:12 Windows-Sicherung
24-06-2018 19:00:09 Windows-Sicherung
26-06-2018 23:18:48 Revo Uninstaller's restore point - YoutubeAdBlock
01-07-2018 22:15:24 Windows-Sicherung
06-07-2018 20:24:11 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: prisafe
Description: prisafe
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: prisafe
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: WinDivert1.2
Description: WinDivert1.2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WinDivert1.2
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (07/07/2018 08:49:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/07/2018 08:48:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Innkeeper.exe, Version: 0.4.22.0, Zeitstempel: 0x5acef3da
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.24150, Zeitstempel: 0x5b0cbc65
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000001a06d
ID des fehlerhaften Prozesses: 0xd20
Startzeit der fehlerhaften Anwendung: 0x01d416231460cbbd
Pfad der fehlerhaften Anwendung: C:\Users\Kevin\AppData\Local\Innkeeper\app-0.4.22\Innkeeper.exe
Pfad des fehlerhaften Moduls: C:\Windows\system32\KERNELBASE.dll
Berichtskennung: 573410f4-8216-11e8-880b-a42b8cf68051
Error: (07/07/2018 08:48:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Innkeeper.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Net.WebException
bei System.Net.WebClient.DownloadDataInternal(System.Uri, System.Net.WebRequest ByRef)
bei System.Net.WebClient.DownloadString(System.Uri)
bei Innkeeper.App.yhqCY1qEZEyFgSaI9Wh(System.Object, System.Object)
bei Innkeeper.App.UpdateDeckArchetypes()
bei Innkeeper.App..ctor()
bei Innkeeper.App.Main()
Error: (07/07/2018 08:19:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OverwolfLauncher.exe, Version: 2.0.2.15, Zeitstempel: 0x5b0a89e3
Name des fehlerhaften Moduls: OverwolfLauncher.exe, Version: 2.0.2.15, Zeitstempel: 0x5b0a89e3
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000bc6ac
ID des fehlerhaften Prozesses: 0xdc4
Startzeit der fehlerhaften Anwendung: 0x01d4161ecf453ecd
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
Berichtskennung: 4d07f11d-8212-11e8-9786-10bf4888688b
Error: (07/07/2018 08:19:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/07/2018 08:05:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/07/2018 07:57:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (07/06/2018 08:17:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Systemfehler:
=============
Error: (07/07/2018 08:47:39 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prisafe
Error: (07/07/2018 08:47:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WinDivert1.2" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/07/2018 08:33:22 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (07/07/2018 08:33:22 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.
Error: (07/07/2018 08:17:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prisafe
Error: (07/07/2018 08:17:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WinDivert1.2" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (07/07/2018 08:16:32 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (07/07/2018 08:16:32 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Windows Defender:
===================================
Date: 2018-05-29 21:17:29.404
Description:
Bei der Windows Defender-Überprüfung wurde Spyware oder mögliche unerwünschte Software entdeckt.
Weitere Informationen finden Sie hier:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Spotewacey&threatid=240736
Name:Misleading:Win32/Spotewacey
ID:240736
Schweregrad:Hoch
Kategorie:Potenziell unerwünschte Software
Gefundener Pfad:file:C:\Users\Kevin\AppData\Local\Temp\10536276\ic-0.bafd668480d6b.exe;process:pid:4736
Feststellungstyp:Konkret
Feststellungsquelle:Echtzeitschutz
Status:Unbekannt
Benutzer:\
Prozessname:
Date: 2018-05-29 21:27:34.482
Description:
Bei den Maßnahmen gegen Spyware und möglicherweise unerwünschte Software wurde von Windows Defender ein Fehler festgestellt.
Weitere Informationen finden Sie hier:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Spotewacey&threatid=240736
Benutzer:\
Name:Misleading:Win32/Spotewacey
ID:240736
Schweregrad:Hoch
Kategorie:Potenziell unerwünschte Software
Pfad:
Aktion:Entfernen
Fehlercode:0x80508023
Fehlerbeschreibung:Das Programm konnte keine Spyware oder andere möglicherweise unerwünschte Software auf dem Computer erkennen.
Status:
==================== Speicherinformationen ===========================
Prozessor: AMD FX(tm)-6100 Six-Core Processor
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 7678.12 MB
Verfügbarer physikalischer RAM: 5023.88 MB
Summe virtueller Speicher: 15354.4 MB
Verfügbarer virtueller Speicher: 12497.44 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:285.53 GB) NTFS
Drive d: (MOTHERS_BREAST_TO_IMPRESS) (CDROM) (Total:5.88 GB) (Free:0 GB) UDF
\\?\Volume{1744f4cb-f90e-11e6-8d51-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: BD97D828)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================ |